Netshot icon indicating copy to clipboard operation
Netshot copied to clipboard

Published 20 hours ago verified publisher icon netfishers-onl

Software complainace is not working for Cisco ASA firewalls

Open anburhce opened this issue 11 months ago • 13 comments

Hi Team,

Need your help to update the ASA firewall driver , as software compliance is not working for these below mentioned ASA firewall families .

Cisco ASA 5525 Cisco ASA 5545 Cisco ASA 5585.

Kinldy do let me now if you need any more details.

anburhce avatar Mar 11 '24 13:03 anburhce

Hi, can you run the snapshot in full debug mode (https://github.com/netfishers-onl/Netshot/wiki/Snapshot-troubleshooting) and share the result so that I can update the driver?

SCadilhac avatar Mar 23 '24 19:03 SCadilhac

Dear Friend,

This is the actual issue. It is not checking the software compliance. Hardware and conf backup and is working fine.

image

And i tried to run Debug snapshot but not seeing the "Enable debug log"

image

Am using [Netshot 0.19.3] version in my Environment.

anburhce avatar Mar 29 '24 09:03 anburhce

What software rules have you defined in the Compliance section?

SCadilhac avatar Mar 31 '24 14:03 SCadilhac

Family and version details are here image

part number details are here

image

Software compliance added details

image

image

And finally when i run it getting this error.

image

under reports tab i see all the devices are non-complaint

image

anburhce avatar Apr 01 '24 15:04 anburhce

Weird. I would suspect a hidden space or something similar... You may want to clear the Device Family and Part Number fields in the compliance rule and try again. If not better, can you double check (API) that the version doesn't contain any space or other unexpected character?

SCadilhac avatar Apr 01 '24 15:04 SCadilhac

It is failing because of version only. if i remove version on the compliance tab

image image

I tried it with and without space , but still no luck.

How do we solve this issue ?

anburhce avatar Apr 03 '24 10:04 anburhce

Can you use the API to check the detected version of the device? Go to Help > API browser. Find GET /devices/{id}, expand the section, click Try it out, give the device ID, and click Execute. Check softwareVersion entry in the resulting JSON.

SCadilhac avatar Apr 14 '24 20:04 SCadilhac

Hi Friend,

image

netshot - PA.txt

anburhce avatar Apr 30 '24 11:04 anburhce

Hi Scadilhac,

Kindly help.

anburhce avatar May 21 '24 15:05 anburhce

You are sharing an example from the API doc, not the query result as requested. You should have real values in the result, not values like "string".

SCadilhac avatar May 25 '24 15:05 SCadilhac

Hi Scadilhac,

Kindly check now .

image

anburhce avatar May 27 '24 12:05 anburhce

OK, so there is a space character at the end of the software version. I've updated the driver file, you can update (or you can the space to your rule, to check).

SCadilhac avatar May 27 '24 12:05 SCadilhac

Hi Scadilhac,

Can you provide the stpes to update only the driver? Also share me the driver filename which you have updated.

anburhce avatar May 27 '24 18:05 anburhce