Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
MartiskaM
Staff
Staff

Created on ‎06-20-2022 06:27 AM Edited on ‎09-09-2024 02:02 AM By Community Manager

Article Id 215133

Technical Tip: New Meta Variables and their usage including Jinja scripting

Description

 

This article describes how Meta fields were replaced since version 7.2.0 by Meta variables and their usage including Jinja scripting.

 

Scope

 

FortiManager.

 

Solution

 

Since v7.2.0 it is possible to find the Meta Variables under Policy & Objects -> Objects Configuration -> Advanced.

 

Previous Meta Fields that were created before 7.2.0 will be converted and presented in this section as well.

 

(Before upgrade – Meta Fields).

 

MartiskaM_0-1655730761376.png

 

MartiskaM_0-1668956337471.png

 

(After upgrade – Meta Variables).

 

MartiskaM_1-1655730761381.png

 

MartiskaM_1-1668956416856.png

 

MartiskaM_2-1668956448323.png

 

New Meta Variables include a Per-Device Mapping option that allows users to create unique values for each FortiGate.

 

MartiskaM_2-1655730761409.png

 

Meta Variables usage in Objects, where the syntax is $(name_of_the_variable).

(It is also possible to create the variables directly from the objects pane where, when $ is typed, it will be prompted with message windows as depicted in the screenshot below).

 

  1. Virtual IPs.

MartiskaM_3-1655730761415.png

 

  1. Addresses.

 

MartiskaM_4-1655730761462.png

 

  1. IP Pools.

 

MartiskaM_5-1655730761468.png

 

Meta Variables usage in System Templates, Static Route Templates and SD-WAN Templates etc.., where syntax is $(name_of_variable).

 

  1. System Template.

 

MartiskaM_6-1655730761476.png

 

  1. Static Route Template.

 

MartiskaM_7-1655730761481.png

 

  1. SD-WAN Interface Members.

 

MartiskaM_8-1655730761487.png

 

Meta Variables usage in CLI Templates, where the syntax is {{name_of_variable}}.

 

In the CLI Templates, choose the Jinja Script to have the Meta Variables working.

 

MartiskaM_9-1655730761492.png

 

Meta Variables can be found using the command below at the bottom of the configuration list.

 

exe fmpolicy print-adom-object ?

 

The question mark will display ADOMs after that use it one more time to locate the object number for fmg variables.

 

MartiskaM_10-1655730761494.png

 

This allows users to utilize scripting and create objects using scripts run locally on FortiManager.

 

MartiskaM_11-1655730761500.png

 

In this example, the script result will look as follows the CLI.

 

MartiskaM_12-1655730761502.png

 

Debug during installation:

 

diagnose debug application securityconsole 255

diagnose debug enable

 

 To close debug use the following.

 

diagnose debug disable

diagnose debug reset

 

Related articles:

Technical Tip: Firewall objects use as metadata variable

Docs: Jinja Filters and Functions

Docs: Introduction to Jinja

Docs: Jinja2 template sample scripts

DOCS: Create Jinja templates and a CLI template group

DOCS: FortiManager meta variables in Jinja

DOCS: Preview Jinja script on device or device group

DOCS: Install to apply Jinja template configurations to branches

DOCS: Using FortiManager device database variables in Jinja

9433
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.