search

netfishers-onl / Netshot

Network Configuration and Compliance Management
http://www.netfishers.onl/netshot
240 stars 57 forks source link

Software complainace is not working for Cisco ASA firewalls #299

Open anburhce opened 5 months ago

anburhce commented 5 months ago

Hi Team,

Need your help to update the ASA firewall driver , as software compliance is not working for these below mentioned ASA firewall families .

Cisco ASA 5525 Cisco ASA 5545 Cisco ASA 5585.

Kinldy do let me now if you need any more details.

SCadilhac commented 5 months ago

Hi, can you run the snapshot in full debug mode (https://github.com/netfishers-onl/Netshot/wiki/Snapshot-troubleshooting) and share the result so that I can update the driver?

anburhce commented 5 months ago

Dear Friend,

This is the actual issue. It is not checking the software compliance. Hardware and conf backup and is working fine.

image

And i tried to run Debug snapshot but not seeing the "Enable debug log"

image

Am using [Netshot 0.19.3] version in my Environment.

SCadilhac commented 5 months ago

What software rules have you defined in the Compliance section?

anburhce commented 5 months ago

Family and version details are here image

part number details are here

image

Software compliance added details

image

image

And finally when i run it getting this error.

image

under reports tab i see all the devices are non-complaint

image

SCadilhac commented 5 months ago

Weird. I would suspect a hidden space or something similar... You may want to clear the Device Family and Part Number fields in the compliance rule and try again. If not better, can you double check (API) that the version doesn't contain any space or other unexpected character?

anburhce commented 5 months ago

It is failing because of version only. if i remove version on the compliance tab

image image

I tried it with and without space , but still no luck.

How do we solve this issue ?

SCadilhac commented 4 months ago

Can you use the API to check the detected version of the device? Go to Help > API browser. Find GET /devices/{id}, expand the section, click Try it out, give the device ID, and click Execute. Check softwareVersion entry in the resulting JSON.

anburhce commented 4 months ago

Hi Friend,

image

netshot - PA.txt

anburhce commented 3 months ago

Hi Scadilhac,

Kindly help.

SCadilhac commented 3 months ago

You are sharing an example from the API doc, not the query result as requested. You should have real values in the result, not values like "string".

anburhce commented 3 months ago

Hi Scadilhac,

Kindly check now .

image

SCadilhac commented 3 months ago

OK, so there is a space character at the end of the software version. I've updated the driver file, you can update (or you can the space to your rule, to check).

anburhce commented 3 months ago

Hi Scadilhac,

Can you provide the stpes to update only the driver? Also share me the driver filename which you have updated.