Hi Team,
Can you help to get all the details verifying NTP/DNS and Fortiguard configuratioins ?
Page 1 / 1
Hi Varun,
have you tried the Config search NQE?
You can find it under:
NQE → Library → Forward Library → Devices → “Config Search”
In the NQE click the “Parameters” button
then in the options fill in your config patters you are looking for and click “save”
Once save execute the NQE
Please provide feedback if that solved your question.
Vladi
Feel free to reply if you’d like us to mock something up for you.
Not fruitful, I need this output in table form so that others can use it as per their requirement.
Also a sample of the commands you are looking for would be helpful.
Hi Varun,
As discussed, for Fortinet you have to run external commands to collect the DNS condiguration. The reasons is that those settings are not part of the Fortinet config.
Here an example how to create parsed for Cisco IOS and ASA devices:
//Here is the definition for the config patterns for DNS server configuration for IOS and ASA devices
ciscodnspattern=
```
ip name-server {dnsservers:string*}
```;
ciscoasapattern=
```
dns server-group
name-server {dnsservers:string*}
```;
//Here is the query
foreach device in network.devices
//following section is used to apply different config patterns depending on device OS type
let ospattern = if device.platform.os == OS.IOS then ciscodnspattern
else if device.platform.os == OS.IOS_XE then ciscodnspattern
else if device.platform.os == OS.IOS_XR then ciscodnspattern
else if device.platform.os == OS.ASA then ciscoasapattern
else ciscodnspattern
let matchData = blockMatches(device.files.config, ospattern)//parses the config against OS specific pattern
foreach line in matchData
select{
device_Name: device.name,
device_type: device.platform.deviceType,
device_OS: device.platform.os,
test: (foreach test in line.data select test.dnsservers )
}I hope this helps.
For the NTP section, just you can run the same NQE with adapted config pattern for NTP
hope it helps
Vladi
i am using the below query to get the information ,
//Here is the definition for the config patterns for DNS server configuration for IOS and ASA devices
ciscontppattern=
```
ntp server {ntpservers:string*}
```;
//Here is the query
foreach device in network.devices
//following section is used to apply different config patterns depending on device OS type
let vendorpattern = if device.platform.vendor == Vendor.CISCO then ciscontppattern
else ciscontppattern
let matchData = blockMatches(device.files.config, vendorpattern)//parses the config against OS specific pattern
foreach line in matchData
let platform = device.platform
select{
device_Name: device.name,
device_type: device.platform.deviceType,
Vendor: device.platform.vendor,
NTP_Server: (foreach test in line.data select test.ntpservers )
}
============================================================================================================================================================================================================================================
but the output for NTP Server colum contain more infomation ,i need just IP Details.
when i try to use the match.data.ntpserver , i am getting errror , can you please have a look on this ?
Rohit,
Cisco uses one line per NTP Servers.
You can use this query and pattern.
ciscontppattern=
```
ntp server {ntpservers:string}
```;
foreach device in network.devices
let matchData = blockMatches(device.files.config, ciscontppattern)
foreach line in matchData
let platform = device.platform
select{
device_Name: device.name,
device_type: device.platform.deviceType,
Vendor: device.platform.vendor,
NTP_Server: line.data.ntpservers
}
Reply
Sign up
Already have an account? Login
Welcome to the Forward Networks Community
Select a login option:
Register / Login Forward Employee LoginEnter your E-mail address. We'll send you an e-mail with instructions to reset your password.