1. Strawberry Perl 설치

- https://strawberryperl.com 에서 프/196;그ǖ16; 다운 0143; 설치

- 기본 설치 시 c:\Strawberry\perl\bin> 위치에서 perl 명/161;Ǻ12; 실행 가능

2. 스크립트 파1068; 생성

#!/usr/bin/perl

#

my $output = "policies-out.csv";

my $policyid = 0;

my $setting = "";

my %policies;

my %seen;

my $in_policy_block = 0;

my @order_keys;

my $order_key = 0;

open(OUTFILE,">$output") || die "Can't open file $output: $!\n";

while (<>) {

&#160; &#160; &#160; &#160; &#160; &#160;if ($in_policy_block) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;if (/^\s*edit\s+(\d+)/i) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; # start of new policy

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; $policyid = $1;

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;} elsif (/^\s*set\s+(\S+)\s+(.*)$/i) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; # it's a setting

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; my ($key,$value) = ($1,$2);

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; $value =~ tr/\"\015\012\n\r//d;

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; $order_keys[$order_key++] = $key unless $seen{$key}++;

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; $policies{$policyid}{$key} = $value;

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;} elsif (/^\s*end/i) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; $in_policy_block = 0;

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;}

&#160; &#160; &#160; &#160; &#160; &#160;} elsif (/^\s*config firewall policy/i) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;$in_policy_block = 1;

&#160; &#160; &#160; &#160; &#160; &#160;}

}

# print out our header

print OUTFILE "id";

foreach my $key (@order_keys) {

&#160; &#160; &#160; &#160; &#160; &#160;print OUTFILE ",$key";

}

print OUTFILE "\n";

# now print out each record

foreach my $policy (sort keys %policies) {

&#160; &#160; &#160; &#160; &#160; &#160;print OUTFILE "$policy";

&#160; &#160; &#160; &#160; &#160; &#160;foreach my $key (@order_keys) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;if (defined($policies{$policy}{$key})) {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; print OUTFILE ",$policies{$policy}{$key}";

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;} else {

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; print OUTFILE ",";

&#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160; &#160;}

&#160; &#160; &#160; &#160; &#160; &#160;}

&#160; &#160; &#160; &#160; &#160; &#160;print OUTFILE "\n";

}

close(OUTFILE);

- 메모1109;1012; 사용Ȣ16;여 상단 스크립트를 복사Ȣ16;고 “policy_script.pl̶1; /196; 1200;1109;

- c:\Strawberry\perl\bin> 위치/196; 스크립트 파1068; 1060;ᇼ1;

- Fortigate를 ssh/196; 1217;속, “show firewall policy̶1; 명/161;Ǻ12; 1077;/141; 후 출/141;.104;lj16; 내용1012; 메모1109;에 복사
(Fortigate Config파1068; 다운 후 파1068; 내 “config firewall policy̶1; 1460; 포함 Ȣ16;단1032; 1221;책1012; 복사해도 .121;니다.)

- 메모1109;1012; “policy_rule.txt̶1;/196; 1200;1109;

- c:\Strawberry\perl\bin> 위치/196; 1221;책 파1068; 1060;ᇼ1;

4. Perl 스크립트 실행

- c:\Strawberry\perl\bin> 위치에서 “perl policy_script.pl policy_rule.txt̶1; 명/161;Ǻ12; 실행

- policies-out.csv 파1068;1060; 생성.120;

- csv 파1068; 확1064;