Adding bulk IP address in firewall

Forum|Forum|4 years ago
October 30, 2021
2 replies
10524 views

Fortigate 401E with version 6.4.4 I have to create a bulk amount of objects on the firewall using any script or we can do it in a single go? Please suggest. Ex- I have a list of 5000 IP address. So I want to add the same in the firewall without entering it manually as because huge time will be required.

Heaven_Knows

New Member

Aabir007 wrote:
Fortigate 401E with version 6.4.4 I have to create a bulk amount of objects on the firewall using any script or we can do it in a single go? Please suggest. Ex- I have a list of 5000 IP address. So I want to add the same in the firewall without entering it manually as because huge time will be required.

the best way to do this is to use fortigate rest api if you are a programmer .

You can use the telnet script to do this, but it's not stable.

you also can do this by edit the config file manually in "config firewall address" section

ede_pfau

SuperUser

been there, done that...

Some time ago I have developed a python script to exactly this task. It will not only create the address objects, but also address groups and super-groups to accommodate the group limits.

You can download it here: https://www.beneicke-edv.de/support/tools/#ext_blacklists

and use or adopt it to your needs freely.

The only requirement is that you have python installed. I might even make it an executable for convenience.

And no, there is no Youtube flic about this showing you how to run it :)