Skip to content

akaratkevich/port-audit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

52 Commits
bin/linuxX64
bin/linuxX64
 
 
cmd
cmd
 
 
internal
internal
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
devicesList
devicesList
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
inventory.yml
inventory.yml
 
 
prodInventory.yml
prodInventory.yml
 
 

Repository files navigation

port-audit

Static Badge Static Badge

| ⚠️ WARNING: This project is still in progress ⚠️ |

Port-Audit is a tool designed for network administrators and engineers to automate the auditing of network devices. This application leverages SSH for remote execution of network commands, enabling the collection of interface data directly from the network devices.

Capabilities:

Platform Specificity: The method of screen scraping is employed on the devices that do not support structured data to parse the outputs- which necessitates distinct handling between different operating systems due to format variations.

Command Execution: Currently, the application supports the following SSH commands for data collection:

  • Static Badge [NXOS/IOS - show interface status]
  • Static Badge [IOS - show interface description]
  • Static Badge [IOSXR - show interface description]
  • Static Badge [JUNOS]

Baseline Comparison:

Users have the option to generate a new baseline sheet by using the -base flag or upload an existing one for comparison. This functionality allows for assessing the current state of network interfaces against a previously documented baseline. The expected file name for the Excel document is "PortAudit.xlsx", with the baseline sheet titled "Baseline". The Excel sheet should include the following fields:

  • Node
  • Interface
  • Description
  • Status
  • VLAN
  • Duplex
  • Speed
  • Type

image

Output and Reporting:

Excel Reporting:

The application generates an Excel spreadsheet summarising the data collected from network devices.

Difference Reports:

Textual difference reports are produced for each node, detailing deviations from the baseline.

Archiving:

Text reports are automatically zipped and prepared for download, facilitating easy distribution and review.

Usage Guide:

Mandatory Flags:

-u: Username for SSH authentication. -p: Password for SSH authentication. -f: Path to the YAML file containing the inventory of devices to audit.

Optional Flag:

-base: Indicates whether to create a baseline sheet in the Excel report. This is useful for establishing a reference point for future audits.

Command Selection:

Users have the option to select the command that will be executed against the inventory

image

Run Example:

image

Additional Functionalities

  • Ability to generate basic inventory yaml file from a list of devices.

Running it is pretty simple, using flags -gen -f ./Path to the file that lists the devices

For example: router_1 router_2 router_3

This will generate a file containing the following with some default values:

image

If you want to be more selective about the values, you can provide them in the list:

For example:

Router_1 22 ios ssh Router_2 23 nxos ssh

[host][port][platform][transport]

image

Future Development:

Plans are underway to expand support to additional platforms and commands, enhancing the tool's versatility and adaptability to different network environments. Further discussions are also expected to better integrate the baseline management with broader network management processes, ensuring seamless operational workflows. Port-Audit aims to streamline network device management, making it more efficient and error-resistant by automating routine checks and documentation processes.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages