Hi, Anyone doing audit’s on their routers & switches? If so, what are you using for that? For starters I’m just after the simple things like old management addresses being absent, certain firmware versions not being used, some accounts which are or are not there etc. (I’ve been thinking something like grep on oxidized backups but there sure must be a better way of doing it)

  • kn33@lemmy.worldEnglish
    1·
    24 days ago

    I’ve seen fortimanager, can’t say I’m impressed so far

    It definitely takes a solid time investment to pay off.

    It’s a multi vendor environment. Not ideal, parts are ours, parts are managed on behalf of customers.

    In that case, there’s not a great “one size fits all” solution that I know of, but there are ways to make it easier. Have you looked at Auvik? It’s a bit overkill for just auditing configs, but it’s really good at helping you collect all the configs. From there, you can pick them apart with grep or whatever text parsing tool you want to look for things that shouldn’t be there.

    • redlemace@lemmy.worldOPEnglish
      1·
      24 days ago

      Thnx. I will take time to look deeper into fortimanager. Will also see if Auvik gas advantage over the current oxidized server (it has been running fine for years now without much attention)

    • burrito@sh.itjust.worksEnglish
      1·
      24 days ago

      Auvik pricing is absolutely ridiculous. They wanted almost $40k/yr for 300 devices. And it lacks a ton of features. Want to load a map of your campus so you can place your devices for easy monitoring? Nope, they don’t support maps. Their “success managers” were unhelpful about any issues we brought forward. My happiest day with Auvik was when we were nearing the end of our contract and I told them we were canceling.