Creating bulk address & address groups on FortiGate Firewall

The below script will make it easier to create bulk address objects on a Fortinet FortiGate device.

Supported input: 192.168.1.0/24, 192.168.2.2, 172.16.1.1/32, etc., separated by comma or anything.

You can’t define the subnet mask in dot-decimal notation, i.e., 255.255.255.0, 255.255.255.255, etc.

You must need to define the Group Name and IP Addresses separately with space or anything.

We will automatically create separate address groups with 300 IP addresses in each group.

Try the tools below for FortiGate Firewall:









Please share your valuable feedback and suggestions using Contacting Us.

Support our work:

If you appreciate what we do and would like to contribute to our efforts, we kindly ask you to consider buying us a coffee. Your small donation can go a long way in helping us cover the costs of hosting, maintenance, and further development.

Please consider buying us a coffee ( or 2 ) as a token of appreciation.

We are always thankful for your never-ending support.

8 Comments

  1. Thanks for creating this script, its such a time saver! Appreciate your work, have bought you and your team couple of coffee to support

    Also wanted to check if this script can be modified to create group based on FQDN? I have about 100 FQDN based objects that i need to create in fortigate, can this script be modified for that?

    Please let me know

    Thanks
    Mani

    1. Hello Mani,

      Thank you for buying Coffee for us, and sorry for the delayed response. We will prepare and upload the script to create FQDN/WILDCARD on the Fortinet FortiGate firewall.

      Thank you 🙂

    2. This is very good for engineers, and it’s a time-saving script.

      Can we have a script for URL creation as IP?

      Thanks

      +91 9990847058
      Aslam

  2. Hi there, Is it possible to use a script to generate VIPs, we have some sites which can have 150 devices requiring forwarding rules setup and is very time consuming to do manually

  3. This is an incredible useful tool! A great feature would be to add the ability to the “set color” command or a prefix to the address name such as “Block-64.222.14.0/24”. This would make them easy to group. Thank you!

  4. Thank you but I can’t add new IPs in same group again. It creates completely a new group on Fortiget firewall, Please suggest.

    1. use this tool and create a group with same name of existing group name. aftter this edit the group. replace “set member” to append member. you can do this on note pad. after this paste in CLI and it will work.

Leave a Reply

Your email address will not be published. Required fields are marked *