Comments (7)
chillancezen
commented on July 21, 2024
1
hi Michel, Louis,
FortiOS now has limited support to gather facts:
https://ansible-galaxy-fortios-docs.readthedocs.io/en/latest/gen/fortios_facts.html
In our next major FortiOS release, we are going to enhance this module to include more.
and will consider full monitor APIs as well.
thanks,
Link
from ansible-galaxy-fortios-collection.
JieX19
commented on July 21, 2024
Hi @sbraz,
Yes, fortios_facts currently supports system facts only. We will expand the range of facts gathering in the future. If possible, can you please paste your playbook so that we can help you solve the problem?
Thanks,
Jie
from ansible-galaxy-fortios-collection.
sbraz
commented on July 21, 2024
Hi Jie,
I don't know exactly what my colleague tries to achieve but I think it has to do with adding a firewall rule only if other similar rules do not exist. Therefore, we need to list existing firewall policies.
from ansible-galaxy-fortios-collection.
mbdraks
commented on July 21, 2024
Link,
If we implement a 'get' option (similar to what we have for FortiManager modules) we could solve all the 'check config before doing something' cases (at least considering the CMDB API) and focus the get_facts modules to collect info only available with the 'monitor' API.
What do you think?
from ansible-galaxy-fortios-collection.
sbraz
commented on July 21, 2024
Hi Jie,
Thanks for the answer. I have a few questions.
In our next major FortiOS release, we are going to enhance this module to include more.
and will consider full monitor APIs as well.
Does that mean this is a server-side (API) limitation and that we will need to wait until FortiOS 6.6 is released?
How do you guys use Ansible to add firewall rules if you can't list existing policies? I'm still surprised that there is no way to do this and I don't really understand how the Ansible module could be used in production at the moment if it lacks this feature.
from ansible-galaxy-fortios-collection.
chillancezen
commented on July 21, 2024
Does that mean this is a server-side (API) limitation and that we will need to wait until FortiOS 6.6 is released?
No, I mean next FortiOS Ansible Collection release, sorry for confusion.
this is also not api limitation, the module is manually written by Don, only limited cases are covered.
How do you guys use Ansible to add firewall rules if you can't list existing policies? I'm still surprised that there is no way to do this and I don't really understand how the Ansible module could be used in production at the moment if it lacks this feature.
sorry for the inconvenience, we have generic module to mitigate any discovered functions.
https://github.com/fortinet/ansible-fortios-generic
Thanks,
Link
from ansible-galaxy-fortios-collection.
chillancezen
commented on July 21, 2024
hi @sbraz @mbdraks ,
we have all configuration API GET methods supported in latest releases.
https://ansible-galaxy-fortios-docs.readthedocs.io/en/latest/fact.html
and we are going to support GET methods for all monitor APIs in next major release.
now I mark this issue closed, please feel free to reopen it in case further support is needed.
thanks,
Link
from ansible-galaxy-fortios-collection.
Related Issues (20)
- Can not set Admin SSH keys. "Error in Repo" HOT 4
- "Error in repo" using fortios_firewall_policy module HOT 4
- config system globals timezone not numeric in 7.4.2 HOT 3
- How to Create SDWAN Zone HOT 11
- Changing admin user password results in 403 PUT error. HOT 1
- network os fortinet.fortios.fortios is not supported HOT 1
- Is global scope security profile supported? HOT 1
- fortinet.fortios.fortios_monitor_fact filter questions HOT 4
- fortinet.fortios.fortios_monitor -selector upgrade.system.firmware possible issue? HOT 3
- Need help w/playbook to list all managed fortiap's per firewall. HOT 4
- updating policy based routing of fortigate is not working always has seq-num error HOT 2
- There must be at least 1 server certificate configured HOT 2
- Getting 404 error while trying to add IPv6 address group using fortios_firewall_addrgrp6 HOT 2
- Error in comparison/serialize HOT 4
- Question on usage - setting dhcp (v4) reservations HOT 3
- federated-upgrade 7.2.7>7.2.8 problem HOT 2
- fortios_system_global timezone not working with FortiOS 7.4.2 and higher HOT 3
- fortinet.fortios.fortios_firewall_addrgrp module question HOT 8
- fortigate firewall firmware upgrade using fortios_monitor module HOT 2
- check mode error since 2.3.5 HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ansible-galaxy-fortios-collection.