fw tab

Description The fw tab command shows data from the kernel tables, and lets you change the content of dynamic kernel tables. You cannot change the content of static kernel tables.

Kernel tables (also known as State tables) store data that the Firewall and other modules in the Security Gateway use to inspect packets. These kernel tables are the "memory" of the virtual computer in the kernel and are a critical component of Stateful Inspection. The kernel tables are dynamic hash tables in the kernel memories.

Syntax

fw tab [-t <table>] [-s] [-c] [-f] [-o <filename>] [-r] [-u | -m <maxval>] [{-a|-x} -e <entry>] [-y] [<hostname>]

Parameter	Description
`- t <table>`	Specifies a table for the command.
`-s`	Shows a short summary of the table (s) data.
`-c`	Shows formatted table information in common format.
`-f`	Shows a formatted version of the table data. Each table can use a different style.
`-o <filename>`	Outputs CL formatted file called `<filename>`.You can open the file with `fw log` and other commands or processes that can read FW log formats.
`-r`	Resolves IP addresses in formatted output.
`-u`	Show unlimited table entries.
`-m <maxval>`	Sets the maximum table entries that are shown to `<maxval>`.
`-a\|-x`	Adds (`-a`) or removes (`-x`) an entry from the specified table. Include the `-t <table>` parameter when you run the `fw tab` command with the `-a` and `-x` parameters. You cannot run these parameters on remote appliances or servers. Caution - If you use the `-a` and `-x` parameters incorrectly, you can cause the appliance or server to become unstable.
`-e <entry>`	One or more entries that you add or remove from the table.
`-y`	Do not show a prompt to users before they run commands.
`[<hostname>]`	One or more target appliances or servers for the fw tab command. If you do not use this parameter, the default setting is localhost.

Example > fw tab -t arp_table -a -e "1,2,3,4,5"
Adds an entry: <00000001,00000002,00000003,00000004,00000005,> to arp_table

fw tab - m 100 -r sample-gw

Comments If a table has the expire attribute, when you use the -a parameter to add entries, the default table timeout is added.

This feature only works on local machine kernel tables and does not work on a remote machine's tables like additional fw tab commands.
The -x flag can be used independently of the -e flag in which case the entire table content is deleted.
This feature should only be used for debug purposes. It is not advisable to arbitrarily change the content of any kernel table since doing so may have unexpected results including unexpected security and connectivity impacts.