06-01-2012 01:40 AM
Pretty easily. If you open up Putty or an SSH program and set logging to on, choose a log file location and log into your box.
user@srx#edit security policies user@srx#show | display xml | no-more
Open your log file up and cut from above <security> and below </security> and save it as an xml file, then just open with excel.
06-01-2012 01:59 AM
and thanks for your reply.
Does what you suggest actually export the "policy rules" or the logs of these rules?
I'm looking to do the former so we can have a consice list in excel format of all our firewall rules corporatre wide.
06-01-2012 02:11 AM
It exports the actual policies. See the attached screenshot for an example
10-25-2013 05:24 AM
Great post and thank you for this solution. I am however having some difficulties in getting the right view in Excel. I followed your steps and the XML file is being imported in Excel. However when I look at policy rules with multiple source or destination adresses it generates a separate row for every address.
For example: If I have 1 policy rule which allows http access from 4 different source addresses to 2 different destination adresses it shows me about 8 different rows in Excel. In the attachment you can find an example. I would like to see 1 single row per policy rule.
Do you by any chance have a solution for that? To be complete, we are doing an export of a SRX240 unit.