RFE: "monitoring" of AWS configuration using regular CFE dry-runs

[mikeoleary]

Do you already have an issue opened with F5 support?

No

Description

I would like to know if we could have the CFE perform regular "dry-run" failovers, so that if a change was made in the AWS environment that would adversely affect CFE operations, we would find out right away.

Today's scenario:

1. NetOps team sets up F5 and CFE. Tests failover successfully.
2. 6 months may pass. Another team may "clean up" tags, edit IAM Roles, or make other changes that aren't communicated.
3. DR situation occurs but CFE is unable to perform failover due to mis-configuration.

My preferred scenario:

1. NetOps team sets up F5 and tests CFE.
2. Another team makes a change to AWS infrastructure but CFE notices this change within a specified time, perhaps 60 mins? It could log the failed Dry Run attempt, which could be monitored by an external system. Ideally, CFE config and AWS config do not get out of sync in this scenario.

Severity level :

4. Severity 3 (Medium) : Defect is causing intermittent errors in system operations.

[shyawnkarim]

Thanks for submitting this RFE. I've added it to our backlog, internal ID ESECLDTPLT-3198, to discuss with the team.

[mikeoleary]

Thank you @shyawnkarim , please email me if you want customer details.