fortigate-mcp

Create firewall policy (safe)

fortigate_create_policy

Safely create a FortiGate firewall policy: dry-run validates first, then apply by setting FORTIGATE_ENABLE_WRITE and providing the confirmation phrase.

Instructions

Safely create a firewall policy. Defaults to dry_run=true. To apply, set FORTIGATE_ENABLE_WRITE=true and pass confirm exactly as the configured confirmation phrase.

Input Schema

TableJSON Schema

Name	Required	Description
`name`	Yes	New firewall policy name
`srcintf`	Yes	Incoming interface names, e.g. ['lan']
`dstintf`	Yes	Outgoing interface names, e.g. ['virtual-wan-link']
`srcaddr`	Yes	Source address or group names
`dstaddr`	No	Destination address/group names (required unless internet-service=enable)
`service`	No	Service names (required unless internet-service=enable)
`policyid`	No	Optional policy ID; FortiGate auto-assigns when omitted.
`status`	No	Defaults to enable on create.
`action`	No	Defaults to accept on create.
`schedule`	No	Defaults to always on create.
`comments`	No	Optional FortiGate comment
`nat`	No	Defaults to enable on create.
`utm-status`	No	Enable or disable UTM profiles.
`logtraffic`	No	Defaults to all on create.
`logtraffic-start`	No
`internet-service`	No	Enable FortiGuard Internet Service destination matching.
`internet-service-name`	No	Internet Service names when internet-service is enabled
`internet-service-group`	No	Internet Service group names when internet-service is enabled
`ssl-ssh-profile`	No	Optional SSL/SSH inspection profile
`av-profile`	No	Optional antivirus profile
`webfilter-profile`	No	Optional web filter profile
`dnsfilter-profile`	No	Optional DNS filter profile
`ips-sensor`	No	Optional IPS sensor
`application-list`	No	Optional application control list
`profile-protocol-options`	No	Optional protocol options profile
`dry_run`	No	Defaults to true (plan only). Set false to apply a real change.
`confirm`	No	Required only when dry_run=false; must equal exactly 'APPLY FORTIGATE CHANGE'.

Tool Definition Quality

A4.7/5.0

Behavior5/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

The description discloses key behavioral traits: it defaults to dry_run=true (safe mode) and requires a confirmation phrase for actual changes. Annotations indicate readOnlyHint=false, destructiveHint=false, idempotentHint=false, and openWorldHint=true, which align with the described safety mechanism. No contradictions found.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is two sentences, front-loading the core action and safety detail. Every sentence earns its place. No redundant or verbose language.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness5/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the tool's complexity (27 parameters), the high schema coverage (96%) and the concise description adequately cover key aspects: creation action, safety defaults, and confirmation requirement. No output schema exists, but the return value is not critical for tool selection. The description is complete for an agent to use correctly.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters4/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

Schema coverage is 96%, so the schema itself provides strong parameter documentation. The description adds value by explaining the workflow for dry_run and confirm parameters, which are critical for safe operation. However, it does not elaborate on other parameters beyond what the schema already describes.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose5/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the tool's purpose: 'Safely create a firewall policy.' The verb 'create' and resource 'firewall policy' are unambiguous. The title reinforces this with 'Create firewall policy (safe).' It distinguishes from sibling update/delete tools by focusing on creation only.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines4/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description explicitly states when to use dry run vs. apply: 'Defaults to dry_run=true. To apply, set FORTIGATE_ENABLE_WRITE=true and pass confirm exactly as the configured confirmation phrase.' It provides clear context for safe usage but does not explicitly mention alternatives or when not to use this tool.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/PeerapolSelanon/fortigate-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server