Sunday, July 1, 2018

Ansible REST API - Interacting with Cisco FirePower Management Center (FMC) - 01 - Introduction

Ansible is a very good tool for Network Automation. It has a lot of build-in modules for different vendor systems such as Cisco, Juniper & AWS.

However, besides of these vendor specified modules, we can utilise the "uri" module in Ansible to make different REST Calls. As long as the remote system supports REST API, we can write Ansible scripts to interact with them.

In the following POST series, I will use my Ansible script for Cisco FirePower Management Center (FMC) as an example to describe how Ansible's REST script works.

Cisco FirePower is a very good & widely used next-Gen firewall. Especially in the enterprise environment. However, comparing to the old Cisco ASA firwall, Cisco FirePower doesn't have the time-based ACL. So it's impossible for us to apply some time-based access rules in Cisco FMC.

But Cisco FMC does supports REST API. So we can use Ansible Script to talk to FMC and automate the policy enable/disable process and work congestion with Linux CRON job to provide policy schedule functions.

You can download my playbooks from my github repo:

https://github.com/dennisjian/Ansible-with-Cisco-FMC-API

Here are the table of content of this Ansible Cisco FMC REST API series:
  1. Introduction and Ansible playbook download
  2. Script flow charts
  3. Introduction of REST API and Cisco FMC API Explorer
  4. Script prerequisites
  5. Request Access Token 
  6. Get policy content, modify content and "PUT' in FMC - Part 1
  7. Get policy content, modify content and "PUT' in FMC - Part 2 
  8. Get deployable devices and deploy policy
In the following post (02 - Flow Charts of the scripts), I will show you the flow chart of the scripts.
at
Labels: , , , ,

14 comments:

  1. sangeetha sathyanJune 6, 2019 at 8:44 PM

    Great collection and thanks for sharing this info with us. Waiting for more like this.
    VMware Training in Chennai
    VMware Training institute in chennai
    Cloud Training in Chennai
    Cloud Computing Courses in Chennai
    Azure Training in Chennai
    Microsoft Azure Training in Chennai
    DevOps course in Chennai
    VMware Training in Velachery
    Cloud computing Training in Anna Nagar

    ReplyDelete
  2. akashJune 4, 2020 at 5:40 PM

    Excellent blog with unique content, thanks a lot for sharing this. I love to learn more about this topic.
    Microsoft Windows Azure Training | Online Course | Certification in chennai | Microsoft Windows Azure Training | Online Course | Certification in bangalore | Microsoft Windows Azure Training | Online Course | Certification in hyderabad | Microsoft Windows Azure Training | Online Course | Certification in pune

    ReplyDelete
  3. Data Science CourseJuly 16, 2020 at 8:15 PM

    We are really grateful for your blog post. You will find a lot of approaches after visiting your post. Great work

    Data Science Course

    ReplyDelete
  4. Data Science TrainingJuly 17, 2020 at 1:58 AM

    This is an awesome motivating article.I am practically satisfied with your great work.You put truly extremely supportive data. Keep it up. Continue blogging. Hoping to persuing your next post

    Data Science Training

    ReplyDelete
  5. Best Data Science Courses In Bangalore July 17, 2020 at 3:21 AM

    Really nice and interesting post. I was looking for this kind of information and enjoyed reading this one. Keep posting. Thanks for sharing.
    Best Data Science Courses in Bangalore

    ReplyDelete
    Replies
    1. Dennis Jian (CCIE#37552)July 18, 2020 at 11:09 AM

      Thanks for your comments. Happy to share more about my findings and experiences in the network automation. :-)

      Delete
  6. artificial intelligence course in bhilai - 360DigiTMGSeptember 8, 2020 at 6:56 PM

    Really wonderful blog completely enjoyed reading and learning to gain the vast knowledge. Eventually, this blog helps in developing certain skills which in turn helpful in implementing those skills. Thanking the blogger for delivering such a beautiful content and keep posting the contents in upcoming days.

    360DigiTMG Cyber Security Course

    ReplyDelete
  7. DeekshithaOctober 28, 2021 at 11:41 PM

    Informative blog
    best digital marketing institute in hyderabad

    ReplyDelete
  8. Digital ChanduNovember 21, 2021 at 12:13 AM

    First You got a great blog .I will be interested in more similar topics.I commend you for your excellent report on the knowledge that you have shared in this blog.

    digital marketing training in hyderabad
    free digital marketing course in hyderabad

    ReplyDelete
  9. uniqueaimincDecember 25, 2021 at 5:42 AM

    It's really a great and helpful bit of data that you have shared here. I'm glad that you just imparted this accommodating data to us. Kindly share these types of knowledge with us. Much thanks to you for sharing it CCNP Enarsi Training

    ReplyDelete
  10. haseebSeptember 25, 2022 at 4:17 PM

    This comment has been removed by a blog administrator.

    ReplyDelete
  11. techSeptember 25, 2022 at 5:58 PM

    This Birthday Cards item by SamfireHandmade has 14 favorites from Etsy shoppers. ... Happy Birthday From Your Better Half Funny Birthday Card image 1. Happy Birthday Better Half Images

    ReplyDelete
  12. SyedhaseebulhassanFebruary 6, 2023 at 9:57 PM

    Steps for Fulfilling Your Desires · 1. Ask for Guidance · 2. Focus Your Attention · 3. Set an Intention · 4. Release Your Desire · 5. Detach from.Manifest Your Desires Meaning

    ReplyDelete
  13. Wayebej305April 19, 2023 at 10:30 PM

    streameast xyz

    ReplyDelete

Subscribe to: Post Comments (Atom)

NSX Load Balancer "Application Rules" Examples:

Load Balancing is one of the features provided by the NSX Edge Services Gateway (ESG). It can provide L7 Load Balancing by utilizing the HA...