I wrote a Java application this past week that keeps ASA, FTD, SonicWall, and Fortigate objects in sync with eachother.
So for example lets each site has an outbound rules bound to Group Objects and Service Object groups. As long as the firewall rule exists on the above platforms it keeps the objects synced together. So I cans have a group called "whitelisted_destination_addresses" and add it to a master location and it will sync it out despite the vendor. It also runs validation to ensure that designated groups have the same object representation. So a rogue Fortigate will notify if a group object is different.
I was wondering if there would be an interest in a show and tell on it.
No comments:
Post a Comment