Skip to content

A BGP Security Auditing Tool that runs locally and checks configuration the router config against the best practices as defined by MANRS

Notifications You must be signed in to change notification settings

manrs-tools/manrs-validator

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
 
 
 
 
 
 

Repository files navigation

MANRS-validator

A BGP Security Auditing Tool that runs locally and checks the router config against the best practices as defined by MANRS (https://www.manrs.org/) Currently the solution uses RobotFramework (https://robotframework.org) to check the configuration against a .robot audit file and only supports JunOS

How to run

Grab the configuration of the router to audit and save it as a text file on the host Install robot framework on the host that will perform the auditing

pip install robotframework

Download the check__cfg.robot file specific to your device config (only JunOS is avaialble at this time) and the .yaml file from Github at (https://github.com/manrs-tools/MANRS-validator/). Edit the .yaml file and specify the name of your JunOS config file after the line that says "CFG_FILE:" Example:

CFG_FILE: router.cfg

Next execute:

robot check_<platform>_cfg.robot

and then a log.html, output.xml, and report.html file will appear in the directory providing you the results of the audit.

Check out (https://www.manrs.org/isps/guide/) for information about how to modify your configuration to be in compliance with MANRS guidelines and make your network and the Internet more secure!

About

A BGP Security Auditing Tool that runs locally and checks configuration the router config against the best practices as defined by MANRS

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published