Multi-vendor Network device Configuration management and diagnostic tool

Abstract

Most large enterprise organizations around the world which includes banks, telcos etc. has multiple cyber security and network devices in their environments. The problem with this is that most organizations tend to acquire devices from multiple vendors, and these devices come with different configuration commands which are different from vendor to vendor. Another factor is when it comes to troubleshooting for any issues with the device there is no single tool available to get this done. The Methodology follows a configuration tool is developed by using python for the backend programming language and HTML for the front-end graphical user interface. The backend is made to support modular integration from various communication protocols such as Netmiko for SSH communication, SNMP libraries and vendor specific API’s. Backend development includes Netmiko, SNMP Libraries, Vendor Specific API’s, Error handling and logging Frontend development includes HTML, Interactive buttons and functionalities Initial evaluation of the prototype has mixed results, but the solution had the capability to function as multi-vendor configuration management tool with the following, Successful features includes Configuration push: the tool demonstrated capabilities to push configurations to devices like Fortinet NGFW firewalls and Aruba layer 2 and layer 3 switches, API compatibility, Backup configurations: the tool demonstrated capabilities to backup configuration of Fortinet firewalls and Aruba switches , Audit logs: a proper audit trial of what commands or features a user did after logging into a system is recorded, this could prove vital for investigations.