You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
add new module which allows to quickly integrate new configs consisting of rules which can be reported on per rule
this could be used for all kinds of configs/rules like proxies, firewalls, routers, ....
database structure
add schema generic
createtablegeneric.rule
(
id bigserial,
mgm_id int,
dev_id int,
created timestamp,
deleted timestamp,
details_text varchar,
details_json jsonb -- optional one of the two should be filled, could also be both
);
createtablegeneric.dev_type
(
id serial,
name varchar,
manufacturer varchar,
format varchar, -- format the API returns, either json or xml
login_path varchar default '/login',
...
);
altertablepublic.device add column generic_dev_type int;
-- reference into generic.dev_type
database contains no column-based details below rule level
database could even be a nosql db in unstructured format like mongodb
do not allow historic data, just current config
each rule is an arbitrary json struct
have 2 patterns for each config type to
identify relevant part of config
divide relevant part of config into single rules
do not resolve rule parts
need new dev_typ "generic"
functionality to be implemented in first step
rules & statistics report for generic rules
report export as PDF,JSON
recertification as most important module for generic rules
First PoC candidate
first generic config for prototype might be McAfee Web Gateway Proxy
This discussion was converted from issue #1610 on June 25, 2023 20:35.
Heading
Bold
Italic
Quote
Code
Link
Numbered list
Unordered list
Task list
Attach files
Mention
Reference
Menu
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
add new module which allows to quickly integrate new configs consisting of rules which can be reported on per rule
this could be used for all kinds of configs/rules like proxies, firewalls, routers, ....
database structure
functionality to be implemented in first step
First PoC candidate
Beta Was this translation helpful? Give feedback.
All reactions