Cluster members’ domain names mismatch-paloaltonetworks-panos
Vendor: paloaltonetworks
OS: panos
Description:
Indeni will identify when two devices are part of a cluster and alert if the domain setting is different.
Remediation Steps:
Review the settings of each device in the cluster and ensure they are the same.
How does this work?
This script pulls the Palo Alto Networks firewall’s active configuration and extracts the timezone from there.
Why is this important?
Most configurations in Palo Alto Networks firewalls are synchronized across cluster members. Some are not, the domain name is one of them. It is important to verify that the domain name is the same on all cluster members to avoid confusion or issues.
Without Indeni how would you find this?
An administrator may write a script to pull this data from cluster members and compare it.
panos-show-config-merged-monitoring-xml
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/parsers/src/panw/panos/show-config-merged-m/show-config-merged-m.ind.yaml
cross_vendor_compare_domain
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/crossvendor/cross_vendor_compare_domain.scala