This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Arik_Ovtracht
Employee
Employee
‎2023-07-27 06:37 AM

Ansible playbook for Skyline configuration?

Hi everyone,

Skyline (sk178566) configuration is possible using a simple REST API command.

Has any of you created an ansible playbook for doing that on multiple devices?

 

0 Kudos
3 Replies
Hugo_vd_Kooij
Advisor
‎2023-07-27 11:59 PM

I am still looking for a solution the other way around. So instead of the unit pushing data I want to fetch the data.  

<< We make miracles happen while you wait. The impossible jobs take just a wee bit longer. >>
0 Kudos
the_rock
Legend
Legend
‎2023-07-28 05:42 AM
In response to Hugo_vd_Kooij

Same here.

0 Kudos
Erik_Lagzdins
Employee Employee
Employee
‎2023-07-28 05:40 AM

Here is an example of an old playbook & template file I've used in my lab to setup Skyline that may be a useful to you.

Playbook:

---
- name: "Configure the Skyline /opt/CPotelcol/config.yaml file, then stop/start the Skyline service"
  gather_facts: no
  hosts: gateways

  tasks:
     - name: "Template Skyline config.yaml file"
       template:
         src: skyline_fw_config.j2
         dest: /opt/CPotelcol/config.yaml

     - name: "Stop Skyline"
       shell: /opt/CPviewExporter/stop_skyline

     - name: "Start Skyline"
       shell: /opt/CPviewExporter/start_skyline

 

 

 

 

Required skyline_fw_config.j2 template file:

  • This template assumes you have the {{ hostname }} and {{ skyline_receiver_ip }} variables set in your host_vars or in group_vars for each target gateway.
  • This template also  assumes the TLS certificate files are already  copied to the gateway's filesystem in the correct locations.
receivers:
  otlp:
    protocols:
      grpc:
        tls:
          client_ca_file: /opt/CPotelcol/certs/collector.crt
          cert_file: /opt/CPotelcol/certs/collector.crt
          key_file: /opt/CPotelcol/certs/collector.key

exporters:
  prometheusremotewrite:
    endpoint: "http://{{skyline_receiver_ip}}:9090/api/v1/write"
    #tls:
      #cert_file: /tmp/mycerts/promexport.crt
      #key_file: /tmp/mycerts/promexport.key
      #ca_file: /tmp/mycerts/prometheus.crt
    external_labels:
     instance: {{hostname}}
     job: skyline
    resource_to_telemetry_conversion:
      enabled: true

processors:
  batch:

extensions:
  health_check:

service:
  extensions: [health_check]
  pipelines:
    metrics:
      receivers: [otlp]
      processors: [batch]
      exporters: [prometheusremotewrite]

 

 

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top