You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
"fwinput_cfg" -file for contains all the variabls (souce of data).
2
+
"Fortimanager_Master"-file contains all the fortimanager class & functions RESTAPI call.
3
+
"FMPrework"-file conains all prework task list.
4
+
"Cutover" -file conains all cutover task list.
5
+
"Rollback"-file conains all rollback task list.
6
+
**********************************************
7
+
8
+
Prework task list:
9
+
******************
10
+
1. Create the new sub-interface on the new L3out with access of [ping, FM].
11
+
2. Associate the new Sub-interface into existing Zone-interface / create the new Zone-interface.
12
+
3. Configure the static route next-hop to the new L3out.
13
+
4. Create/modify the access-list and update the prefixes into access-list.
14
+
5. Only update the new prefixes into the access-list, even if we run multiples time the same script, to avoid duplicate prefix entries in the access-list.
15
+
6. Create/update the route-map, finally associate the access-list into the route-map.
16
+
7. In OSPF, associate route-map filter on static redistribution.
17
+
8. Push all the configuration to the Fortigate appliance.
18
+
19
+
Cutover plan:
20
+
***********
21
+
1. Disable the current physical/vlan interface.
22
+
2. Push all the configuration to the Fortigate appliance.
23
+
24
+
Rollback plan:
25
+
************
26
+
1. Enable the current physical/vlan interface.
27
+
2. Push all the configuration to the Fortigate appliance.
0 commit comments