Sākums Izpētīt Palīdzība
Pierakstīties
idio.link
/
fmcclient
2
0
Atdalīts 0
Faili Problēmas 0 Izmaiņu pieprasījumi 0 Vikivietne

A Go client for the Cisco Firepower Management Center

Atzars: master
Atzari Tagi
fmcclient
Jonathan D. Storm 876acfe33e Rename LICENSE.MPL to LICENSE for pkg.go.dev 2 gadi atpakaļ
.gitignore 9eeba4d3e3 Initial commit 3 gadi atpakaļ
LICENSE 876acfe33e Rename LICENSE.MPL to LICENSE for pkg.go.dev 2 gadi atpakaļ
README.md c8719cd9c9 Simplify API, pager mechanism w/ iterator, generics 2 gadi atpakaļ
fmcclient.go a0fd0e5a38 Add MPLv2 license 2 gadi atpakaļ
go.mod 94ccb337e9 Add new NAT, IPS policy objects; remove erroneous package; change module name 2 gadi atpakaļ

README.md

fmcclient

A Go client for the Cisco Firepower Management Center.

Example

import (
	"context"
	"crypto/tls"
	"fmt"
	"log"
	"net"
	"net/http"
	"net/url"
	"time"

	"idiolink/go/fmcclient"
)

host := "192.0.2.10"
user := "fmcrobot"
pass := "anpassword"
proxy := "socks5://127.0.0.1:8000"

/* Configure socks proxy and other transport parameters. */
tr := &http.Transport{
	TLSClientConfig:       &tls.Config{InsecureSkipVerify: true},
	TLSHandshakeTimeout:   15 * time.Second,
	IdleConnTimeout:       30 * time.Minute,
	ResponseHeaderTimeout: 60 * time.Second,
	ExpectContinueTimeout: 10 * time.Second,
}
var proxyURL *url.URL
proxyURL, err = url.Parse(proxy)
if err != nil {
	log.Fatal(err)
}
if proxyURL != nil {
	tr.Proxy = http.ProxyURL(proxyURL)
}
cl := &http.Client{
	Transport: tr,
	Timeout:   30 * time.Minute,
}

/* Initiate FMC client state and authenticate to FMC. Note
that authentication tokens will be automatically refreshed,
and new access tokens will be automatically requested after
the maximum number of token refreshes (3) has been reached.
Nevertheless, the `Authenticate()` method may be called as
often as desired: authenticating an authenticated FMC
client instance is a no-op. */
ctx, cancel := context.WithCancel(context.Background())
var fmc *fmcclient.FMC
fmc, err := fmcclient.New(ctx, cl, host, user, pass)
if err != nil {
	log.Fatal(err)
}
if err := fmc.Authenticate(); err != nil {
	log.Fatal(err)
}

/* Create pager for ACPs and iterate to find matching name.
The maximum page size, in accordance with Cisco
documentation, is 1000. */
var pager fmcclient.FMCAccessPoliciesPager
pager, err := fmc.AccessPolicies("Global", 100)
if err != nil {
	log.Fatal(fmt.Sprintf("fetch access policy pager: %v", err))
}
acpName := "test"
var acp *fmcclient.FMCAccessPolicy
for _, e := pager.Iter()
	if pager.LastErr() != nil {
		log.Fatal(fmt.Sprintf("fetch access policies: %v", err))
	}
	if e.Name == acpName {
		acp = e.Id
		break
	}
}

if acp.Id == "" {
	fmt.Printf("find target access policy: no acp with name %v\n", acpName)
	return
}
fmt.Printf("Found target access policy %v\n", acp.Id)