kongou-ae
3/31/2014 - 3:23 PM

FortiGate FW policy (json)

FortiGate FW policy (json)

{
    "config firewall policy": {
        "13": {
            "srcintf": "VLAN-200",
            "dstintf": "wan1",
            "srcaddr": "192.168.200.0/24",
            "dstaddr": "all",
            "action": "accept",
            "utm-status": "enable",
            "identity-based": "enable",
            "nat": "enable",
            "config identity-based-policy": {
                "1": {
                    "schedule": "always",
                    "logtraffic": "enable",
                    "utm-status": "enable",
                    "groups": "FSSO_Guest_Users",
                    "service": "ANY",
                    "av-profile": "default",
                    "profile-protocol-options": "default"
                },
                "2": {
                    "schedule": "always",
                    "logtraffic": "enable",
                    "groups": "ssllocal_group",
                    "service": "ANY"
                }
            }
        },
        "14": {
            "srcintf": "VLAN-2",
            "dstintf": "wan1",
            "srcaddr": "192.168.2.0/24 192.168.1.0/24",
            "dstaddr": "all",
            "action": "accept",
            "schedule": "always",
            "service": "ANY",
            "utm-status": "enable",
            "logtraffic": "enable",
            "profile-protocol-options": "default",
            "nat": "enable"
        }
    }
}