Policy mismatch across cluster members-checkpoint-gaia-embedded
Vendor: checkpoint
OS: gaia-embedded
Description:
indeni will identify when two devices are part of a cluster and alert if the policy installed is different.
Remediation Steps:
Review the policy installed on each device in the cluster and ensure they are the same.
cpembedded-policy-fingerprint
name: cpembedded-policy-fingerprint
description: retrive policy name and unique identifier
type: monitoring
monitoring_interval: 5 minutes
requires:
vendor: checkpoint
os.name: gaia-embedded
role-firewall: 'true'
this_tag_disables_this_script: this_is_intentional
comments:
policy-installed-fingerprint:
why: |
To check the policy name and unique identifier for the policy
how: |
By running the checkpoint commands "fw stat" and then checkking the "md5" value for this policy
can-with-snmp: false
can-with-syslog: false
steps:
- run:
type: SSH
file: policy-fingerprint-embedded.remote.1.bash
parse:
type: AWK
file: policy-fingerprint-embedded.parser.1.awk
cross_vendor_compare_policy_fingerprint
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/crossvendor/cross_vendor_compare_policy_fingerprint.scala