*** Settings *** Force Tags adc_api security_policy Library OperatingSystem Resource ../../../02-Keyword/tsg_adc/SystemCommand.robot Resource ../../../02-Keyword/tsg_bfapi/PolicyObject.robot Resource ../../../02-Keyword/tsg_bfapi/LogVariable.robot Resource ../../../02-Keyword/tsg_adc/FileOperation.robot Resource ../../../02-Keyword/tsg_bfapi/policy_object/Policy.robot Resource ../../../03-Variable/ApplicationID.txt *** Test Cases *** SecurityPolicy-Deny-SIP-00001 [Tags] calling ip source Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00001 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_policyId ${policyId} SecurityPolicy-Deny-SIP-00002 [Tags] calling ip port source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.60-192.168.50.60 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00002 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"480"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId ${objectId} insert_policyId_to_file1 deny_rtp_policyId1 ${policyId} SecurityPolicy-Deny-SIP-00003 [Tags] calling subid source Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00003 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"500"} defaultClient=clientsubid isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_policyId2 ${policyId} SecurityPolicy-Deny-SIP-00004 [Tags] calling ip geo source Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00004 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} source=${objectId}|TSG_SECURITY_SOURCE_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId1 ${objectId} insert_policyId_to_file1 deny_rtp_policyId3 ${policyId} SecurityPolicy-Deny-SIP-00005 [Tags] called domain ip source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00005 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_sip_objectId2 ${objectId} insert_policyId_to_file1 deny_sip_policyId4 ${policyId} SecurityPolicy-Deny-SIP-00006 [Tags] called domain ip port source Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00006 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId3 ${objectId} insert_policyId_to_file1 deny_rtp_policyId5 ${policyId} SecurityPolicy-Deny-SIP-00007 [Tags] called domain ip geo source Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00007 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} source=${objectId}|TSG_SECURITY_SOURCE_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId4 ${objectId} insert_policyId_to_file1 deny_rtp_policyId6 ${policyId} SecurityPolicy-Deny-SIP-00008 [Tags] called domain ip dest Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00008 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId5 ${objectId} insert_policyId_to_file1 deny_rtp_policyId7 ${policyId} SecurityPolicy-Deny-SIP-00009 [Tags] called domain ip port dest Comment 创建第二个源IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-00009 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId6 ${objectId} insert_policyId_to_file1 deny_rtp_policyId8 ${policyId} SecurityPolicy-Deny-SIP-000010 [Tags] called domain ip geo dest Comment 创建ip geo ${addItemList1} Create Dictionary keywordArray=XXG地区.* ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=geo_location isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000010 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} destination=${objectId}|TSG_SECURITY_DESTINATION_LOCATION isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId7 ${objectId} insert_policyId_to_file1 deny_rtp_policyId9 ${policyId} SecurityPolicy-Deny-SIP-000011 [Tags] calling ip source,from account ,deny drop,若测试无源和目的的情况可以将/03-Variable/BifangApiVariable.txt中addTestClentIPFlag置为0 Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000011 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} filterList=${object_Account_Id}|TSG_FIELD_SIP_FROM isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId8 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId10 ${policyId} SecurityPolicy-Deny-SIP-000012 [Tags] calling ip source,from account ,deny block 480,若测试无源和目的的情况可以将/03-Variable/BifangApiVariable.txt中addTestClentIPFlag置为0 Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000012 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"480"} filterList=${object_Account_Id}|TSG_FIELD_SIP_FROM isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId9 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId11 ${policyId} SecurityPolicy-Deny-SIP-000013 [Tags] calling ip source,from account ,deny block 500,若测试无源和目的的情况可以将/03-Variable/BifangApiVariable.txt中addTestClentIPFlag置为0 Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000013 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"500"} filterList=${object_Account_Id}|TSG_FIELD_SIP_FROM isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId10 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId12 ${policyId} SecurityPolicy-Deny-SIP-000014 [Tags] calling ip source,to account ,deny drop Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000014 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} filterList=${object_Account_Id}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId11 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId13 ${policyId} SecurityPolicy-Deny-SIP-000015 [Tags] calling ip source,to account ,deny block 480 Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000015 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"480"} filterList=${object_Account_Id}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId12 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId14 ${policyId} SecurityPolicy-Deny-SIP-000016 [Tags] calling ip source,to account ,deny block 500 Comment 创建Account ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000016 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"500"} filterList=${object_Account_Id}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId13 ${object_Account_Id} insert_policyId_to_file1 deny_rtp_policyId15 ${policyId} SecurityPolicy-Deny-SIP-000017 [Tags] calling ip source,called domain ip dest,from account,to account ,allow , monitor and deny drop Comment 创建domain ip dest ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000017 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId14 ${objectId} insert_policyId_to_file1 deny_rtp_objectId15 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId1501 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_policyId16 ${policyId} SecurityPolicy-Deny-SIP-000018 [Tags] calling ip source,called domain ip dest,from account,to account ,allow , monitor and deny block 480 Comment 创建domain ip dest ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000018 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"480"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId16 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId1601 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_objectId17 ${objectId} insert_policyId_to_file1 deny_rtp_policyId17 ${policyId} SecurityPolicy-Deny-SIP-000019 [Tags] calling ip source,called domain ip dest,from account,to account ,allow , monitor and deny block 500 Comment 创建domain ip dest ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-22222 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000019 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"500"} destination=${objectId}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId18 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId1801 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_objectId19 ${objectId} insert_policyId_to_file1 deny_rtp_policyId18 ${policyId} SecurityPolicy-Deny-SIP-000020 [Tags] called ip dest,called domain ip source,from account,to account ,allow , monitor and deny Comment 创建被叫方域名IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建被叫方IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.3-192.168.50.3 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000020 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"drop"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR destination=${objectId1}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId20 ${objectId} insert_policyId_to_file1 deny_rtp_objectId21 ${objectId1} insert_policyId_to_file1 deny_rtp_objectId22 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId23 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_policyId19 ${policyId} SecurityPolicy-Deny-SIP-000021 [Tags] called ip dest,called domain ip source,from account,to account ,allow , monitor and deny Comment 创建被叫方域名IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建被叫方IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.3-192.168.50.3 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000021 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"480"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR destination=${objectId1}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId24 ${objectId} insert_policyId_to_file1 deny_rtp_objectId25 ${objectId1} insert_policyId_to_file1 deny_rtp_objectId26 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId27 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_policyId20 ${policyId} SecurityPolicy-Deny-SIP-000022 [Tags] called ip dest,called domain ip source,from account,to account ,allow , monitor and deny Comment 创建被叫方域名IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.2-192.168.50.2 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId} AddObjects ${1} ${objectDict} Comment 创建被叫方IP ${addItemList1} Create Dictionary isSession=endpoint ip=192.168.50.3-192.168.50.3 port=0-0 direction=0 protocol=0 isInitialize=0 ${addItemLists} Create list ${addItemList1} ${objectDict} Create Dictionary objectType=ip objectSubType=endpoint isValid=${1} addItemList=${addItemLists} ${rescode} ${objectId1} AddObjects ${1} ${objectDict} Comment 创建Account1 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$zdjzyq12voip,zdjzy*,yq12v,*12voip ${rescode} ${object_Account_Id1} AddObject2 ${1} ${objectDict} Comment 创建Account2 ${objectDict} Create Dictionary objectType=account isValid=${1} addItemList=$wx7051406391,wx705*,51406,*51406391 ${rescode} ${object_Account_Id2} AddObject2 ${1} ${objectDict} Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SIP-000022 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","method":"block","code":"500"} source=${objectId}|TSG_SECURITY_SOURCE_ADDR destination=${objectId1}|TSG_SECURITY_DESTINATION_ADDR filterList=${object_Account_Id1}|TSG_FIELD_SIP_FROM,${object_Account_Id2}|TSG_FIELD_SIP_TO isValid=${0} appIdObjects=${SIP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 deny_rtp_objectId28 ${objectId} insert_policyId_to_file1 deny_rtp_objectId29 ${objectId1} insert_policyId_to_file1 deny_rtp_objectId30 ${object_Account_Id1} insert_policyId_to_file1 deny_rtp_objectId31 ${object_Account_Id2} insert_policyId_to_file1 deny_rtp_policyId21 ${policyId} SecurityPolicy-Deny-SIP-000023 [Tags] deny,SIP and RTP Comment 创建安全策略 ${policyDict} Create Dictionary policyName=SecurityPolicy-Deny-SipAndRtp-000015 policyType=tsg_security policyDesc=autotest action=deny userRegion={"protocol":"SIP","protocol":"RTP","method":"drop"} isValid=${0} appIdObjects=${SIP_ID},${RTP_ID} log ${policyDict} ${rescode} ${policyId} AddPolicies 1 ${policyDict} v2 ${policyId} Get-Pids ${policyId} ${policyId} Set Variable ${policyId}[0] insert_policyId_to_file1 allow_sip_policyId22 ${policyId}