Skip to content

Commit

Permalink
test
Browse files Browse the repository at this point in the history
  • Loading branch information
@hawahe
hawahe committed Aug 18, 2017
1 parent 0d1d18d commit 823043c
Showing 1 changed file with 26 additions and 26 deletions.
52 changes: 26 additions & 26 deletions Work/junos_policy_convertor2.0.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -65,7 +65,7 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
password = input("password for login:")

Target_ip = r"10\.255\.248\.[0-9]+"
zone_list = junos_all_zone_list(ipaddress,username,password," IT-Public-Server")
zone_list = junos_all_zone_list(ipaddress,username,password,"IT-Public-Server")
f = open('ASApolicy.txt' , 'r')
for line in f:
Source_zone = "IT-Public-Server"
Expand All @@ -77,27 +77,27 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
application_obj_2 = 'any'
application_obj_3 = 'any'
if re.match(Target_ip,ASApolicy_list[2]): #源是迁移地址
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$",ASApolicy_list[2]): #源是迁移地址并且是网段;
if re.match(r"^255",ASApolicy_list[3]): #源是迁移地址并且是网段;
source_obj = IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3])
if ASApolicy_list[4] == 'any':
Destination_zone = 'SRX-TO-BG'
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress,username,password, ASApolicy_list[4])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]): #源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[5]).make_net(ASApolicy_list[6]))
if re.match(r"^255", ASApolicy_list[5]): #源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5]))
else : #源是迁移地址并且是网段,目的是单个地址
destination_obj = ASApolicy_list[4]+"/32"


else: #源是迁移地址并且是单个地址
source_obj = ASApolicy_list[2]+"/32"
if ASApolicy_list[3] == 'any':
Destination_zone = ' SRX-TO-BG'
Destination_zone = 'SRX-TO-BG'
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress,username,password, ASApolicy_list[3])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]): # 源是迁移地址并且是单个地址,目的是网段
if re.match(r"^255", ASApolicy_list[4]): # 源是迁移地址并且是单个地址,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4]))
else: # 源是迁移地址并且是单个地址,目的是单个地址
destination_obj = ASApolicy_list[3] + "/32"
Expand All @@ -106,22 +106,22 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
if ASApolicy_list[2] == 'any':
Source_zone = 'SRX-TO-BG'
source_obj = 'any'
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
elif re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[2]):
elif re.match(r"^255", ASApolicy_list[3]):
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
source_obj = str(IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3]))
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]):
if re.match(r"^255", ASApolicy_list[5]):
destination_obj = IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5])
else:
destination_obj = ASApolicy_list[4] + "/32"

else:
source_obj = ASApolicy_list[2] + "/32"
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
Expand All @@ -131,15 +131,15 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
application_obj_2 = 'udp'
application_obj_3 = ASApolicy_list[-1]
if re.match(Target_ip, ASApolicy_list[2]): # 源是迁移地址
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[2]): # 源是迁移地址并且是网段;
if re.match(r"^255", ASApolicy_list[3]): # 源是迁移地址并且是网段;
source_obj = IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3])
if ASApolicy_list[4] == 'any':
Destination_zone = 'SRX-TO-BG'
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[4])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]): # 源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[5]).make_net(ASApolicy_list[6]))
if re.match(r"^255", ASApolicy_list[5]): # 源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5]))
else: # 源是迁移地址并且是网段,目的是单个地址
destination_obj = ASApolicy_list[4] + "/32"

Expand All @@ -151,30 +151,30 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[3])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]): # 源是迁移地址并且是单个地址,目的是网段
if re.match(r"^255", ASApolicy_list[4]): # 源是迁移地址并且是单个地址,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4]))
else: # 源是迁移地址并且是单个地址,目的是单个地址
destination_obj = ASApolicy_list[3] + "/32"
else:
if ASApolicy_list[2] == 'any':
Source_zone = 'SRX-TO-BG'
source_obj = 'any'
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
elif re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[2]):
elif re.match(r"^255", ASApolicy_list[3]):
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
source_obj = str(IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3]))
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]):
if re.match(r"^255", ASApolicy_list[5]):
destination_obj = IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5])
else:
destination_obj = ASApolicy_list[4] + "/32"

else:
source_obj = ASApolicy_list[2] + "/32"
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
Expand All @@ -183,15 +183,15 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
application_obj_2 = 'tcp'
application_obj_3 = ASApolicy_list[-1]
if re.match(Target_ip, ASApolicy_list[2]): # 源是迁移地址
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[2]): # 源是迁移地址并且是网段;
if re.match(r"^255", ASApolicy_list[3]): # 源是迁移地址并且是网段;
source_obj = IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3])
if ASApolicy_list[4] == 'any':
Destination_zone = ' SRX-TO-BG'
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[4])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]): # 源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[5]).make_net(ASApolicy_list[6]))
if re.match(r"^255", ASApolicy_list[5]): # 源是迁移地址并且是网段,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5]))
else: # 源是迁移地址并且是网段,目的是单个地址
destination_obj = ASApolicy_list[4] + "/32"

Expand All @@ -203,30 +203,30 @@ def junos_policy_verification(hostname,username,password,szone,dzone,protocol,si
destination_obj = 'any'
else:
Destination_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[3])
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]): # 源是迁移地址并且是单个地址,目的是网段
if re.match(r"^255", ASApolicy_list[4]): # 源是迁移地址并且是单个地址,目的是网段
destination_obj = str(IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4]))
else: # 源是迁移地址并且是单个地址,目的是单个地址
destination_obj = ASApolicy_list[3] + "/32"
else:
if ASApolicy_list[2] == 'any':
Source_zone = 'SRX-TO-BG'
source_obj = 'any'
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
elif re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[2]):
elif re.match(r"^255", ASApolicy_list[3]):
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
source_obj = str(IPy.IP(ASApolicy_list[2]).make_net(ASApolicy_list[3]))
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[4]):
if re.match(r"^255", ASApolicy_list[5]):
destination_obj = IPy.IP(ASApolicy_list[4]).make_net(ASApolicy_list[5])
else:
destination_obj = ASApolicy_list[4] + "/32"

else:
Source_zone = junos_zone_lookup(ipaddress, username, password, ASApolicy_list[2])
source_obj = ASApolicy_list[2] + "/32"
if re.match(r"[0-9]+\.[0-9]+\.[0-9]+\.0$", ASApolicy_list[3]):
if re.match(r"^255", ASApolicy_list[4]):
destination_obj = IPy.IP(ASApolicy_list[3]).make_net(ASApolicy_list[4])
else:
destination_obj = ASApolicy_list[3] + "/32"
Expand Down

0 comments on commit 823043c

Please sign in to comment.