Giters

pouriyajamshidi / FortiSSLVPNMonitor

Python script to view SSLVPN users of your Fortigate firewalls and display their public IP and whether or not they are sharing their account

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Fortigate SSL VPN

This program is written for Fortigate firewalls to display connected SSL VPN users in a systematized manner.

Features

  • Query multiple firewalls (specified in yaml file)
  • Helps you find users who are possibly sharing their account credentials
  • Be aware of your IP assignments and address pool depletion
  • Possibly find SSL VPN daemon issues of FortiOS
  • Cross-platform. Runs on Windows, Linux and Mac OS.

Requirements

Netmiko is needed to run this script. You can install it using below command.

pip3 install netmiko

Usage

Download all the files in this repository and place them in the same directory. Alternatively, you can clone this repository as well.

git clone https://github.com/pouriyajamshidi/FortiSSLVPNMonitor.git

Populate the firewalls.yaml according to your environment:

  • name: Firewall name
  • mgmt_ip: management IP address
  • port: SSH port
  • vdom: Vdom name, in case you are not using any, set it as none
  • ip_pool: IP address pool size for VPN users. E.g. 254 for /24

There are two versions of this program available

  • For FortiOS versions below 6.4:

    python3 pysslvpnmonitor_below_6.4.py

  • For FortiOS versions 6.4 and above:

    python3 pysslvpnmonitor.py

Tested on

Windows and Debian derivatives.

Contributing

Pull requests are welcome.

License

License

About

Python script to view SSLVPN users of your Fortigate firewalls and display their public IP and whether or not they are sharing their account

Languages

Language:Python 100.0%