Skip to main content

Team,

 

i am collecting frtianazlyer data from fortinet firewall via custom command , however i tried below query to get the data .

 

pattern_faz =

  ```

config log fortianalyzer setting

  set status enable

    set server {faz:string}

   

 

```;

foreach device in network.devices

/* where device.platform.vendor == Vendor.FORTINET */

  let outputs = device.outputs

foreach command in outputs.commands

   where command.commandType == CommandType.CUSTOM

   where command.commandText == "show  log fortianalyzer setting"

  let configurations = parseConfigBlocks(OS.FORTINET, command.response)

 

foreach match in blockMatches(configurations, pattern_faz)

/* where !matches(device.name, "*_*") */

 

select {

  deviceName: device.name,

  SiteName: device.locationName,

  "Primary DNS": match.data.faz,

}

 

 

 

but unfortunatelly i m getting zero result. can anyone help on this

the pattern was wrong in above query , i updated pattern , now its working for me.

 

Working Pattern 

pattern_faz =

  ```

config log fortianalyzer setting

    set server {faz:string}

   

 

```;

Reply


Badge winners

  • NQE Collaborator
    Rohit_809 Kumarhas earned the badge NQE Collaborator
  • Community Champ Award
    Vladi Bhas earned the badge Community Champ Award
  • Community Champ Award
    dakotagloryhas earned the badge Community Champ Award
  • NQE Contributor
    CarlBhas earned the badge NQE Contributor
  • NQE Contributor
    gbaronhas earned the badge NQE Contributor
Show all badges
Terms of UseCookie settings