DNS servers configured do not match requirement-fortinet-FortiOS
Vendor: fortinet
OS: FortiOS
Description:
Indeni can verify that certain DNS servers are configured on a specific device.
Remediation Steps:
Update the configuration of the device to match the requirement.
How does this work?
Using the built-in “get system dns” command, lists each configured DNS server on the device.
Why is this important?
DNS allows a device to resolve a name to an IP address. For example, an application or website may be associated with many IP’s and DNS allows the client to use a name or FQDN to reach it. If a device is clustered then it would be expected to have the same DNS servers configured on all members of the cluster.
Without Indeni how would you find this?
An administrator could login and manually run the command. Showing the configured DNS servers is normally only available on the CLI or via WebUI.
fortios-get-system-dns
name: fortios-get-system-dns
description: display the configured DNS servers in the Indeni UI
type: monitoring
monitoring_interval: 30 minutes
requires:
vendor: fortinet
os.name: FortiOS
product: firewall
comments:
dns-servers:
why: |
DNS allows a device to resolve a name to an IP address. For example, an application or website may be associated with many IP's and DNS allows the client to use a name or FQDN to reach it. If a device is clustered then it would be expected to have the same DNS servers configured on all members of the cluster.
how: |
Using the built-in "get system dns" command, lists each configured DNS server on the device.
can-with-snmp: true
can-with-syslog: false
steps:
- run:
type: SSH
command: get system dns
parse:
type: AWK
file: get_system_dns.parser.1.awk
crossvendor_compliance_check_dns_servers
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/crossvendor/compliance/crossvendor_compliance_check_dns_servers.scala