Skip to content
/ TufinNatTable Public

This script creates a NAT table with data that gathered from Tufin

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sametyusa/TufinNatTable

BranchesTags

Repository files navigation

tufinnattable

Gathers NAT Table from Tufin Securetrack. If private ip is a F5 pool VIP scripts gets pool members.

Structure

  • get-TufinNATIP.py: This scripts accesses to Tufin API and posts data to NatIPUploader.php You must edit device id list in this file. This script will be the first to run
  • get-F5PoolMember.py: This script gathers virtual IP list from F5 bigip load balancers if you have any and post data to NatIPUploader.py You must edit device id list in this file.
  • NatIPUploader.php: This script listens from python scripts and updates database. You must upload this to a webserver and edit database credentials in this file.
  • natService.php: this file delivers data to natadmin.php You must upload this to a webserver and edit database credentials in this file.
  • natadmin.php: This file is admin panel. Calls natService.php for required data. You must upload this to a webserver and edit database credentials in this file.

Installation

Add IP and credentials in scripts. Create database Upload NATIPUploader.php to a webserver

MYSQL DB schema: natip

f5node will be comma seperated list

+-------------+--------------+------+-----+---------+----------------+
| Field       | Type         | Null | Key | Default | Extra          |
+-------------+--------------+------+-----+---------+----------------+
| id          | int(64)      | NO   | PRI | NULL    | auto_increment |
| internetip  | varchar(64)  | NO   |     | NULL    |                |
| privateip   | varchar(64)  | YES  |     | NULL    |                |
| f5node      | varchar(512) | YES  |     | NULL    |                |
| created     | datetime     | YES  |     | NULL    |                |
| updateddate | datetime     | YES  |     | NULL    |                |
+-------------+--------------+------+-----+---------+----------------+

MYSQL DB Schema: natadmin

note: Values in aduser column will be sha-256 hash of active directory usernames which granted access to the NAT admin page. You must add them manually

+--------+--------------+------+-----+---------+----------------+
| Field  | Type         | Null | Key | Default | Extra          |
+--------+--------------+------+-----+---------+----------------+
| id     | int(11)      | NO   | PRI | NULL    | auto_increment |
| aduser | varchar(512) | YES  |     | NULL    |                |
+--------+--------------+------+-----+---------+----------------+

Copy python scripts to a computer can access to the Tufin Securetrack. Run them regulary

NAT Admin page

NAT admin panel files are natService.php and natadmin.php. Edit LDAP server and database credentials both files then copy them to a webserver after you created and filed values into database. that's it

You will have to find a html5 template for nat admin panel

About

This script creates a NAT table with data that gathered from Tufin

Topics

php network cybersecurity tcp-ip network-security tufin

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages