Errors found in $FWDIR/conf/ipassignment.conf-checkpoint-all

Errors found in $FWDIR/conf/ipassignment.conf-checkpoint-all
0

Errors found in $FWDIR/conf/ipassignment.conf-checkpoint-all

Vendor: checkpoint

OS: all

Description:
The ipassignment.conf file is used for remote access VPN configuration. Any errors in the file’s contents will be alerted on by indeni.

Remediation Steps:
See https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk105162

vpn_ipafile_check_vsx

name: vpn_ipafile_check_vsx
description: run "vpn ipafile_check $FWDIR/conf/ipassignment.conf" on all vs in VSX
type: monitoring
monitoring_interval: 60 minutes
requires:
    vendor: checkpoint
    role-firewall: true
    vsx: true
comments:
    ipassignment-conf-errors:
        skip-documentation: true
steps:
-   run:
        type: SSH
        file: vpn-ipafile-check-vsx.remote.1.bash
    parse:
        type: AWK
        file: vpn-ipafile-check-vsx.parser.1.awk

checkpoint_ipassignment_errors

// Deprecation warning : Scala template-based rules are deprecated. Please use YAML format rules instead.

package com.indeni.server.rules.library.templatebased.checkpoint

import com.indeni.ruleengine.expressions.conditions.{Equals => RuleEquals, Not => RuleNot, Or => RuleOr}
import com.indeni.ruleengine.expressions.data.SnapshotExpression
import com.indeni.server.rules.RuleContext
import com.indeni.server.rules.library.templates.MultiSnapshotValueCheckTemplateRule
import com.indeni.server.rules.library.RuleHelper

/**
  *
  */
case class checkpoint_ipassignment_errors() extends MultiSnapshotValueCheckTemplateRule(
  ruleName = "checkpoint_ipassignment_errors",
  ruleFriendlyName = "Check Point Firewalls: Errors found in $FWDIR/conf/ipassignment.conf",
  ruleDescription = "The ipassignment.conf file is used for remote access VPN configuration. Any errors in the file's contents will be alerted on by indeni.",
  metricName = "ipassignment-conf-errors",
  alertDescription = "Errors in $FWDIR/conf/ipassignment.conf could cause Remote Access VPN clients to not be assigned their static IP address.",
  baseRemediationText = "See https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk105162",
  complexCondition = RuleNot(RuleEquals(RuleHelper.createEmptyComplexArrayConstantExpression(), SnapshotExpression("ipassignment-conf-errors").asMulti().mostRecent().value().noneable)))()