Skip to content

hcentive/brocade-update-firewall

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits

conf

conf

 
 

lib

lib

 
 

.gitignore

.gitignore

 
 

.npmignore

.npmignore

 
 

README.md

README.md

 
 

index.js

index.js

 
 

package.json

package.json

 
 

Repository files navigation

brocade-update-firewall

NodeJS module to update banned IP addresses list in Brocade's service protection class.

Emerging Threats fwip rules

Downloads Emerging Threats raw IPs for firewall block lists, and then updates the RBL protection class in Brocade. This service protection class is applied to virtual servers to reject traffic from know bad IP addresses.

Requirements

The following components are required to run this module -

  • git
  • nodejs (5.9.1)

Installation and configuration

Create a Service Protection Class from the Brocade console by navigating to Catalogs and then clicking Service Protection Classes

Catalogs -> Service Protection classes

Enter a name for your service protection class and click Create Class

Create class

Attach this class to a virtual server

Virtual Server - classes

Select your service protection class and click Update

Select protection class

Check out the repository from git -

$ git clone https://github.com/hcentive/brocade-update-firewall

Go to the brocade-update-firewall directory and update configuration attributes to connect to the Brocade API -

$ cd brocade-update-firewall

Make the following changes to configure Brocade API endpoint in conf/brocade.json -

  • Replace API_HOST with the private IP address of the Brocade load balancer.
  • Replace YOUR_API_USERNAME with the username that has permissions to make API calls, e.g. restapi.
  • Replace YOUR_API_PASSWORD with the password for the API user.

If using a proxy server to make outbound calls, update the proxy server configuration in conf/default.json -

  • Set the value of proxy_enabled to true.
  • Replace YOUR_PROXY_SERVER with the address of your proxy server e.g. http://localhost:3128.

Run npm install to install dependencies and executable command to update the firewall. Run the update-fw command from the installation directory to update the blacklist -

$ npm install
$ update-fw
info: Updating ip-blacklist with 1644 addresses
info: Updated ip-blacklist with 1644 addresses

Validation

Login to the Brocade console, navigate to Catalogs and click Service Protection Classes and select the ip-blacklist class from Service Protection Catalog

ip-blacklist

Drill down to the Access Restrictions section to view a list of banned CIDRs

Banned IPs

Troubleshooting

Remove an IP address from the banned IPs list

To remove an IP address from the banned IPs list click on the Remove checkbox next to the IP address and click Update under the Apply Changes section at the bottom of the page.

NOTE: The removed IP address will be added back to the protection class on the next run of this utility unless the IP address is removed from Emerging Threats' blacklist.

Logs

Logs are written to info.log and error.log files the logs folder as default. Edit conf/default.json to change location and names of the log files, and update attribute values from the defaults.

About

NodeJS module to update Brocade security protection class and rules

Topics

nodejs blacklist firewall load-balancer virtual-server stingray service-protection emerging-threats

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

7 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages