f5-declarative-onboarding icon indicating copy to clipboard operation
f5-declarative-onboarding copied to clipboard

Published 20 hours ago verified publisher icon F5Networks

Cannot define networks in the allowList for the SnmpAgent class

Open dwigley opened this issue 2 years ago • 0 comments

I searched for Open SnmpAgent Class issues before posting this.

Environment

  • Declarative Onboarding Version: 1.38.0
  • BIG-IP Version: 17.1

Summary

A clear and concise description of what the bug is. Please also include information about the reproducibility and the severity/impact of the issue.

Steps To Reproduce

Steps to reproduce the behavior:

  1. Submit the following declaration: "SNMPagent": { "class": "SnmpAgent", "contact": "<SCRUBBED>", "location": "<SCRUBBED>", "allowList": [ "172.24.117.51", "172.23.117.51", "172.23.76.138", "172.24.76.138", "172.24.219.0/24" <----- if I delete this line the DO executes with out errors. ], "snmpV1": false, "snmpV2c": true },

  2. Observe the following error response:

{
"id" : "bd830e7d-a935-4140-b03f-d4541a52e916",
   "lastUpdate" : "2023-06-07T20:57:25.618Z",
   "message" : "bad declaration",
   "result" : {
      "class" : "Result",
      "code" : 400,
      "errors" : [
         {
            "dataPath" : ".declaration.Common['SNMPagent'].allowList[4]",
            "keyword" : "format",
            "message" : "should match format \"f5ip\"",
            "params" : {
               "format" : "f5ip"
            },
            "schemaPath" : "#/allOf/7/then/properties/allowList/items/format"
         },
         {
            "dataPath" : "",
            "keyword" : "if",
            "message" : "should match \"then\" schema",
            "params" : {
               "failingKeyword" : "then"
            },
            "schemaPath" : "#/allOf/1/if"
         }
      ],


### Expected Behavior
That the DO would allow for network allowedList entry of "172.24.219.0/24". It seems the format F5ip only allows for a /32 (with out the /32) address and will not accept any form of allowing a network to be defined.

Observability documentation indicates that / notation for networks is allowed and why I filed as a bug as opposed to a enhancement request:

https://clouddocs.f5.com/products/extensions/f5-declarative-onboarding/latest/declarations/observability.html#configuring-snmp-in-a-declaration


### Actual Behavior
When I push form Visual Studio Code its not accepted and I run:
curl -k --user "admin:<SCRUBBED>" "https://<SCRUBBED>/mgmt/shared/declarative-onboarding?show=full" | json_pp

To get the above error snippet. 

I assume f5ip format accepts 10.10.10.10 but not 10.10.10.0/24

dwigley avatar Jun 07 '23 21:06 dwigley