Skip to content

solidex/FortiOS-Check

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
library
library
 
 
.gitignore
.gitignore
 
 
0-check-disk.yml
0-check-disk.yml
 
 
0-get-sys-status.yml
0-get-sys-status.yml
 
 
0-install-software.yml
0-install-software.yml
 
 
1-bgp-routes.yml
1-bgp-routes.yml
 
 
1-get-system-status.yml
1-get-system-status.yml
 
 
1-get-test-clients-ip.yml
1-get-test-clients-ip.yml
 
 
1-interface-config.yml
1-interface-config.yml
 
 
1-log-check-ip.yml
1-log-check-ip.yml
 
 
1.1-connectivity.yml
1.1-connectivity.yml
 
 
1.2-bgp.yml
1.2-bgp.yml
 
 
1.3-check-ipv4-routes.yml
1.3-check-ipv4-routes.yml
 
 
2-get-rsso-user.yml
2-get-rsso-user.yml
 
 
2-services.yml
2-services.yml
 
 
3-disable-port.yml
3-disable-port.yml
 
 
3-enable-port.yml
3-enable-port.yml
 
 
3-ha.yml
3-ha.yml
 
 
3-pinging.yml
3-pinging.yml
 
 
4-flood.yml
4-flood.yml
 
 
5-local-accounts.yml
5-local-accounts.yml
 
 
5.1-accounts.yml
5.1-accounts.yml
 
 
5.1-management.yml
5.1-management.yml
 
 
5.1-unauthoriz-acc.yml
5.1-unauthoriz-acc.yml
 
 
5.4.1-ntp.yml
5.4.1-ntp.yml
 
 
5.4.2-dns.yml
5.4.2-dns.yml
 
 
5.5-autoupdate.yml
5.5-autoupdate.yml
 
 
5.5-clear-wf-cache.yml
5.5-clear-wf-cache.yml
 
 
5.5-fdn-config.yml
5.5-fdn-config.yml
 
 
5.5-get-fdn-info.yml
5.5-get-fdn-info.yml
 
 
5.6-find-logs.yml
5.6-find-logs.yml
 
 
5.6-traffic-gen.yml
5.6-traffic-gen.yml
 
 
README.md
README.md
 
 
X-get-logs.yml
X-get-logs.yml
 
 
ansible.cfg
ansible.cfg
 
 

Repository files navigation

FortiOS Check

This project contains playbooks to check new installation of FortiGate firewalls.

Quickstart

There is no inventory file. Please create your own inventory. To use a test:

ansible-playbook 1.1-connectivity.yml

VDOM awareness

inventory file vars should be specified as following in case of VDOM-enabled devices:

fg_with_vdoms host=172.16.0.11 vdom_mode=True vdom=data mgmt_vdom=root
fg_without_vdoms host=172.16.0.12 vdom_mode=False

NAPALM notice

Playbook 1.2-bgp uses NAPALM library. Library fails to execute with error message as below in case there are no BGP prefixes received by FortiGate.

"msg": "[bgp_neighbors] cannot retrieve device data: list index out of range"

You can tweak the library napalm_fortios/fortios.py (~ line 371) to get rid of this error.

try:
  received = self._execute_command_with_vdom(
		   command_received.format(neighbor))[0].split()
except:
  received = []

About

Ansible playbooks to check if FortiOS installation is operational

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages