API Discussions

Discussions and questions regarding the Cato Networks API

Forum Widgets

Recent Discussions

A simple example in Python
import json import ssl import urllib.parse import urllib.request headers = { "x-api-key": MY_API_KEY, "Content-Type": "application/json" } body = { "operationName": "accountSnapshot", "variables": {"accountID":MY_ACCOUNT_ID}, "query": ''' query accountSnapshot($accountID:ID!) { accountSnapshot(accountID:$accountID) { id } }''' } request = urllib.request.Request(url='https://api.catonetworks.com/api/v1/graphql2', data=json.dumps(body).encode("ascii"), headers=headers) response = urllib.request.urlopen(request, context=ssl._create_unverified_context()) print(json.loads(response.read().decode("utf-8","replace")))
peter
Cato Employee
1 year ago
309Views
2likes
2Comments
Bypassing Cato via WAN Bypass and Split Tunnel
We need to add around 200 subnets to bypass Cato. My understanding is that they need to be added to all sites under the Site Configuration/Router/Bypass/Destination and for all SDP users via Access/Client Access Control/Split Tunnel policy. We have nearly 90 sites. Manually adding 200 subnets to 90 sites doesn't seem like a good time. Is this possible via the API? If so, can you point me toward the correct commands.
SomeGuy
Joining the Conversation
9 months ago
300Views
4likes
5Comments
Is there an API applicable to IP Ranges in the Resources topic?
Hello. We need to create about 4,000 objects in IP Ranges, is there an API available for this? thanks.
Solved
ESCARE-Team
Making Connections
10 months ago
299Views
0likes
13Comments
API Request to get all SDP users
Hi everyone, I'm trying to get all users within my Cato platform. Like in Access > Users when you select SDP Users Activity. I cannot find any direct way to do it, maybe i'm missing something ? I tried with AccountSnapshot but here you can only find connected users, it is also stated that if I want users that are offline I need to specify the ID, is it the only way to do it ? Thanks, Billy
Solved
Billy
Joining the Conversation
1 year ago
299Views
0likes
6Comments
eventsFeed.py - Enough?
Hi all, We've started to try and integrate Cato with our Qradar platform. We are ingesting logs using the eventsFeed.py script. This is working well, but I'm curious if I'm "missing" anything or need to integrate more events. For example, could I add the "auditfeed.py" to the existing "eventsFeed.py" as I don't believe they pull the same events?
Solved
DavidG
Making Connections
1 year ago
222Views
0likes
2Comments
API call to return number of current SDP sessions?
I was wondering if there is an API call to return the number of current SDP sessions? I am able to return the list of connected sessions and count them, but I was wondering if there is a more direct way to just return the number directly. Thanks.
ddaniel
Staying Involved
9 months ago
205Views
3likes
4Comments
Looking for Socket Interface Wan Role and Precedence
Hello devs! I am trying to fetch interface data for our application. In doing so, I realized that I cannot locate the interface wan role # and the precedence # from CATO API. I did some digging and found 'naturalOrder' - is this the WAN precedence? Also, directly from the Socket Web GUI (proxy) - I could see `wan_outlet_id` which looks like it could be the wan role, however this is not exposed in InterfaceSnapshot. ps: Do varioius Socket/vSocket platforms have different values/limits for WAN Role and Precedence? I currently see 3 WAN Roles, and 3 Precedences in our deployments.
Solved
JessieBryan
Making Connections
1 year ago
203Views
1like
6Comments
Cloning Firewall rules
Ever notice how Cato defaults are not Cato best practices. I have a preferred layout for Internet Firewall and WAN Firewall rules. I have them in multiple sections for business rules and best practice rules. I am wanting to created a pristine template that I can apply to a new tenant that sets up all of my preferences. I am pretty fluent with Postman and python. Any bread crumbs or ideas on how to back up the Internet Rules from one tenant and push them in to a net new tenant? Any ideas are greatly appreciated. Thanks, Brian
BrianT
Joining the Conversation
1 year ago
200Views
1like
5Comments
Account Access Request's mutation API
Hi everyone, The new account access request method enables us to manage permissions flexibly, but has also complicated the workflow. Manually requesting permissions for multiple support members and order members when an account is created is a significant burden. We are considering whether this could be simplified using the API, but we have not found any relevant commands. Have these been implemented, or being planning? Thank you,
DCL_SysAdmin
Making Connections
10 months ago
199Views
1like
10Comments
How do you make an API request that lists IP address of LAN and WAN interfaces ?
I need to retrieve several pieces of information using API requests : - full list of IP ranges for LAN interfaces (type : Native, VLAN, Routed) [screenshot] - IP addresses of the WAN interfaces (socket IP) In the "entityLookUp" request, I can only find the site's native IP address (VLAN, Routed?) and in the "accountSnapshot" request, there is no internal address. Thank for your time
Solved
MaelJ
Making Connections
1 year ago
187Views
1like
2Comments