In [None]:
from sophos_firewall_api import Firewall, EQ, NOT, LIKE
import json

# Firewall Credentials
# JSON File
# {
#     "firewall_ip": "<FIREWALL_IP_ADDRESS>",
#     "username": "<USER_NAME>",
#     "port" : "<FIREWALL_PORT>"
#     "password": "<PASSWORD>",
#      "certificate_verify": <true|false>,
#     "password_encrypted": <true|false>
# }

firewall_info = json.load(open("Credentials\\firewall_access.json"))
username = firewall_info["username"]
password = firewall_info["password"]
firewall_ip = firewall_info["firewall_ip"]
port = firewall_info["port"]
certificate_verify = firewall_info["certificate_verify"]
password_encrypted = firewall_info["password_encrypted"]

firewall = Firewall(username, password, firewall_ip, port, certificate_verify=certificate_verify, password_encrypted=password_encrypted)

In [None]:
entity_type = "IPHost"
entity_name = "Internet"

print(f"\nREAD :: {entity_type} entity with {entity_name} in the 'Name'")
response = firewall.read(entity_type, entity_name)    # LIKE
print("Code:", response["code"], "Text:", response["text"])
for index, item in enumerate(response["data"], start=1):
    print(f"{index:03}: {item}")

In [None]:
entity_type = "IPHost"

# response = firewall.read(entity, "Internet", LIKE)
response = firewall.read(entity_type, "RW")

print("Code:", response["code"], "Text:", response["text"])

for index, item in enumerate(response["data"], start=1):
    print(f"{index:002}: {item}")

In [None]:
for item in open("Firewall Entities.csv", "r"):
    print("\n\n", item, end="")
    response = firewall.read(item.strip())
    print("Code:", response["code"], "Text:", response["text"])

    for index, item in enumerate(response["data"], start=1):
        print(f"{index:02}: {item}")

In [None]:
entity_type = "IPHostGroup"

response = firewall.read(entity_type)

print("Code:", response["code"], "Text:", response["text"])

for index, item in enumerate(response["data"], start=1):
    print(f"{index:002}: {item}")

In [None]:
test = {
    "ActiveDirectory": {
        "ServerName": "AD",
        "ServerAddress": "192.168.30.50",
        "Port": "636",
        "NetBIOSDomain": "LAB",
        "ADSUsername": "mitko",
        "Password": {
            "@hashform": "mode1",
            "#text": "$sfos$7$0$ItJ_pd5UQBUHFxjiC7mX1Vr8zZvda9Qael7H6J7ATaSwyGtwGZc4fgzqtpdzZgp8D3bPkK-OVVOSU-Smk2Ja0A~~8xtT69rcIzCgZr2eI8ZgR6VUO7tSBy1qTZL7Uk0_Uqk~",
        },
        "ConnectionSecurity": "SSL",
        "ValidCertReq": "Disable",
        "DisplayNameAttribute": None,
        "EmailAddressAttribute": "mail",
        "DomainName": "lab.local",
        "SearchQueries": {"Query": "dc=lab,dc=local"},
    },
    "LDAPServer": {"@transactionid": "", "Status": "No. of records Zero."},
    "RADIUSServer": {"@transactionid": "", "Status": "No. of records Zero."},
    "TACACSServer": {"@transactionid": "", "Status": "No. of records Zero."},
    "EDirectory": {"@transactionid": "", "Status": "No. of records Zero."},
}


entity_type = "AuthenticationServer"

response = firewall.read(entity_type)

print("Code:", response["code"], "Text:", response["text"])

for index, item in enumerate(response["data"], start=1):
    print(f"{index:002}: {item}")

In [None]:
entity_type = "PatternDownload"

response = firewall.read(entity_type)

print("Code:", response["code"], "Text:", response["text"])

print(json.dumps(response["data"], indent=4))

In [None]:
# CREATE ENTITY with entity_type "IPHost" and entity_data for "HostType" Network

entity_type = "IPHost"
entity_data = {
    "Name": "192.168.96.0/24",
    "IPFamily": "IPv4",
    "HostType": "Network",
    "IPAddress": "192.168.96.0",
    "Subnet": "255.255.255.0",
}

firewall.create(entity_type, entity_data)

In [None]:
# READ settings for ENTITY with entity_type

entity_type = "LocalServiceACL"

response = firewall.read(entity_type)
print("Code:", response["code"], "Text:", response["text"])

# List/Dump single response
print(json.dumps(response["data"], indent=4))

# List/Dump diction of responses
for index, item in enumerate(response["data"], start=1):
    print(f"{index:002}: {item}")

In [None]:
# CREAT/UPDATE ENTITY with entity_type from entity_data

entity_type = "LocalServiceACL"

entity_data = {
    "RuleName": "Mitko Test Admin Access",
    "Description": "This was applied through the API by the administrator.",
    "Position": "Top",
    "IPFamily": "IPv4",
    "SourceZone": "WAN",
    "Hosts": {"Host": ["192.168.30.0/24", "192.168.10.0/24", "37.200.116.65", "192.168.103.0/24", "192.168.96.0/24"]},
    # "Services": {"Service": ["HTTPS", "SSH", "8", "9", "10", "38", "39", "40", "40", "40"]},
    "Services": {
        "Service": ["HTTPS", "SSH", "8", "9", "10", "38", "39"]
    },  # 8 - DNS, 9 - Ping/Ping6, 10 - SSL VPN, 38 - User Portal, 39 - Dynamic Routing, 40 - ???
    "Action": "accept",
}

# response = firewall.create(entity_type, entity_data)  # OR update

response = firewall.update(entity_type, entity_data)

print("Code:", response["code"], "Text:", response["text"])

In [None]:
# DELETE ENTITY with entity_type from entity_name

entity_type = "LocalServiceACL"
entity_name = "Mitko Test Admin Access"

response = firewall.read(entity_type)

print("Code:", response["code"], "Text:", response["text"])

In [None]:
entity_type = "LocalServiceACL"
entity_name = "Mitko Test Admin Access"

print("READ   :: ", firewall.read(entity_type, entity_name))