Hi, Anyone doing audit’s on their routers & switches? If so, what are you using for that? For starters I’m just after the simple things like old management addresses being absent, certain firmware versions not being used, some accounts which are or are not there etc. (I’ve been thinking something like grep on oxidized backups but there sure must be a better way of doing it)
If the base is big enough, you’re honestly probably best with whatever fleet management tool your vendor has. I’m in a Fortinet shop, so in our case it’d be FortiManager.
It’s a multi vendor environment. Not ideal, parts are ours, parts are managed on behalf of customers. It’s mostly cisco-asa, procurve/aruba, routerOS and some fortios I’ve seen fortimanager, can’t say I’m impressed so far (but truth being said, have not spent a lot of time in it so far)
It definitely takes a solid time investment to pay off.
In that case, there’s not a great “one size fits all” solution that I know of, but there are ways to make it easier. Have you looked at Auvik? It’s a bit overkill for just auditing configs, but it’s really good at helping you collect all the configs. From there, you can pick them apart with grep or whatever text parsing tool you want to look for things that shouldn’t be there.
Thnx. I will take time to look deeper into fortimanager. Will also see if Auvik gas advantage over the current oxidized server (it has been running fine for years now without much attention)
Auvik pricing is absolutely ridiculous. They wanted almost $40k/yr for 300 devices. And it lacks a ton of features. Want to load a map of your campus so you can place your devices for easy monitoring? Nope, they don’t support maps. Their “success managers” were unhelpful about any issues we brought forward. My happiest day with Auvik was when we were nearing the end of our contract and I told them we were canceling.
A manager would say “How does $11 device/month sounds like to you??”