*** Settings *** Force Tags tsg_adc_wp adc_api security_policy Library OperatingSystem Resource ../../../02-Keyword/tsg_adc/SystemCommand.robot Resource ../../../02-Keyword/tsg_bfapi/PolicyObject.robot Resource ../../../02-Keyword/tsg_bfapi/LogVariable.robot Resource ../../../02-Keyword/tsg_adc/FileOperation.robot Resource ../../../02-Keyword/tsg_bfapi/policy_object/Policy.robot Resource ../../../03-Variable/ApplicationID.txt *** Test Cases *** SecurityPolicy-Allow-SIP-00001 [Tags] calling ip source Comment 创建第2个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP2} port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id} AddObjects ${1} ${objectDict} Comment 创建第3个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP3} port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id1} AddObjects ${1} ${objectDict} Comment 创建第4个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP4} port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id2} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00001 policyType=tsg_security policyDesc=autotest action=allow source=${object_Ip_Id}|TSG_SECURITY_SOURCE_ADDR,,${object_Ip_Id1}|TSG_SECURITY_SOURCE_ADDR,${object_Ip_Id2}|TSG_SECURITY_SOURCE_ADDR userRegion={"protocol":"SIP"} isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_policyId ${policyId} insert_policyId_to_file1 allow_sip_objectId17 ${object_Ip_Id} insert_policyId_to_file1 allow_sip_objectId18 ${object_Ip_Id1} insert_policyId_to_file1 allow_sip_objectId19 ${object_Ip_Id2} SecurityPolicy-Allow-SIP-00002 [Tags] calling ip port source Comment 创建第2个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.60 port=6666 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id} AddObjects ${1} ${objectDict} Comment 创建第3个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP2} port=6666 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id1} AddObjects ${1} ${objectDict} Comment 创建第4个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP3} port=6666 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id2} AddObjects ${1} ${objectDict} Comment 创建第5个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=${testClentIP4} port=6666 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${object_Ip_Id3} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00002 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${object_Ip_Id}|TSG_SECURITY_SOURCE_ADDR,${object_Ip_Id1}|TSG_SECURITY_SOURCE_ADDR,${object_Ip_Id2}|TSG_SECURITY_SOURCE_ADDR,${object_Ip_Id3}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId20 ${object_Ip_Id} insert_policyId_to_file1 allow_sip_objectId21 ${object_Ip_Id} insert_policyId_to_file1 allow_sip_objectId22 ${object_Ip_Id} insert_policyId_to_file1 allow_sip_objectId23 ${object_Ip_Id} insert_policyId_to_file1 allow_sip_policyId1 ${policyId} SecurityPolicy-Allow-SIP-00003 [Tags] calling subid source Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00003 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} defaultClient=clientsubid isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_policyId2 ${policyId} SecurityPolicy-Allow-SIP-00004 [Tags] calling ip geo source Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00004 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${objectId}|TSG_SECURITY_SOURCE_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId1 ${objectId} insert_policyId_to_file1 allow_sip_policyId3 ${policyId} SecurityPolicy-Allow-SIP-00005 [Tags] called domain ip source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00005 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId2 ${objectId} insert_policyId_to_file1 allow_sip_policyId4 ${policyId} SecurityPolicy-Allow-SIP-00006 [Tags] called domain ip port source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00006 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId3 ${objectId} insert_policyId_to_file1 allow_sip_policyId5 ${policyId} SecurityPolicy-Allow-SIP-00007 [Tags] called domain ip geo source Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00007 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${objectId}|TSG_SECURITY_SOURCE_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId4 ${objectId} insert_policyId_to_file1 allow_sip_policyId6 ${policyId} SecurityPolicy-Allow-SIP-00008 [Tags] called domain ip source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00005 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId5 ${objectId} insert_policyId_to_file1 allow_sip_policyId7 ${policyId} SecurityPolicy-Allow-SIP-00009 [Tags] called domain ip port source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-00006 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId6 ${objectId} insert_policyId_to_file1 allow_sip_policyId8 ${policyId} SecurityPolicy-Allow-SIP-000010 [Tags] called domain ip geo dest Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000010 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} destination=${objectId}|TSG_SECURITY_DESTINATION_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId7 ${objectId} insert_policyId_to_file1 allow_sip_policyId9 ${policyId} SecurityPolicy-Allow-SIP-000011 [Tags] calling ip source,from account ,allow and monitor Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000011 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} filterList=${object_Account_Id}|TSG_FIELD_SIP_FROM isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId8 ${object_Account_Id} insert_policyId_to_file1 allow_sip_policyId10 ${policyId} SecurityPolicy-Allow-SIP-000012 [Tags] calling ip source,to account ,allow and monitor Comment 创建Account,若测试无源和目的的情况可以将/03-Variable/BifangApiVariable.txt中addTestClentIPFlag置为0 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000012 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} filterList=${object_Account_Id}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId9 ${object_Account_Id} insert_policyId_to_file1 allow_sip_policyId11 ${policyId} SecurityPolicy-Allow-SIP-000013 [Tags] calling ip source,called domain ip dest,from account,to account ,allow , monitor and deny Comment 创建被叫方域名IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000013 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId10 ${objectId} insert_policyId_to_file1 allow_sip_objectId11 ${object_Account_Id1} insert_policyId_to_file1 allow_sip_objectId12 ${object_Account_Id2} insert_policyId_to_file1 allow_sip_policyId12 ${policyId} SecurityPolicy-Allow-SIP-000014 [Tags] called ip dest,called domain ip source,from account,to account ,allow , monitor and deny Comment 创建被叫方域名IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建被叫方IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.3-192.168.50.3 port=0-65535 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000014 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR destination=${objectId1}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId13 ${objectId} insert_policyId_to_file1 allow_sip_objectId14 ${objectId1} insert_policyId_to_file1 allow_sip_objectId15 ${object_Account_Id1} insert_policyId_to_file1 allow_sip_objectId16 ${object_Account_Id2} insert_policyId_to_file1 allow_sip_policyId13 ${policyId} SecurityPolicy-Allow-SIP-000015 [Tags] allow,SIP and RTP Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SipAndRtp-000015 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP","protocol":"RTP"} isValid=${0} appIdObjects=${SIP_ID},${RTP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_policyId14 ${policyId} SecurityPolicy-Allow-SIP-000016 [Tags] The largest combination Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=zdjzy* ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建Account3 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=yq12v ${rescode} ${object_Account_Id3} AddObject2 ${1} ${objectDict} Comment 创建Account4 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=*12voip ${rescode} ${object_Account_Id4} AddObject2 ${1} ${objectDict} Comment 创建Account5 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voi ${rescode} ${object_Account_Id5} AddObject2 ${1} ${objectDict} Comment 创建Account6 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=*12voi ${rescode} ${object_Account_Id6} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Allow-SIP-000011 policyType=tsg_security policyDesc=autotest action=allow userRegion={"protocol":"SIP"} filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO,${object_Account_Id3}|TSG_FIELD_SIP_FROM,${object_Account_Id4}|TSG_FIELD_SIP_TO,${object_Account_Id5}|TSG_FIELD_SIP_FROM,${object_Account_Id6}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_objectId24 ${object_Account_Id1} insert_policyId_to_file1 allow_sip_objectId25 ${object_Account_Id2} insert_policyId_to_file1 allow_sip_objectId26 ${object_Account_Id3} insert_policyId_to_file1 allow_sip_objectId27 ${object_Account_Id4} insert_policyId_to_file1 allow_sip_objectId28 ${object_Account_Id5} insert_policyId_to_file1 allow_sip_objectId29 ${object_Account_Id6} insert_policyId_to_file1 allow_sip_policyId15 ${policyId}