Skip to content
/ networks2ASA Public

Script to convert a list of networks in csv to Cisco ASA Objects and add those Objects to an Object Group

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

briandean/networks2ASA

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
README.md
README.md
 
 
commands.txt
commands.txt
 
 
config.ini
config.ini
 
 
convert2cidr.py
convert2cidr.py
 
 
networks.csv
networks.csv
 
 
networks2asa.py
networks2asa.py
 
 

Repository files navigation

Networks2ASA 2020/12/2 Brian Dean brian@briandean.net

Script(s) to convert a list of networks in a file to the collection of CLI commands for adding those networks to Cisco ASA objects and adds each of those objects to an object group. Provide your list of networks (one per line) in networks.csv, modify the config.ini to name your object and object group then run networks2asa.py. Output of commands are written to the commands file. Only subnet and host objects are supported with this script.

Change variables in config.ini to match your requirements: networks_file = Path of file containing source networks networks to add as ASA objects. cmd_file = Path of output file with ASA commands. asa_object_group_name = Name of ASA object group. asa_object_group_desc = Description of the object group description with timestamp at the end. asa_object_name_prefix = Object names will have the asa_object_name_prefix variable in front of the "IP address-prefix length". Example: ip address of 192.168.1.1 would be named "asa_object_name_prefix-192-168-1-1-32". asa_object_desc = Description of each object with timestamp at the end.

networks_file = Source list of networks to be added to the ASA. Networks should be one per line. They can be in either CIDR notation or "network + subnet mask" or "network,subnet mask". Host addresses can either be as the ip address alone, /32, or ip address + 255.255.255.255. MAKE SURE THERE ARE NO OTHER TYPES OF CHARACTERS IN THE NETWORKS LIST!
Example valid networks file contents:
192.168.0.0/24
192.168.1.0 255.255.255.0
192.168.2.0,/24
192.168.3.0,255.255.255.0
192.168.4.1
192.168.4.2,/32
192.168.4.3,255.255.255.255
192.168.4.4 255.255.255.255

convert2cidr.py = Script to normalize the formatting of the networks in the networks_file. This will create a backup of the original networks file in the same directory as .bak. You do not need to run this script individually.

networks2asa.py = Main script to convert list of networks to ASA commands and output to commands file. Will also run the convert2cidr.py.

commands file = File containing final commands to add networks as objects and add those objects to the object group on Cisco ASA
Example output:
conf t
object network Name of each object before IP address-192-168-0-0-24
subnet 192.168.0.0 255.255.255.0
desc Description of each object 2020/12/02 09:42
object-group network Name of Object Group
network-object object Name of each object before IP address-192-168-0-0-24
object network Name of each object before IP address-192-168-4-4-32
host 192.168.4.4
desc Description of each object 2020/12/02 09:42
object-group network Name of Object Group
network-object object Name of each object before IP address-192-168-4-4-32
object-group network Name of Object Group
desc Description for Object Group 2020/12/02 09:42

About

Script to convert a list of networks in csv to Cisco ASA Objects and add those Objects to an Object Group

Topics

security cisco networking cisco-asa asa

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Packages

 
 
 

Languages