Hello Everyone,
I am running into an issue where NCM compliance does not appear to be able to correctly anaylze the stored configuration files. I am doing a simple test for port-security. I have it setup as follows.
Alert on the rule below if: string is found
Advanced Config Search: must contain RegEx expression ^.switchport port-security$
config block:
start: interface.*Ethernet((\d{1,2}/\d/\d{1,2})|(\d{1,2}/\d{1,2}))
end: !
I am just doing a simple test and I understand it is not checking for a trunk port or alerting if it is not there. I am just wanting to make sure that NCM even sees the command on the interface! The fact is, when I test and then paste a config block to test against in the window that pops up, it works as intended and returns all expected results. Every interface that has switchport port-security shows correctly. Yet when I Select the same exact config that is stored within NCM, it completly does not work. It wont find a single port that has the command switchport port-security on it.
I did a second test to just look for switchport mode access and it returned the correct results. Listed every interface that had that command, same with changing it to trunk. The only thing I can think of is that within the config block there is a second command "switchport port-security mac-address" which is why I am using the $ anchor to make sure that it is actually enabled on the interface. I don't want regex matching the switchport port-security mac-address and giving me a false positive.
I checked to see if there were any hotfix's for NCM 7.5 and there does appear to be one but I do not know what it does since someone just copied and pasted the notes from 7.4.1 Hotfix 3...
Any ideas would be appreaciated!
-Thanks