¶ Adding Layer4 - ports
Now, let us add some layer4 information. There can be numerous opened ports on systems which we will want to model.
fcpc add l4interface/fw_udp_500 name="Port 500 on FW" description="Port 500 on fw" ipprotocol=udp ipport=500 tag=zone:internet
fcpc add l4interface/kibana_5600 name="Kibana port" ipprotocol="tcp" ipport=5600 tag=zone:internal
fcpc add l4interface/elastic_9200 name="Elastic port" ipprotocol="tcp" ipport=9200 tag=zone:internal
fcpc add l4interface/elastic_9201 name="Elastic SSL port" ipprotocol="tcp" ipport=9201 tag=zone:internal
fcpc add l4interface/nginx_443 name="Nginx HTTPS port" ipprotocol="tcp" ipport=443 tag=zone:dmz
fcpc link l4interface/fw_udp_500 ~is-on host/fw
fcpc link l4interface/kibana_5600 ~is-on host/kibana
fcpc link l4interface/elastic_9200 ~is-on host/elastic
fcpc link l4interface/elastic_9201 ~is-on host/elastic
fcpc link l4interface/nginx_443 ~is-on host/nginx
¶ Platform representation
fcpc --show.synth=0 --search.filter.limit=0 --search.object.links=append --search.show.output=dot search l4interface+ "~is-on" host+
Next - Adding persons and accounts
Previous - Create interfaces and link them to hosts
Start - See all steps