CSV Format for Cleanup Instances

When you select a cleanup type in the cleanup browser and click Export, you are prompted to download a CSV file with the details of the instances of the selected cleanup for all of the selected devices. The filename includes cleanup type, and the date and time of the export. The first few lines of the file include commented text that you can set a parser to ignore.

To properly view the CSV file, open it with a text editor.

The file includes file header, device header and instance sections:

File header - The 3 lines at the beginning of the file that identify the:
- Version of the export engine - "# version <VERSION NUMBER>"
- Cleanup type name - "# cleanup type:","<NAME>"
- Cleanup type code - "# cleanup code:","<CODE>" where the code has one letter and two digits, such as C05
Device header - The 3 lines before the instances from each device that identify the:
- Device name - "# device:","<DEVICE NAME>"
- Device vendor name - "# type:","<VENDOR NAME>"
- Instance format - The format for the instances for the cleanup type and vendor (see below)
Instance - Each rule or object that matches the criteria for the cleanup

For each cleanup type and vendor, the instance format is:

Disabled Rules

Check Point	`"POLICY PACKAGE","RULE NUMBER","CHECK POINT UID","RULE NAME","RULE COMMENT"`
Cisco	`"ACL NAME","ACE COMMENT"`
Fortinet	`"ZONE2ZONE","RULE NUMBER","RULE UID","RULE NAME","RULE COMMENT"`
Juniper	`"ZONE2ZONE","POLICY ID","POLICY NAME","POLICY COMMENT"`
Palo Alto	`"ZONE2ZONE","RULE NUMBER","RULE UID","RULE NAME","RULE COMMENT"`

Duplicate Network Objects

The two lines before each set of duplicates are:

All vendors

Number of duplicates and their matched properties

"DUPLICATE_<OBJECT TYPE>:<NUMBER OF DUPLICATES>","IP:<IP_ADDRESS>","MASK:<NETMASK>","<COMMENT>"

For example: "DUPLICATE_NETWORKS:2","IP:1.1.1.0","MASK:255.255.255.0",""

* For Juniper devices, the object's zone is added to the end of the instance.

Instance format

"OBJECT TYPE","OBJECT NAME","IP","COMMENT"

Where "OBJECT TYPE" is either: Host, Network

For example: "Network","LAN","1.1.1.0/255.255.255.0",""

Duplicate Services

The two lines before each set of duplicates are:

All vendors

Number of duplicates and their matched properties

"DUPLICATE_<OBJECT TYPE>:<NUMBER OF DUPLICATES>","PROTOCOL:<PROTOCOL NUMBER>","Port:<PORT NUMBER>","SrcPort:<PORT NUMBER>","Timeout:<TIMEOUT VALUE>"

For example: "DUPLICATE_SERVICES: 4","PROTOCOL: 6","Port: 5060","","Timeout: 0"

Instance format

"OBJECT TYPE","OBJECT NAME","IP","COMMENT"

Where "OBJECT TYPE" is: Service

For example: "Service","sip-tcp","6","5060","Session Initiation Protocol over TCP"

Empty Groups

All vendors

"OBJECT TYPE","OBJECT NAME",,"COMMENT"

Where "OBJECT TYPE" is either: Network group, Service Group

For example: "Network group","Group1","","Internal Group"

Fully Shadowed and Redundant Rules

Check Point	`"POLICY PACKAGE","RULE NUMBER","CHECK POINT UID","RULE NAME","RULE COMMENT"`
Cisco	`"ACL NAME","ACE COMMENT"`
Fortinet	`"ZONE2ZONE","RULE NUMBER","RULE UID","RULE NAME","RULE COMMENT"`
Juniper	`"ZONE2ZONE","JUNIPER POLICY ID","RULE NAME","RULE COMMENT"`
Palo Alto	`"ZONE2ZONE","RULE NUMBER","RULE UID","RULE NAME","RULE COMMENT"`

Unattached Objects

All vendors

"OBJECT TYPE","OBJECT NAME","IP","COMMENT"

Where "OBJECT TYPE" is either: Host, Network, Network group

For example: "Network","Network_2_IPV6","2001:400:1:1::100/64",""

Unused Objects

All vendors

"OBJECT TYPE","OBJECT NAME","IP","COMMENT"

Where "OBJECT TYPE" is either: Host, Network, Network group

For example: "Network","Network_2_IPV6","2001:400:1:1::100/64",""