def removeobject(objname, server):
cmdstring = """configure terminal
object-group network Deny_All_Group
no network-object object %s
no object network %s
write mem""" % (objname, objname)
return firecall.main(username, password, sshkey, server, port, cmdstring)
def alreadyBlocked(blockip, server):
cmdstring = "sh run object-group id %s" % fwgroup
output, errmsg = firecall.main(username, password, sshkey, server, port, cmdstring)
if "AUTOADD_%s_" % blockip in output:
return True
else:
return False
def addip(blockip, server):
objname = "AUTOADD_%s_%s" % (blockip, today)
desc = "Added by '%s' via script on %s" % (username, today)
cmdstring = """configure terminal
object network %s
host %s
description %s
object-group network %s
network-object object %s
write mem""" % (objname, blockip, desc, fwgroup, objname)
return firecall.main(username, password, sshkey, server, port, cmdstring)
def get_objname(ip, server):
cmdstring = "sh run object-group id %s" % fwgroup
output, errmsg = firecall.main(username, password, sshkey, server, port, cmdstring)
string = "AUTOADD_%s_" % ip
if string in output:
# split output on all whitespace
for string in output.split():
if ip in string:
return str(string)
else:
# if the IP is not found in the firewall object list, just return False
return False
