Managing configuration on multiple routers
-
How would you go about enforcing config changes (fw rules for example) on multiple firewalls? Let's say that there are a lot of them. More than you could configure by going "clickety-click" in webgui. Good thing: the routers are mostly identical.
I've been using Puppet to manage linux routers, but I don't think this is an option with pfSense?
Is there a usable CLI to run over SSH (from scripts)? Is it possible to import configuration (xml) from command line?
Is there some kind of api in webui? -
there is no complete CLI (yet)
there is no API (yet)
both are in the pipeline for the (distant) future.It is possible to import/replace/adjust the xml from command line.
https://doc.pfsense.org/index.php/How_can_I_reload_the_config_after_manually_editing_config.xml