Compare Running configuration to written when captured on LM

Question

In my instance of LM I have captured the written configuraiton and running configuration. Any suggestions to do a diff comparison and create an alert against it?
	&nbsp;

-=CB=-

anonymous · Answer

If they are separate instances no. You'd have to do that kind of work inside a groovy based config check, collecting both the configs within a single configsource, then using groovy to compare them.

mnagel · Answer

56 minutes ago, Stuart Weenig said:

If they are separate instances no. You'd have to do that kind of work inside a groovy based config check, collecting both the configs within a single configsource, then using groovy to compare them.

Not only that, but comparing in some cases is very painful.&nbsp; When we used to use Nagios, we had checks that worked very well for the ASA since they use a cryptochecksum (this was trivial since we just scanned all the files in one pass, compared and submitted passive check results for any problems -- LM needs something similar, probably via the API).&nbsp; For IOS there are a bunch of elements instantiated at startup that are not in the saved config, so while you could perhaps fashion a suitable filter, it would be brittle. Other platforms might be OK, just depends.

the_bhattman · Answer

How about this article

&nbsp;

/topic/2027-running-vs-startup-comparison-configsource-poc/

&nbsp;

mnagel · Answer

Just now, mnagel said:

Not only that, but comparing in some cases is very painful.&nbsp; When we used to use Nagios, we had checks that worked very well for the ASA since they use a cryptochecksum (this was trivial since we just scanned all the files in one pass, compared and submitted passive check results for any problems -- LM needs something similar, probably via the API).&nbsp; For IOS there are a bunch of elements instantiated at startup that are not in the saved config, so while you could perhaps fashion a suitable filter, it would be brittle. Other platforms might be OK, just depends.

FWIW, we do use a Unsaved Config DS we wrote for IOS that compares the saved time and last config change time.&nbsp; It _mostly_ works, but there are some annoyances.&nbsp; One is uptime counter rollover, a general problem with timestamp comparisons.&nbsp; The other is that IOS reports config changed the second you enter config mode even if you change nothing.

the_bhattman · Answer

My goal is simply to know when the running configuration is not saved. Because I am dealing with support people that from time to time forget to save the configs.&nbsp;&nbsp;

Forum Discussion

Compare Running configuration to written when captured on LM

6 Replies

Related Content

Issue in capturing historical data

capturing Multipe instances Data

Palo Alto config source to capture XML configuration improved.

Is there a way to configure an Alert Rule to only match websites OR resources?

How do I configure an alert, for a specific Instance name?

Recent Discussions

Availability Group- multi-subnet Listener

Logic Monitor Collector Installation- Prompt for proxy address and port

Network Interface ID Persistence or: How I Learned to Stop Worrying and Love SNMP_Network_Interfaces

API documentation error

SNMP Monitoring for Windows