Static routing table does not match across cluster members for Fortinet

Vendor

Fortinet

Description

Indeni will identify when two devices are part of a cluster and alert if their static routing tables are different.

Remediation Steps

Ensure the static routing table matches across devices in a cluster.

How does this work?

This script logins to the Fortinet Firewall and retrieves the output of the "get router info routing-table static" command. The output includes a table with the device's configured static routes.

Why is this important?

This script logins to the Fortinet Firewall and retrieves the output of the "get router info routing-table static" command. The output includes a table with the device's configured static routes.

Without Indeni how would you find this?

It is possible to poll this data through SNMP but additional external logic would be required to correlate the static routes table with the arp table entries and resolved next hop IP addresses.


View Source Code