How can I configure Web-Management settings using Command Line Interface on SonicOS 5.9 & above?

12/20/2019 14 11294

DESCRIPTION:

In this article we will try to cover CLI commands related to Web-Management on the SonicWall UTM appliance in (5.9 & above) and (6.1 & above) firmware. You can login to your SonicWall using Putty or any other software which uses SSH 22 to connect. Also the SSH port in your SonicWall should be enabled to make the software connect to it.

RESOLUTION:

Command to see Web Management Port used in SonicWall

• In this section we explained how to see the Web Management Port (HTTP & HTTPS) in SonicWall.
  
  admin@0017C516EB30>show administration
  administration
  
  firewall-name 0017C516EB30
  no auto-append-suffix
  admin-name admin
  no password aging
  no password uniqueness
  no password enforce-4-character-difference
  password minimum-length 1
  no password complexity
  password constraints-apply-to builtin-admin
  password constraints-apply-to full-admin
  password constraints-apply-to limited-admins
  password constraints-apply-to local-users
    idle-logout-time 60
  no user-lockout
  admin-preempt-action goto-non-config
  admin-preempt-inactivity-timeout 10
  no inter-admin-messaging
  web-management allow-http
  web-management http-port 80
  web-management certificate use-self-signed
  no web-management client-certificate-check
  web-management cert-common-name 192.168.168.168
  web-management default-table-size 50
  web-management refresh-interval 10
  no dashboard-as-starting-page
  web-management tooltip form-delay 2000 button-delay 3000 text-delay 500
  no override-SonicPoint-download
  no override-sonicpointnv-download
  no override-sonicpoint ndr-download
  language-override english
  
  gms-management ssl
  no reporting-server
  host-name 172.27.61.105
  syslog-server-port 514
  no heartbeat-status-only
  no behind-Nat-device
  exit
  
   web-management https-port 443
  ssh port 22
  exit
  admin@0017C516EB30>
   

Command to Enable / Disable Web Management Port in any Interface

In this section we explained how to enable/disable Web Management (HTTP & HTTPS) Port in X0 interface. You can use the same steps for other interfaces (like X1, X2, X3,.......)

• To Enable HTTP Port in X0 interface
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# interface x0
  (edit-interface[X0])# management http
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (edit-interface[X0])#
  
  
• To Enable HTTPS Port in X0 interface
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# interface x0
  (edit-interface[X0])# management https
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (edit-interface[X0])#

• To Disable HTTP Port in X0 interface
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# interface x0
  (edit-interface[X0])# no management http
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (edit-interface[X0])#
  
  

• >> To Disable HTTPS Port in X0 interface
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# interface x0
  (edit-interface[X0])# no management https
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (edit-interface[X0])#
   

Command to change the SonicWall Web Management Port to a Custom port

• Command to change HTTP Port Number: In this section we explained how to change your HTTP Port to any custom port like 8080.
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# administration
  (config-administration)# web-management http-port 8080
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (config-administration)#
  
  

  TIP: You can use show administration command to check your HTTP port number.

   
  
•  Command to change HTTPS Port Number :In this section we explained how to change your HTTPS Port to any custom port like 4443.
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# administration
  (config-administration)# web-management https-port 4443
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (config-administration)#
  
  

  TIP: You can use show administration command to check your HTTPS port number. 

Command to Enable/Disable HTTP Web Management in SonicWall Globally
In this section we explained how to globally enable/disable HTTP Port in your SonicWall device.

•  Command to Enable HTTP in SonicWall Globally
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# administration
  (config-administration)# web-management allow-http
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (config-administration)#
  
  

  NOTE: You can use show administration command to check the HTTP web-management status.

   
•  Command to Disable HTTP in SonicWall Globally
  
  admin@0017C516EB30> configure
  config(0017C516EB30)# administration
  (config-administration)# no web-management allow-http
  (edit-interface[X0])# commit
  % Applying changes...
  % Changes made.
  (config-administration)#
  
  

  TIP: You can use show administration command to check the HTTP web-management status.