Package routerdefense :: Module metrics
[hide private]
[frames] | no frames]

Source Code for Module routerdefense.metrics

   1  # -*- coding: iso-8859-1 -*- 
   2   
   3  __docformat__ = 'restructuredtext' 
   4  __version__ = '$Id$' 
   5   
   6  from common import * 
   7  import __builtin__ 
   8   
9 -class metrics:
10 11 metrics_list = list() 12
13 - def __init__(self):
14 pass
15
16 - def add(self,metric_name):
17 if metric_name == 'cdp': 18 metric = cdp() 19 if metric_name == 'lldp': 20 metric = lldp() 21 if metric_name == 'archive': 22 metric = ArchiveConfiguration() 23 if metric_name == 'syslog': 24 metric = Syslog() 25 if metric_name == 'snmp': 26 metric = Snmp() 27 if metric_name == 'tacacsRed': 28 metric = tacacsRedun() 29 if metric_name == 'tacacsThe': 30 metric = tacacsAuth() 31 if metric_name == 'tacacsTho': 32 metric = tacacsAuthorization() 33 if metric_name == 'tacacsAcc': 34 metric = tacacsAccounting() 35 if metric_name == 'BannerMotd': 36 metric = motdBanner() 37 if metric_name == 'BannerLogin': 38 metric = loginBanner() 39 if metric_name == 'BannerExec': 40 metric = execBanner() 41 if metric_name == 'pwdMgmt': 42 metric = passwordManagement() 43 if metric_name == 'MgmtPP': 44 metric = managementProtection() 45 if metric_name == 'exceptions': 46 metric = exceptionCrash() 47 if metric_name == 'memCpu': 48 metric = memCpu() 49 if metric_name == 'genSvcs': 50 metric = globalServices() 51 if metric_name == 'consolePort': 52 metric = lineConsole() 53 if metric_name == 'auxPort': 54 metric = lineAux() 55 if metric_name == 'vtyPort': 56 metric = lineVty() 57 self.metrics_list.append(metric) 58 return metric
59
60 - def list_metric(self):
61 return self.metrics_list
62
63 -class IFSmetrics:
64 - def __init__(self):
65 pass
66 - def add_if(self,metric_name, name):
67 if metric_name == 'interface': 68 metric = interfaces() 69 metric.name = name 70 return metric
71
72 -class ACLV4metrics:
73 - def __init__(self):
74 pass
75 - def add(self,metric_name, name):
76 if metric_name == 'aclv4': 77 metric = ACLv4() 78 metric.name = name 79 return metric
80
81 -class ACLV6metrics:
82 - def __init__(self):
83 pass
84 - def add(self,metric_name, name):
85 if metric_name == 'aclv6': 86 metric = ACLv6() 87 metric.name = name 88 return metric
89
90 -class CPmetrics:
91 92 metrics_list = list() 93
94 - def __init__(self):
95 pass
96
97 - def add(self,metric_name):
98 if metric_name == 'icmpredirects': 99 metric = IPicmpRedirects() 100 if metric_name == 'icmpunreach': 101 metric = IPicmpUnreachable() 102 if metric_name == 'proxyarp': 103 metric = ARPproxy() 104 if metric_name == 'ntp': 105 metric = Ntp() 106 if metric_name == 'bgp': 107 metric = Bgp() 108 if metric_name == 'eigrp': 109 metric = Eigrp() 110 if metric_name == 'rip': 111 metric = Rip() 112 if metric_name == 'ospf': 113 metric = Ospf() 114 if metric_name == 'glbp': 115 metric = Glbp() 116 if metric_name == 'hsrp': 117 metric = Hsrp() 118 if metric_name == 'vrrp': 119 metric = Vrrp() 120 if metric_name == 'tclsh': 121 metric = TclSH() 122 if metric_name == 'tcp': 123 metric = Tcp() 124 if metric_name == 'multicast': 125 metric = Multicast() 126 if metric_name == 'qos': 127 metric = Qos() 128 self.metrics_list.append(metric) 129 return metric
130
131 - def add_if(self,metric_name, name):
132 if metric_name == 'interface': 133 metric = interfaces() 134 metric.name = name 135 self.metrics_list.append(metric_name) 136 return metric
137 138
139 - def list_metric(self):
140 return self.metrics_list
141 142
143 -class DPmetrics:
144 145 metrics_list = list() 146
147 - def __init__(self):
148 pass
149
150 - def add(self,metric_name):
151 if metric_name == 'icmpredirects': 152 metric = IPicmpRedirects() 153 if metric_name == 'ipoptions': 154 metric = IPoptions() 155 if metric_name == 'ipsourceroute': 156 metric = IPsourceRoute() 157 if metric_name == 'denyIcmpAnyAny': 158 metric = ICMPdeny() 159 if metric_name == 'IPfragments': 160 metric = IPfrags() 161 if metric_name == 'urpf': 162 metric = URPF() 163 if metric_name == 'urpfv6': 164 metric = URPFv6() 165 if metric_name == 'portsecurity': 166 metric = PortSecurity() 167 if metric_name == 'ipv6': 168 metric = IPv6() 169 if metric_name == 'ipsec': 170 metric = IPSEC() 171 if metric_name == 'l2protos': 172 metric = dtpstpvlan() 173 if metric_name == 'netflow': 174 metric= Netflow() 175 self.metrics_list.append(metric) 176 return metric
177
178 - def add_if(self,metric_name, name):
179 if metric_name == 'interface': 180 metric = interfaces() 181 metric.name = name 182 self.metrics_list.append(metric_name) 183 return metric
184 185
186 - def list_metric(self):
187 return self.metrics_list
188 189
190 -class interfaces:
191 - def __init__(self):
192 self.name = '' 193 self.ip_address = 'no ip address' 194 self.shutdown_state = 'no shutdown' 195 self.configuration = []
196
197 - def get_metrics_from_config(self):
198 for line in range (0, len(self.configuration)): 199 if self.configuration[line].startswith('ip address'): 200 self.ip_address = self.configuration[line] 201 if self.configuration[line].startswith('no ip address'): 202 self.ip_address = self.configuration[line] 203 if self.configuration[line].startswith('shutdown'): 204 self.shutdown_state = 'shutdown'
205
206 -class ACLv4:
207 - def __init__(self):
208 self.name = '' 209 self.type = '' 210 self.configuration = []
211
212 - def get_metrics_from_config(self):
213 for line in range (0, len(self.configuration)): 214 if self.configuration[line].startswith('ip access-list'): 215 #self.name = self.configuration[line].split(' ')[3] 216 self.type = self.configuration[line].split(' ')[2]
217 218
219 -class ACLv6:
220 - def __init__(self):
221 self.name = '' 222 self.configuration = []
223
224 - def get_metrics_from_config(self):
225 for line in range (0, len(self.configuration)): 226 if self.configuration[line].startswith('ipv6 access-list'): 227 self.name = self.configuration[line].split[' '][2]
228
229 -class lineConsole:
230 - def __init__(self):
231 self.metric_name = 'Console' 232 self.long_name = 'Console port' 233 self.password = None 234 self.exec_timeout = { 235 "cmdInCfg": (None), 236 "must_report": False, 237 "fixImpact": (None), 238 "definition": (None), 239 "desc": (None), 240 "threatInfo": (None), 241 "howtofix": (None), 242 "upgrade": (None), 243 "cvss": (None) 244 } 245 self.privilegezero = { 246 "cmdInCfg": (None), 247 "loginlocal": (None), 248 "globalusername": (None), 249 "must_report": False, 250 "fixImpact": (None), 251 "definition": (None), 252 "desc": (None), 253 "threatInfo": (None), 254 "howtofix": (None), 255 "upgrade": (None), 256 "cvss": (None) 257 }
258
259 -class lineAux:
260 - def __init__(self):
261 self.password = None 262 self.metric_name = 'Aux' 263 self.long_name = 'Aux port' 264 self.exec_timeout = { 265 "cmdInCfg": (None), 266 "must_report": False, 267 "fixImpact": (None), 268 "definition": (None), 269 "desc": (None), 270 "threatInfo": (None), 271 "howtofix": (None), 272 "upgrade": (None), 273 "cvss": (None) 274 } 275 self.transport_input = { 276 "cmdInCfg": (None), 277 "must_report": False, 278 "fixImpact": (None), 279 "definition": (None), 280 "desc": (None), 281 "threatInfo": (None), 282 "howtofix": (None), 283 "upgrade": (None), 284 "cvss": (None) 285 } 286 self.transport_output = { 287 "cmdInCfg": (None), 288 "must_report": False, 289 "fixImpact": (None), 290 "definition": (None), 291 "desc": (None), 292 "threatInfo": (None), 293 "howtofix": (None), 294 "upgrade": (None), 295 "cvss": (None) 296 } 297 self.noExec = { 298 "cmdInCfg": (None), 299 "must_report": False, 300 "fixImpact": (None), 301 "definition": (None), 302 "desc": (None), 303 "threatInfo": (None), 304 "howtofix": (None), 305 "upgrade": (None), 306 "cvss": (None) 307 }
308
309 -class lineVty:
310 - def __init__(self):
311 self.metric_name = 'Vty' 312 self.long_name = 'Vty lines' 313 self.password = None 314 self.sessionNumbers = None 315 self.exec_timeout = { 316 "cmdInCfg": (None), 317 "must_report": False, 318 "fixImpact": (None), 319 "definition": (None), 320 "desc": (None), 321 "threatInfo": (None), 322 "howtofix": (None), 323 "upgrade": (None), 324 "cvss": (None) 325 } 326 self.transport_input = { 327 "cmdInCfg": (None), 328 "must_report": False, 329 "fixImpact": (None), 330 "definition": (None), 331 "desc": (None), 332 "threatInfo": (None), 333 "howtofix": (None), 334 "upgrade": (None), 335 "cvss": (None) 336 } 337 self.transport_output = { 338 "cmdInCfg": (None), 339 "must_report": False, 340 "fixImpact": (None), 341 "definition": (None), 342 "desc": (None), 343 "threatInfo": (None), 344 "howtofix": (None), 345 "upgrade": (None), 346 "cvss": (None) 347 } 348 self.ipv4_access_class = { 349 "cmdInCfg": (None), 350 "must_report": False, 351 "fixImpact": (None), 352 "definition": (None), 353 "desc": (None), 354 "threatInfo": (None), 355 "howtofix": (None), 356 "upgrade": (None), 357 "cvss": (None) 358 } 359 self.ipv6_access_class = { 360 "cmdInCfg": (None), 361 "must_report": False, 362 "fixImpact": (None), 363 "definition": (None), 364 "desc": (None), 365 "threatInfo": (None), 366 "howtofix": (None), 367 "upgrade": (None), 368 "cvss": (None) 369 }
370
371 -class motdBanner:
372 - def __init__(self):
373 self.metric_name = 'motdBanner' 374 self.long_name = 'MOTD banner' 375 self.configured = { 376 "cmdInCfg": (None), 377 "must_report": False, 378 "desc": (None), 379 "fixImpact": (None), 380 "definition": (None), 381 "threatInfo": (None), 382 "howtofix": (None), 383 "upgrade": (None), 384 "cvss": (None) 385 } 386 self.device_hostname = { 387 "cmdInCfg": (None), 388 "must_report": False, 389 "desc": (None), 390 "fixImpact": (None), 391 "definition": (None), 392 "threatInfo": (None), 393 "howtofix": (None), 394 "upgrade": (None), 395 "cvss": (None) 396 }
397
398 -class execBanner:
399 - def __init__(self):
400 self.metric_name = 'execBanner' 401 self.long_name = 'EXEC banner' 402 self.configured = { 403 "cmdInCfg": (None), 404 "must_report": False, 405 "desc": (None), 406 "fixImpact": (None), 407 "definition": (None), 408 "threatInfo": (None), 409 "howtofix": (None), 410 "upgrade": (None), 411 "cvss": (None) 412 } 413 self.device_hostname = { 414 "cmdInCfg": (None), 415 "must_report": False, 416 "desc": (None), 417 "fixImpact": (None), 418 "definition": (None), 419 "threatInfo": (None), 420 "howtofix": (None), 421 "upgrade": (None), 422 "cvss": (None) 423 }
424
425 -class loginBanner:
426 - def __init__(self):
427 self.metric_name = 'loginBanner' 428 self.long_name = 'LOGIN banner' 429 self.configured = { 430 "cmdInCfg": (None), 431 "must_report": False, 432 "desc": (None), 433 "fixImpact": (None), 434 "definition": (None), 435 "threatInfo": (None), 436 "howtofix": (None), 437 "upgrade": (None), 438 "cvss": (None) 439 } 440 self.device_hostname = { 441 "cmdInCfg": (None), 442 "must_report": False, 443 "desc": (None), 444 "fixImpact": (None), 445 "definition": (None), 446 "threatInfo": (None), 447 "howtofix": (None), 448 "upgrade": (None), 449 "cvss": (None) 450 }
451
452 -class globalServices:
453 - def __init__(self):
454 self.metric_name = 'globalServices' 455 self.long_name = 'IOS TCP/UDP services' 456 self.pwd_recovery = { 457 "cmdInCfg": (None), 458 "must_report": False, 459 "desc": (None), 460 "fixImpact": (None), 461 "definition": (None), 462 "threatInfo": (None), 463 "howtofix": (None), 464 "upgrade": (None), 465 "cvss": (None) 466 } 467 self.tcp_small_servers = { 468 "cmdInCfg": (None), 469 "must_report": False, 470 "fixImpact": (None), 471 "definition": (None), 472 "desc": (None), 473 "threatInfo": (None), 474 "howtofix": (None), 475 "upgrade": (None), 476 "cvss": (None) 477 } 478 self.udp_small_servers = { 479 "cmdInCfg": (None), 480 "must_report": False, 481 "desc": (None), 482 "fixImpact": (None), 483 "definition": (None), 484 "threatInfo": (None), 485 "howtofix": (None), 486 "upgrade": (None), 487 "cvss": (None) 488 } 489 self.service_finger = { 490 "cmdInCfg": (None), 491 "must_report": False, 492 "fixImpact": (None), 493 "definition": (None), 494 "threatInfo": (None), 495 "howtofix": (None), 496 "upgrade": (None), 497 "cvss": (None) 498 } 499 self.service_bootps = { 500 "cmdInCfg": (None), 501 "must_report": False, 502 "fixImpact": (None), 503 "definition": (None), 504 "threatInfo": (None), 505 "howtofix": (None), 506 "upgrade": (None), 507 "cvss": (None) 508 } 509 self.service_tcpkeepalive_in = { 510 "cmdInCfg": (None), 511 "must_report": False, 512 "fixImpact": (None), 513 "definition": (None), 514 "threatInfo": (None), 515 "howtofix": (None), 516 "upgrade": (None), 517 "cvss": (None) 518 } 519 self.service_tcpkeepalive_out = { 520 "cmdInCfg": (None), 521 "must_report": False, 522 "fixImpact": (None), 523 "definition": (None), 524 "threatInfo": (None), 525 "howtofix": (None), 526 "upgrade": (None), 527 "cvss": (None) 528 } 529 self.service_ipdhcpboot_ignore = { 530 "cmdInCfg": (None), 531 "must_report": False, 532 "fixImpact": (None), 533 "definition": (None), 534 "threatInfo": (None), 535 "howtofix": (None), 536 "upgrade": (None), 537 "cvss": (None) 538 } 539 self.service_dhcp = { 540 "cmdInCfg": (None), 541 "must_report": False, 542 "fixImpact": (None), 543 "definition": (None), 544 "threatInfo": (None), 545 "howtofix": (None), 546 "upgrade": (None), 547 "cvss": (None) 548 } 549 self.service_mop = { 550 "cmdInCfg": (None), 551 "must_report": False, 552 "fixImpact": (None), 553 "definition": (None), 554 "threatInfo": (None), 555 "howtofix": (None), 556 "upgrade": (None), 557 "cvss": (None) 558 } 559 self.ip_domain_lookup = { 560 "cmdInCfg": (None), 561 "must_report": False, 562 "fixImpact": (None), 563 "definition": (None), 564 "threatInfo": (None), 565 "howtofix": (None), 566 "upgrade": (None), 567 "cvss": (None) 568 } 569 self.service_pad = { 570 "cmdInCfg": (None), 571 "must_report": False, 572 "fixImpact": (None), 573 "definition": (None), 574 "threatInfo": (None), 575 "howtofix": (None), 576 "upgrade": (None), 577 "cvss": (None) 578 } 579 self.service_http_server = { 580 "cmdInCfg": (None), 581 "must_report": False, 582 "fixImpact": (None), 583 "definition": (None), 584 "threatInfo": (None), 585 "howtofix": (None), 586 "upgrade": (None), 587 "cvss": (None) 588 } 589 self.service_https_server = { 590 "cmdInCfg": (None), 591 "must_report": False, 592 "fixImpact": (None), 593 "definition": (None), 594 "threatInfo": (None), 595 "howtofix": (None), 596 "upgrade": (None), 597 "cvss": (None) 598 } 599 self.service_config = { 600 "cmdInCfg": (None), 601 "must_report": False, 602 "fixImpact": (None), 603 "definition": (None), 604 "threatInfo": (None), 605 "howtofix": (None), 606 "upgrade": (None), 607 "cvss": (None) 608 }
609
610 -class memCpu:
611 - def __init__(self):
612 self.metric_name = 'memCpu' 613 self.long_name = 'CPU/Memory' 614 self.scheduler_allocate = { 615 "cmdInCfg": (None), 616 "must_report": False, 617 "fixImpact": (None), 618 "definition": (None), 619 "desc": (None), 620 "threatInfo": (None), 621 "howtofix": (None), 622 "upgrade": (None), 623 "cvss": (None) 624 } 625 self.scheduler_interval = { 626 "cmdInCfg": (None), 627 "must_report": False, 628 "fixImpact": (None), 629 "definition": (None), 630 "desc": (None), 631 "threatInfo": (None), 632 "howtofix": (None), 633 "upgrade": (None), 634 "cvss": (None) 635 } 636 self.low_watermark_processor = { 637 "cmdInCfg": (None), 638 "must_report": False, 639 "desc": (None), 640 "fixImpact": (None), 641 "definition": (None), 642 "threatInfo": (None), 643 "howtofix": (None), 644 "upgrade": (None), 645 "cvss": (None) 646 } 647 self.low_watermark_io = { 648 "cmdInCfg": (None), 649 "must_report": False, 650 "desc": (None), 651 "fixImpact": (None), 652 "definition": (None), 653 "threatInfo": (None), 654 "howtofix": (None), 655 "upgrade": (None), 656 "cvss": (None) 657 } 658 self.mem_reserve_critical = { 659 "cmdInCfg": (None), 660 "must_report": False, 661 "desc": (None), 662 "fixImpact": (None), 663 "definition": (None), 664 "threatInfo": (None), 665 "howtofix": (None), 666 "upgrade": (None), 667 "cvss": (None) 668 } 669 self.mem_reserve_console = { 670 "cmdInCfg": (None), 671 "must_report": False, 672 "desc": (None), 673 "fixImpact": (None), 674 "definition": (None), 675 "threatInfo": (None), 676 "howtofix": (None), 677 "upgrade": (None), 678 "cvss": (None) 679 } 680 self.mem_ignore_overflow_io = { 681 "cmdInCfg": (None), 682 "must_report": False, 683 "desc": (None), 684 "fixImpact": (None), 685 "definition": (None), 686 "threatInfo": (None), 687 "howtofix": (None), 688 "upgrade": (None), 689 "cvss": (None) 690 } 691 692 self.mem_ignore_overflow_cpu = { 693 "cmdInCfg": (None), 694 "must_report": False, 695 "desc": (None), 696 "fixImpact": (None), 697 "definition": (None), 698 "threatInfo": (None), 699 "howtofix": (None), 700 "upgrade": (None), 701 "cvss": (None) 702 } 703 self.cpu_threshold_notice = { 704 "cmdSnmpserverTraps": (None), 705 "cmdSnmpserverHost": (None), 706 "cmdCpuThreshold": (None), 707 "cmdCpuStats": (None), 708 "must_report": False, 709 "desc": (None), 710 "fixImpact": (None), 711 "definition": (None), 712 "threatInfo": (None), 713 "howtofix": (None), 714 "upgrade": (None), 715 "cvss": (None) 716 }
717
718 -class exceptionCrash:
719 - def __init__(self):
720 self.metric_name = 'exceptionCrash' 721 self.long_name = 'Exceptions/crashes' 722 self.crashinfo_max_files = { 723 "cmdInCfg": (None), 724 "must_report": False, 725 "desc": (None), 726 "fixImpact": (None), 727 "definition": (None), 728 "threatInfo": (None), 729 "howtofix": (None), 730 "upgrade": (None), 731 "cvss": (None) 732 }
733
734 -class managementProtection:
735 - def __init__(self):
736 self.metric_name = 'managementProtection' 737 self.long_name = 'Management protection' 738 self.mgmt_interfaces = { 739 "cpHostCfg": (None), 740 "mgmtIfaceCfg": (None), 741 "must_report": False, 742 "desc": (None), 743 "fixImpact": (None), 744 "definition": (None), 745 "threatInfo": (None), 746 "howtofix": (None), 747 "upgrade": (None), 748 "cvss": (None) 749 } 750 self.ssh_server_timeout = { 751 "timeout": (None), 752 "must_report": False, 753 "desc": (None), 754 "fixImpact": (None), 755 "definition": (None), 756 "threatInfo": (None), 757 "howtofix": (None), 758 "upgrade": (None), 759 "cvss": (None) 760 } 761 self.ssh_server_auth_retries = { 762 "authRetries": (None), 763 "sourceinterface": (None), 764 "must_report": False, 765 "desc": (None), 766 "fixImpact": (None), 767 "definition": (None), 768 "threatInfo": (None), 769 "howtofix": (None), 770 "upgrade": (None), 771 "cvss": (None) 772 } 773 self.ssh_server_src_interface = { 774 "sourceinterface": (None), 775 "must_report": False, 776 "desc": (None), 777 "fixImpact": (None), 778 "definition": (None), 779 "threatInfo": (None), 780 "howtofix": (None), 781 "upgrade": (None), 782 "cvss": (None) 783 } 784 785 self.scp_server = { 786 "cmdInCfg": (None), 787 "must_report": False, 788 "desc": (None), 789 "fixImpact": (None), 790 "definition": (None), 791 "threatInfo": (None), 792 "howtofix": (None), 793 "upgrade": (None), 794 "cvss": (None) 795 } 796 self.http_secure_server = { 797 "cmdInCfg": (None), 798 "must_report": False, 799 "desc": (None), 800 "fixImpact": (None), 801 "definition": (None), 802 "threatInfo": (None), 803 "howtofix": (None), 804 "upgrade": (None), 805 "cvss": (None) 806 } 807 self.login_bruteforce = { 808 "blockfor": (None), 809 "delay": (None), 810 "quietacl": (None), 811 "faillog": (None), 812 "successlog": (None), 813 "must_report": False, 814 "desc": (None), 815 "fixImpact": (None), 816 "definition": (None), 817 "threatInfo": (None), 818 "howtofix": (None), 819 "upgrade": (None), 820 "cvss": (None) 821 }
822
823 -class tacacsRedun:
824 - def __init__(self):
825 self.metric_name = 'tacacsRedundant' 826 self.long_name = 'Tacacs+ servers redundancy' 827 self.redundant = { 828 "must_report": False, 829 "desc": (None), 830 "fixImpact": (None), 831 "definition": (None), 832 "threatInfo": (None), 833 "howtofix": (None), 834 "upgrade": (None), 835 "cvss": (None) 836 }
837
838 -class tacacsAuth:
839 - def __init__(self):
840 self.metric_name = 'tacacsAuthentication' 841 self.long_name = 'Tacacs+ authentication' 842 self.aaa_new_model = { 843 "cmdInCfg": (None), 844 "must_report": False, 845 "desc": (None), 846 "fixImpact": (None), 847 "definition": (None), 848 "threatInfo": (None), 849 "howtofix": (None), 850 "upgrade": (None), 851 "cvss": (None) 852 } 853 self.auth_tacacs = { 854 "cmdInCfg": (None), 855 "must_report": False, 856 "desc": (None), 857 "fixImpact": (None), 858 "definition": (None), 859 "threatInfo": (None), 860 "howtofix": (None), 861 "upgrade": (None), 862 "cvss": (None) 863 } 864 self.auth_fallback = { 865 "cmdInCfg": (None), 866 "must_report": False, 867 "desc": (None), 868 "fixImpact": (None), 869 "definition": (None), 870 "threatInfo": (None), 871 "howtofix": (None), 872 "upgrade": (None), 873 "cvss": (None) 874 }
875
876 -class tacacsAuthorization:
877 - def __init__(self):
878 self.metric_name = 'tacacsAuthorization' 879 self.long_name = 'Tacacs+ authorization' 880 self.aaa_new_model = { 881 "cmdInCfg": (None), 882 "must_report": False, 883 "desc": (None), 884 "fixImpact": (None), 885 "definition": (None), 886 "threatInfo": (None), 887 "howtofix": (None), 888 "upgrade": (None), 889 "cvss": (None) 890 } 891 self.auth_exec = { 892 "cmdInCfg": (None), 893 "must_report": False, 894 "desc": (None), 895 "fixImpact": (None), 896 "definition": (None), 897 "threatInfo": (None), 898 "howtofix": (None), 899 "upgrade": (None), 900 "cvss": (None) 901 } 902 self.level_0 = { 903 "cmdInCfg": (None), 904 "must_report": False, 905 "desc": (None), 906 "fixImpact": (None), 907 "definition": (None), 908 "threatInfo": (None), 909 "howtofix": (None), 910 "upgrade": (None), 911 "cvss": (None) 912 } 913 self.level_1 = { 914 "cmdInCfg": (None), 915 "must_report": False, 916 "desc": (None), 917 "fixImpact": (None), 918 "definition": (None), 919 "threatInfo": (None), 920 "howtofix": (None), 921 "upgrade": (None), 922 "cvss": (None) 923 } 924 self.level_15 = { 925 "cmdInCfg": (None), 926 "must_report": False, 927 "desc": (None), 928 "fixImpact": (None), 929 "definition": (None), 930 "threatInfo": (None), 931 "howtofix": (None), 932 "upgrade": (None), 933 "cvss": (None) 934 }
935
936 -class tacacsAccounting:
937 - def __init__(self):
938 self.metric_name = 'tacacsAccounting' 939 self.long_name = 'Tacacs+ accounting' 940 self.aaa_new_model = { 941 "cmdInCfg": (None), 942 "must_report": False, 943 "desc": (None), 944 "fixImpact": (None), 945 "definition": (None), 946 "threatInfo": (None), 947 "howtofix": (None), 948 "upgrade": (None), 949 "cvss": (None) 950 } 951 self.aaa_accounting = { 952 "cmdInCfg": (None), 953 "must_report": False, 954 "desc": (None), 955 "fixImpact": (None), 956 "definition": (None), 957 "threatInfo": (None), 958 "howtofix": (None), 959 "upgrade": (None), 960 "cvss": (None) 961 } 962 self.level_0 = { 963 "cmdInCfg": (None), 964 "must_report": False, 965 "desc": (None), 966 "fixImpact": (None), 967 "definition": (None), 968 "threatInfo": (None), 969 "howtofix": (None), 970 "upgrade": (None), 971 "cvss": (None) 972 } 973 self.level_1 = { 974 "cmdInCfg": (None), 975 "must_report": False, 976 "desc": (None), 977 "fixImpact": (None), 978 "definition": (None), 979 "threatInfo": (None), 980 "howtofix": (None), 981 "upgrade": (None), 982 "cvss": (None) 983 } 984 self.level_15 = { 985 "cmdInCfg": (None), 986 "must_report": False, 987 "desc": (None), 988 "fixImpact": (None), 989 "definition": (None), 990 "threatInfo": (None), 991 "howtofix": (None), 992 "upgrade": (None), 993 "cvss": (None) 994 }
995 996
997 -class passwordManagement:
998 - def __init__(self):
999 self.metric_name = 'passwordManagement' 1000 self.long_name = 'Passwords and authentication management' 1001 self.enable_secret = { 1002 "cmdInCfg": (None), 1003 "must_report": False, 1004 "desc": (None), 1005 "fixImpact": (None), 1006 "definition": (None), 1007 "threatInfo": (None), 1008 "howtofix": (None), 1009 "upgrade": (None), 1010 "cvss": (None) 1011 } 1012 self.service_password_encryption = { 1013 "cmdInCfg": (None), 1014 "must_report": False, 1015 "desc": (None), 1016 "fixImpact": (None), 1017 "definition": (None), 1018 "threatInfo": (None), 1019 "howtofix": (None), 1020 "upgrade": (None), 1021 "cvss": (None) 1022 } 1023 self.username_secret = { 1024 "cmdInCfg": (None), 1025 "must_report": False, 1026 "desc": (None), 1027 "fixImpact": (None), 1028 "definition": (None), 1029 "threatInfo": (None), 1030 "howtofix": (None), 1031 "upgrade": (None), 1032 "cvss": (None) 1033 } 1034 self.retry_lockout = { 1035 "aaa_new_model": (None), 1036 "usernames": (None), 1037 "maxFail": (None), 1038 "aaaAuthLoginLocal": (None), 1039 "must_report": False, 1040 "desc": (None), 1041 "fixImpact": (None), 1042 "definition": (None), 1043 "threatInfo": (None), 1044 "howtofix": (None), 1045 "upgrade": (None), 1046 "cvss": (None) 1047 }
1048
1049 -class cdp:
1050 - def __init__(self):
1051 self.metric_name = 'cdp' 1052 self.long_name = 'CDP' 1053 self.cdp = { 1054 "globalCdp": True, 1055 "disabledIfsCdp": [], 1056 "enabledIfsCdp": [], 1057 "must_report": False, 1058 "fixImpact": None, 1059 "definition": None, 1060 "threatInfo": None, 1061 "howtofix": None, 1062 "cvss": None}
1063
1064 -class lldp:
1065 - def __init__(self):
1066 self.metric_name = 'lldp' 1067 self.long_name = 'LLDP' 1068 self.lldp = { 1069 "globalLldp": True, 1070 "enabledTransmitLldp": [], 1071 "enabledReceiveLldp": [], 1072 "disabledIfsLldp": [], 1073 "must_report": False, 1074 "fixImpact": None, 1075 "definition": None, 1076 "threatInfo": None, 1077 "howtofix": None, 1078 "cvss": None}
1079 1080
1081 -class Snmp:
1082 - def __init__(self):
1083 self.metric_name = 'snmp' 1084 self.long_name = 'SNMP' 1085 self.ro_community = { 1086 "cmdInCfg": (None), 1087 "must_report": False, 1088 "fixImpact": (None), 1089 "definition": (None), 1090 "desc": (None), 1091 "threatInfo": (None), 1092 "howtofix": (None), 1093 "upgrade": (None), 1094 "cvss": (None) 1095 } 1096 self.ro_community_acl = { 1097 "cmdInCfg": (None), 1098 "must_report": False, 1099 "fixImpact": (None), 1100 "definition": (None), 1101 "desc": (None), 1102 "threatInfo": (None), 1103 "howtofix": (None), 1104 "upgrade": (None), 1105 "cvss": (None) 1106 } 1107 1108 self.rw_community = { 1109 "cmdInCfg": (None), 1110 "must_report": False, 1111 "fixImpact": (None), 1112 "definition": (None), 1113 "desc": (None), 1114 "threatInfo": (None), 1115 "howtofix": (None), 1116 "upgrade": (None), 1117 "cvss": (None) 1118 } 1119 self.rw_community_acl = { 1120 "cmdInCfg": (None), 1121 "must_report": False, 1122 "fixImpact": (None), 1123 "definition": (None), 1124 "desc": (None), 1125 "threatInfo": (None), 1126 "howtofix": (None), 1127 "upgrade": (None), 1128 "cvss": (None) 1129 } 1130 self.view_ro_community = { 1131 "cmdInCfg": (None), 1132 "must_report": False, 1133 "fixImpact": (None), 1134 "definition": (None), 1135 "desc": (None), 1136 "threatInfo": (None), 1137 "howtofix": (None), 1138 "upgrade": (None), 1139 "cvss": (None) 1140 } 1141 self.view_ro_community_acl = { 1142 "cmdInCfg": (None), 1143 "must_report": False, 1144 "fixImpact": (None), 1145 "definition": (None), 1146 "desc": (None), 1147 "threatInfo": (None), 1148 "howtofix": (None), 1149 "upgrade": (None), 1150 "cvss": (None) 1151 } 1152 1153 self.view_rw_community = { 1154 "cmdInCfg": (None), 1155 "must_report": False, 1156 "fixImpact": (None), 1157 "definition": (None), 1158 "desc": (None), 1159 "threatInfo": (None), 1160 "howtofix": (None), 1161 "upgrade": (None), 1162 "cvss": (None) 1163 } 1164 self.view_rw_community_acl = { 1165 "cmdInCfg": (None), 1166 "must_report": False, 1167 "fixImpact": (None), 1168 "definition": (None), 1169 "desc": (None), 1170 "threatInfo": (None), 1171 "howtofix": (None), 1172 "upgrade": (None), 1173 "cvss": (None) 1174 } 1175 self.snmp_v3 = { 1176 "cmdInCfg": (None), 1177 "must_report": False, 1178 "fixImpact": (None), 1179 "definition": (None), 1180 "desc": (None), 1181 "threatInfo": (None), 1182 "howtofix": (None), 1183 "upgrade": (None), 1184 "cvss": (None) 1185 }
1186
1187 -class Syslog:
1188 - def __init__(self):
1189 self.metric_name = 'syslog' 1190 self.long_name = 'Syslog' 1191 self.server = { 1192 "cmdInCfg": (None), 1193 "must_report": False, 1194 "fixImpact": (None), 1195 "definition": (None), 1196 "desc": (None), 1197 "threatInfo": (None), 1198 "howtofix": (None), 1199 "upgrade": (None), 1200 "cvss": (None) 1201 } 1202 self.level_trap = { 1203 "cmdInCfg": (None), 1204 "must_report": False, 1205 "fixImpact": (None), 1206 "definition": (None), 1207 "desc": (None), 1208 "threatInfo": (None), 1209 "howtofix": (None), 1210 "upgrade": (None), 1211 "cvss": (None) 1212 } 1213 self.level_buffered = { 1214 "cmdInCfg": (None), 1215 "must_report": False, 1216 "fixImpact": (None), 1217 "definition": (None), 1218 "desc": (None), 1219 "threatInfo": (None), 1220 "howtofix": (None), 1221 "upgrade": (None), 1222 "cvss": (None) 1223 } 1224 self.logging_console = { 1225 "cmdInCfg": (None), 1226 "must_report": False, 1227 "fixImpact": (None), 1228 "definition": (None), 1229 "desc": (None), 1230 "threatInfo": (None), 1231 "howtofix": (None), 1232 "upgrade": (None), 1233 "cvss": (None) 1234 } 1235 self.logging_monitor = { 1236 "cmdInCfg": (None), 1237 "must_report": False, 1238 "fixImpact": (None), 1239 "definition": (None), 1240 "desc": (None), 1241 "threatInfo": (None), 1242 "howtofix": (None), 1243 "upgrade": (None), 1244 "cvss": (None) 1245 } 1246 self.logging_buffered = { 1247 "cmdInCfg": (None), 1248 "must_report": False, 1249 "fixImpact": (None), 1250 "definition": (None), 1251 "desc": (None), 1252 "threatInfo": (None), 1253 "howtofix": (None), 1254 "upgrade": (None), 1255 "cvss": (None) 1256 } 1257 self.interface = { 1258 "cmdInCfg": (None), 1259 "must_report": False, 1260 "fixImpact": (None), 1261 "definition": (None), 1262 "desc": (None), 1263 "threatInfo": (None), 1264 "howtofix": (None), 1265 "upgrade": (None), 1266 "cvss": (None) 1267 } 1268 self.timestamp = { 1269 "cmdInCfg": (None), 1270 "must_report": False, 1271 "fixImpact": (None), 1272 "definition": (None), 1273 "desc": (None), 1274 "threatInfo": (None), 1275 "howtofix": (None), 1276 "upgrade": (None), 1277 "cvss": (None) 1278 } 1279 self.server_arp = { 1280 "cmdInCfg": (None), 1281 "must_report": False, 1282 "fixImpact": (None), 1283 "definition": (None), 1284 "desc": (None), 1285 "threatInfo": (None), 1286 "howtofix": (None), 1287 "upgrade": (None), 1288 "cvss": (None) 1289 }
1290
1291 -class ArchiveConfiguration:
1292 - def __init__(self):
1293 self.metric_name = 'archive' 1294 self.long_name = 'Configuration Replace/Rollback' 1295 self.configuration = { 1296 "cmdInCfg": (None), 1297 "must_report": False, 1298 "fixImpact": (None), 1299 "definition": (None), 1300 "desc": (None), 1301 "threatInfo": (None), 1302 "howtofix": (None), 1303 "upgrade": (None), 1304 "cvss": (None) 1305 } 1306 self.exclusive = { 1307 "cmdInCfg": (None), 1308 "must_report": False, 1309 "fixImpact": (None), 1310 "definition": (None), 1311 "desc": (None), 1312 "threatInfo": (None), 1313 "howtofix": (None), 1314 "upgrade": (None), 1315 "cvss": (None) 1316 } 1317 self.secure_boot = { 1318 "cmdInCfg": (None), 1319 "must_report": False, 1320 "fixImpact": (None), 1321 "definition": (None), 1322 "desc": (None), 1323 "threatInfo": (None), 1324 "howtofix": (None), 1325 "upgrade": (None), 1326 "cvss": (None) 1327 } 1328 self.secure_config = { 1329 "cmdInCfg": (None), 1330 "must_report": False, 1331 "fixImpact": (None), 1332 "definition": (None), 1333 "desc": (None), 1334 "threatInfo": (None), 1335 "howtofix": (None), 1336 "upgrade": (None), 1337 "cvss": (None) 1338 } 1339 self.logs = { 1340 "cmdInCfg": (None), 1341 "must_report": False, 1342 "fixImpact": (None), 1343 "definition": (None), 1344 "desc": (None), 1345 "threatInfo": (None), 1346 "howtofix": (None), 1347 "upgrade": (None), 1348 "cvss": (None) 1349 }
1350
1351 -class IPicmpRedirects:
1352 - def __init__(self):
1353 self.metric_name = 'icmpRedirects' 1354 self.long_name = 'ICMPv4 redirects' 1355 self.redirects = { 1356 "disabledIfsFeature": [], 1357 "enabledIfsFeature": [], 1358 "must_report": False, 1359 "fixImpact": (None), 1360 "definition": (None), 1361 "threatInfo": (None), 1362 "howtofix": (None), 1363 "cvss": (None) 1364 }
1365
1366 -class IPicmpUnreachable:
1367 - def __init__(self):
1368 self.metric_name = 'icmpUnreachable' 1369 self.long_name = 'ICMPv4 unreachable' 1370 self.unreachable = { 1371 "unreachableRate": None, 1372 "disabledIfsFeature": [], 1373 "enabledIfsFeature": [], 1374 "must_report": False, 1375 "fixImpact": None, 1376 "definition": None, 1377 "threatInfo": None, 1378 "howtofix": None, 1379 "cvss": None}
1380 1381
1382 -class ARPproxy:
1383 - def __init__(self):
1384 self.metric_name = 'proxyArp' 1385 self.long_name = 'ARP proxy' 1386 self.proxy = { 1387 "disabledIfsFeature": [], 1388 "enabledIfsFeature": [], 1389 "must_report": False, 1390 "fixImpact": None, 1391 "definition": None, 1392 "threatInfo": None, 1393 "howtofix": None, 1394 "cvss": None}
1395 1396
1397 -class Ntp:
1398 - def __init__(self):
1399 self.metric_name = 'ntp' 1400 self.long_name = 'NTP' 1401 self.authentication = { 1402 "authenticate": (None), 1403 "key": (None), 1404 "must_report": False, 1405 "fixImpact": (None), 1406 "definition": (None), 1407 "desc": (None), 1408 "threatInfo": (None), 1409 "howtofix": (None), 1410 "upgrade": (None), 1411 "cvss": (None) 1412 }
1413 -class Bgp:
1414 - def __init__(self):
1415 self.metric_name = 'bgp' 1416 self.long_name = 'BGP' 1417 self.ttl_security = { 1418 "must_report": False, 1419 "fixImpact": (None), 1420 "definition": (None), 1421 "desc": (None), 1422 "threatInfo": (None), 1423 "howtofix": (None), 1424 "upgrade": (None), 1425 "cvss": (None) 1426 } 1427 self.session_password = { 1428 "must_report": False, 1429 "fixImpact": (None), 1430 "definition": (None), 1431 "desc": (None), 1432 "threatInfo": (None), 1433 "howtofix": (None), 1434 "upgrade": (None), 1435 "cvss": (None) 1436 } 1437 self.max_prefixes = { 1438 "must_report": False, 1439 "fixImpact": (None), 1440 "definition": (None), 1441 "desc": (None), 1442 "threatInfo": (None), 1443 "howtofix": (None), 1444 "upgrade": (None), 1445 "cvss": (None) 1446 } 1447 self.prefix_list = { 1448 "must_report": False, 1449 "fixImpact": (None), 1450 "definition": (None), 1451 "desc": (None), 1452 "threatInfo": (None), 1453 "howtofix": (None), 1454 "upgrade": (None), 1455 "cvss": (None) 1456 } 1457 self.aspath_list = { 1458 "must_report": False, 1459 "fixImpact": (None), 1460 "definition": (None), 1461 "desc": (None), 1462 "threatInfo": (None), 1463 "howtofix": (None), 1464 "upgrade": (None), 1465 "cvss": (None) 1466 } 1467 self.maxpath_limit = { 1468 "must_report": False, 1469 "fixImpact": (None), 1470 "definition": (None), 1471 "desc": (None), 1472 "threatInfo": (None), 1473 "howtofix": (None), 1474 "upgrade": (None), 1475 "cvss": (None) 1476 }
1477
1478 -class Eigrp:
1479 - def __init__(self):
1480 self.metric_name = 'eigrp' 1481 self.long_name = 'EIGRP' 1482 self.asNumber = [] 1483 self.activeIfaces = [] 1484 self.passive = { 1485 "cmdInCfg": (None), 1486 "must_report": False, 1487 "asn": [], 1488 "fixImpact": (None), 1489 "definition": (None), 1490 "desc": (None), 1491 "threatInfo": (None), 1492 "howtofix": (None), 1493 "upgrade": (None), 1494 "cvss": (None) 1495 } 1496 self.auth_md5 = { 1497 "cmdInCfg": (None), 1498 "interfaces": [], 1499 "asn": [], 1500 "must_report": False, 1501 "fixImpact": (None), 1502 "definition": (None), 1503 "desc": (None), 1504 "threatInfo": (None), 1505 "howtofix": (None), 1506 "upgrade": (None), 1507 "cvss": (None) 1508 } 1509 self.rfilter_in = { 1510 "cmdInCfg": (None), 1511 "must_report": False, 1512 "asn": [], 1513 "fixImpact": (None), 1514 "definition": (None), 1515 "desc": (None), 1516 "threatInfo": (None), 1517 "howtofix": (None), 1518 "upgrade": (None), 1519 "cvss": (None) 1520 } 1521 self.rfilter_out = { 1522 "cmdInCfg": (None), 1523 "must_report": False, 1524 "asn": [], 1525 "fixImpact": (None), 1526 "definition": (None), 1527 "desc": (None), 1528 "threatInfo": (None), 1529 "howtofix": (None), 1530 "upgrade": (None), 1531 "cvss": (None) 1532 }
1533
1534 -class Rip:
1535 - def __init__(self):
1536 self.metric_name = 'rip' 1537 self.long_name = 'RIP' 1538 self.version = None 1539 self.auth_md5 = { 1540 "cmdInCfg": (None), 1541 "must_report": False, 1542 "interfaces": [], 1543 "fixImpact": (None), 1544 "definition": (None), 1545 "desc": (None), 1546 "threatInfo": (None), 1547 "howtofix": (None), 1548 "upgrade": (None), 1549 "cvss": (None) 1550 }
1551
1552 -class Ospf:
1553 - def __init__(self):
1554 self.metric_name = 'ospf' 1555 self.long_name = 'OSPF' 1556 self.area = [] 1557 self.passive = { 1558 "pid": [], 1559 "cmdInCfg": (None), 1560 "must_report": False, 1561 "fixImpact": (None), 1562 "definition": (None), 1563 "desc": (None), 1564 "threatInfo": (None), 1565 "howtofix": (None), 1566 "upgrade": (None), 1567 "cvss": (None) 1568 } 1569 self.auth_md5 = { 1570 "cmdInCfg": (None), 1571 "must_report": False, 1572 "pid": [], 1573 "area": [], 1574 "interfaces": [], 1575 "fixImpact": (None), 1576 "definition": (None), 1577 "desc": (None), 1578 "threatInfo": (None), 1579 "howtofix": (None), 1580 "upgrade": (None), 1581 "cvss": (None) 1582 } 1583 self.rfilter_in = { 1584 "cmdInCfg": (None), 1585 "area": [], 1586 "pid": [], 1587 "must_report": False, 1588 "fixImpact": (None), 1589 "definition": (None), 1590 "desc": (None), 1591 "threatInfo": (None), 1592 "howtofix": (None), 1593 "upgrade": (None), 1594 "cvss": (None) 1595 } 1596 self.rfilter_out = { 1597 "cmdInCfg": (None), 1598 "area": [], 1599 "pid": [], 1600 "must_report": False, 1601 "fixImpact": (None), 1602 "definition": (None), 1603 "desc": (None), 1604 "threatInfo": (None), 1605 "howtofix": (None), 1606 "upgrade": (None), 1607 "cvss": (None) 1608 } 1609 self.maxLSA = { 1610 "pid": [], 1611 "cmdInCfg": (None), 1612 "must_report": False, 1613 "fixImpact": (None), 1614 "definition": (None), 1615 "desc": (None), 1616 "threatInfo": (None), 1617 "howtofix": (None), 1618 "upgrade": (None), 1619 "cvss": (None) 1620 }
1621
1622 -class Glbp:
1623 - def __init__(self):
1624 self.metric_name = 'glbp' 1625 self.long_name = 'GLBP' 1626 self.auth_md5 = { 1627 "cmdInCfg": (None), 1628 "must_report": False, 1629 "fixImpact": (None), 1630 "definition": (None), 1631 "desc": (None), 1632 "threatInfo": (None), 1633 "howtofix": (None), 1634 "upgrade": (None), 1635 "cvss": (None) 1636 }
1637
1638 -class Hsrp:
1639 - def __init__(self):
1640 self.metric_name = 'hsrp' 1641 self.long_name = 'HSRP' 1642 self.auth_md5 = { 1643 "cmdInCfg": (None), 1644 "must_report": False, 1645 "fixImpact": (None), 1646 "definition": (None), 1647 "desc": (None), 1648 "threatInfo": (None), 1649 "howtofix": (None), 1650 "upgrade": (None), 1651 "cvss": (None) 1652 }
1653
1654 -class Vrrp:
1655 - def __init__(self):
1656 self.metric_name = 'vrrp' 1657 self.long_name = 'VRRP' 1658 self.auth_md5 = { 1659 "cmdInCfg": (None), 1660 "must_report": False, 1661 "fixImpact": (None), 1662 "definition": (None), 1663 "desc": (None), 1664 "threatInfo": (None), 1665 "howtofix": (None), 1666 "upgrade": (None), 1667 "cvss": (None) 1668 }
1669
1670 -class IPoptions:
1671 - def __init__(self):
1672 self.metric_name = 'ipoptions' 1673 self.long_name = 'IPv4 Options' 1674 self.drop = { 1675 "cmdInCfg": (None), 1676 "must_report": False, 1677 "fixImpact": (None), 1678 "definition": (None), 1679 "desc": (None), 1680 "threatInfo": (None), 1681 "howtofix": (None), 1682 "upgrade": (None), 1683 "cvss": (None) 1684 }
1685
1686 -class IPsourceRoute:
1687 - def __init__(self):
1688 self.metric_name = 'ipsourceroute' 1689 self.long_name = 'IPv4 source route' 1690 self.drop = { 1691 "cmdInCfg": (None), 1692 "must_report": False, 1693 "fixImpact": (None), 1694 "definition": (None), 1695 "desc": (None), 1696 "threatInfo": (None), 1697 "howtofix": (None), 1698 "upgrade": (None), 1699 "cvss": (None) 1700 }
1701
1702 -class ICMPdeny:
1703 - def __init__(self):
1704 self.metric_name = 'icmpdeny' 1705 self.long_name = 'ICMP deny any any' 1706 self.filtered = { 1707 "cmdInCfg": (None), 1708 "must_report": False, 1709 "fixImpact": (None), 1710 "definition": (None), 1711 "desc": (None), 1712 "threatInfo": (None), 1713 "howtofix": (None), 1714 "upgrade": (None), 1715 "cvss": (None) 1716 }
1717
1718 -class IPfrags:
1719 - def __init__(self):
1720 self.metric_name = 'ipfrags' 1721 self.long_name = 'IPv4 fragments' 1722 self.filtered = { 1723 "tcp": (None), 1724 "udp": (None), 1725 "icmp": (None), 1726 "ip": (None), 1727 "must_report": False, 1728 "fixImpact": (None), 1729 "definition": (None), 1730 "desc": (None), 1731 "threatInfo": (None), 1732 "howtofix": (None), 1733 "upgrade": (None), 1734 "cvss": (None) 1735 }
1736
1737 -class URPF:
1738 - def __init__(self):
1739 self.metric_name = 'urpf' 1740 self.long_name = 'Unicast Reverse Path Forwarding (IPv4)' 1741 self.spoofing = { 1742 "candidates": [], 1743 "must_report": False, 1744 "fixImpact": (None), 1745 "definition": (None), 1746 "threatInfo": (None), 1747 "howtofix": (None), 1748 "upgrade": (None), 1749 "cvss": (None) 1750 }
1751
1752 -class URPFv6:
1753 - def __init__(self):
1754 self.metric_name = 'urpfv6' 1755 self.long_name = 'Unicast Reverse Path Forwarding (IPv6)' 1756 self.spoofing = { 1757 "candidates": [], 1758 "must_report": False, 1759 "fixImpact": (None), 1760 "definition": (None), 1761 "threatInfo": (None), 1762 "howtofix": (None), 1763 "upgrade": (None), 1764 "cvss": (None) 1765 }
1766
1767 -class PortSecurity:
1768 - def __init__(self):
1769 self.metric_name = 'portsecurity' 1770 self.long_name = 'Port Security' 1771 self.sticky = { 1772 "candidates": [], 1773 "cmdInCfg": (None), 1774 "must_report": False, 1775 "fixImpact": (None), 1776 "definition": (None), 1777 "desc": (None), 1778 "threatInfo": (None), 1779 "howtofix": (None), 1780 "upgrade": (None), 1781 "cvss": (None) 1782 } 1783 self.violation = { 1784 "candidates": [], 1785 "cmdInCfg": (None), 1786 "must_report": False, 1787 "fixImpact": (None), 1788 "definition": (None), 1789 "desc": (None), 1790 "threatInfo": (None), 1791 "howtofix": (None), 1792 "upgrade": (None), 1793 "cvss": (None) 1794 } 1795 self.maximum_total = { 1796 "candidates": [], 1797 "cmdInCfg": (None), 1798 "must_report": False, 1799 "fixImpact": (None), 1800 "definition": (None), 1801 "desc": (None), 1802 "threatInfo": (None), 1803 "howtofix": (None), 1804 "upgrade": (None), 1805 "cvss": (None) 1806 } 1807 self.maximum_access = { 1808 "candidates": [], 1809 "cmdInCfg": (None), 1810 "must_report": False, 1811 "fixImpact": (None), 1812 "definition": (None), 1813 "desc": (None), 1814 "threatInfo": (None), 1815 "howtofix": (None), 1816 "upgrade": (None), 1817 "cvss": (None) 1818 } 1819 self.maximum_voice = { 1820 "candidates": [], 1821 "cmdInCfg": (None), 1822 "must_report": False, 1823 "fixImpact": (None), 1824 "definition": (None), 1825 "desc": (None), 1826 "threatInfo": (None), 1827 "howtofix": (None), 1828 "upgrade": (None), 1829 "cvss": (None) 1830 }
1831
1832 -class IPv6:
1833 - def __init__(self):
1834 self.metric_name = 'ipv6' 1835 self.long_name = 'IPv6' 1836 self.rh0 = { 1837 "Notfiltered": [], 1838 "cmdInCfg": (None), 1839 "must_report": False, 1840 "fixImpact": (None), 1841 "definition": (None), 1842 "desc": (None), 1843 "threatInfo": (None), 1844 "howtofix": (None), 1845 "upgrade": (None), 1846 "cvss": (None) 1847 }
1848
1849 -class IPSEC:
1850 - def __init__(self):
1851 self.metric_name = 'ipsec' 1852 self.long_name = 'IPSEC' 1853 self.cac_ike = { 1854 "cmdInCfg": (None), 1855 "must_report": False, 1856 "fixImpact": (None), 1857 "definition": (None), 1858 "desc": (None), 1859 "threatInfo": (None), 1860 "howtofix": (None), 1861 "upgrade": (None), 1862 "cvss": (None) 1863 } 1864 self.cac_rsc = { 1865 "cmdInCfg": (None), 1866 "must_report": False, 1867 "fixImpact": (None), 1868 "definition": (None), 1869 "desc": (None), 1870 "threatInfo": (None), 1871 "howtofix": (None), 1872 "upgrade": (None), 1873 "cvss": (None) 1874 }
1875
1876 -class TclSH:
1877 - def __init__(self):
1878 self.metric_name = 'tclsh' 1879 self.long_name = 'TCLSH shell scripting' 1880 self.shell = { 1881 "cmdInCfg": (None), 1882 "must_report": False, 1883 "desc": (None), 1884 "fixImpact": (None), 1885 "definition": (None), 1886 "threatInfo": (None), 1887 "howtofix": (None), 1888 "upgrade": (None), 1889 "cvss": (None) 1890 }
1891
1892 -class Tcp:
1893 - def __init__(self):
1894 self.metric_name = 'tcp' 1895 self.long_name = 'TCP' 1896 self.synwait = { 1897 "cmdInCfg": (None), 1898 "must_report": False, 1899 "desc": (None), 1900 "fixImpact": (None), 1901 "definition": (None), 1902 "threatInfo": (None), 1903 "howtofix": (None), 1904 "upgrade": (None), 1905 "cvss": (None) 1906 }
1907
1908 -class dtpstpvlan:
1909 - def __init__(self):
1910 self.metric_name = 'l2protos' 1911 self.long_name = 'Level 2' 1912 self.nonegotiate = { 1913 "candidates": [], 1914 "cmdInCfg": (None), 1915 "must_report": False, 1916 "fixImpact": (None), 1917 "definition": (None), 1918 "desc": (None), 1919 "threatInfo": (None), 1920 "howtofix": (None), 1921 "upgrade": (None), 1922 "cvss": (None) 1923 } 1924 self.flowcontrol = { 1925 "candidates": [], 1926 "receive": (None), 1927 "transmit": (None), 1928 "must_report": False, 1929 "fixImpact": (None), 1930 "definition": (None), 1931 "desc": (None), 1932 "threatInfo": (None), 1933 "howtofix": (None), 1934 "upgrade": (None), 1935 "cvss": (None) 1936 } 1937 self.udld = { 1938 "cmdInCfg": (None), 1939 "must_report": False, 1940 "fixImpact": (None), 1941 "definition": (None), 1942 "desc": (None), 1943 "threatInfo": (None), 1944 "howtofix": (None), 1945 "upgrade": (None), 1946 "cvss": (None) 1947 } 1948 self.vlan_1 = { 1949 "candidates": [], 1950 "cmdInCfg": (None), 1951 "must_report": False, 1952 "fixImpact": (None), 1953 "definition": (None), 1954 "desc": (None), 1955 "threatInfo": (None), 1956 "howtofix": (None), 1957 "upgrade": (None), 1958 "cvss": (None) 1959 } 1960 self.unused_ports = { 1961 "candidates": [], 1962 "cmdInCfg": (None), 1963 "must_report": False, 1964 "fixImpact": (None), 1965 "definition": (None), 1966 "desc": (None), 1967 "threatInfo": (None), 1968 "howtofix": (None), 1969 "upgrade": (None), 1970 "cvss": (None) 1971 } 1972 self.vtp_secure = { 1973 "cmdInCfg": (None), 1974 "must_report": False, 1975 "fixImpact": (None), 1976 "definition": (None), 1977 "desc": (None), 1978 "threatInfo": (None), 1979 "howtofix": (None), 1980 "upgrade": (None), 1981 "cvss": (None) 1982 } 1983 self.bpdu_guard = { 1984 "cmdInCfg": (None), 1985 "must_report": False, 1986 "fixImpact": (None), 1987 "definition": (None), 1988 "desc": (None), 1989 "threatInfo": (None), 1990 "howtofix": (None), 1991 "upgrade": (None), 1992 "cvss": (None) 1993 } 1994 self.stp_root = { 1995 "cmdInCfg": (None), 1996 "must_report": False, 1997 "fixImpact": (None), 1998 "definition": (None), 1999 "desc": (None), 2000 "threatInfo": (None), 2001 "howtofix": (None), 2002 "upgrade": (None), 2003 "cvss": (None) 2004 } 2005 self.dot1x = { 2006 "cmdInCfg": (None), 2007 "must_report": False, 2008 "fixImpact": (None), 2009 "definition": (None), 2010 "desc": (None), 2011 "threatInfo": (None), 2012 "howtofix": (None), 2013 "upgrade": (None), 2014 "cvss": (None) 2015 }
2016
2017 -class Netflow:
2018 - def __init__(self):
2019 self.metric_name = 'Netflow' 2020 self.long_name = 'Netflow' 2021 self.v9_security = { 2022 "fragoffset": (None), 2023 "icmp": (None), 2024 "ipid": (None), 2025 "macaddr": (None), 2026 "packetlen": (None), 2027 "ttl": (None), 2028 "vlid": (None), 2029 "interfacegress": False, 2030 "must_report": False, 2031 "desc": (None), 2032 "fixImpact": (None), 2033 "definition": (None), 2034 "threatInfo": (None), 2035 "howtofix": (None), 2036 "upgrade": (None), 2037 "cvss": (None) 2038 }
2039
2040 -class Multicast:
2041 - def __init__(self):
2042 self.metric_name = 'Multicast' 2043 self.long_name = 'Multicast' 2044 self.msdp = { 2045 "safilterin": (None), 2046 "safilterout": (None), 2047 "redistributelist": (None), 2048 "must_report": False, 2049 "desc": (None), 2050 "fixImpact": (None), 2051 "definition": (None), 2052 "threatInfo": (None), 2053 "howtofix": (None), 2054 "upgrade": (None), 2055 "cvss": (None) 2056 }
2057 -class Qos:
2058 - def __init__(self):
2059 self.metric_name = 'Qos' 2060 self.long_name = 'Qos'
2061