monitor-fgt-sigs
Python-built custom sensor for PRTG that monitors the age of AV and IPS signatures of fortigate firewalls
This file needs to be placed in the custom sensors folder of the PRTG program files directory. If you are using a remote probe the script needs to be stored on the probe. This is usually: C:\Program Files (x86)\PRTG Network Monitor\Custom Sensors\python
You will also need to install netmiko to the instance of python that is included with PRTG. To do this it is recommended to install pip.
- Download the get-pip.py file from here: https://pip.pypa.io/en/stable/installing/
- Open cmd as admin and run: C:\Program Files (x86)\PRTG Network Monitor\Python34\python.exe C:<path to file>\get-pip.py
- Run: C:\Program Files (x86)\PRTG Network Monitor\Python34\Scripts\pip.exe install netmiko --upgrade
The --upgrade is needed to upgrade the modules that are included in PRTG.
The script uses ssh to log into the device and run "get system status". It scrapes the output and extracts the number of days since the dates stored in the signature strings. It is advisable to use a read only user for this process. In PRTG you will need to add credentials to the device, the script pulls down the CREDENTIALS FOR LINUX/SOLARIS/MAC OS (SSH/WBEM) SYSTEMS. You can either add unique credentials to each device or add them to a device group and inherit them to the devices.
You should now be able to add a sensor to the fortigate device in PRTG, choose "python script advanced" and pick the script from the drop down. Select "Transmit Linux Credentials"
Currently only tested on Fortigate 5.2.4