Network Equipment Management using Ansible Tower – FortiGate Firewall
This video shows how a network engineer can make use of Ansible Tower to add a firewall policy to the FortiGate Firewall. The main idea is to show that an engineer is able to administer the Firewall using the Networking modules that come with Ansible even if he/she has limited knowledge on Fortinet equipment.
The video is meant to show that any network engineer who has an appreciation on the steps involved in creating a new Firewall policy will be able to perform the task on any networking platform, e.g. Palo Alto.
All the relevant playbooks can be found at the following link,
https://github.com/eanylin/ansible-lab/tree/master/fortigate_demo
The actual flow of the video is as follows:
1) The video starts off by showing the initial state of the FortiGate Firewall that was built in AWS
2) A typical workflow for adding firewall rule will include backing up the current configuration, creating the new address object and finally adding the firewall policy
3) The network engineer will fill in the required information in the Survey form and kick start the workflow
4) We will show that the ‘webserver’ address object was created and the new firewall policy was added upon the successful completion of the workflow
Views : 2343
network engineer
