Ok, trying to figure out Policy Manager and I just upgraded to the newer 6.1 which appears to add a ton of new functionality, so I'm wondering if it can do something I'd like it to.
We restrict our firewalls so that only SSH and ASDM connections from certain IP's can connect. So we have several lines similar to:
ssh IP1 255.255.255.255 MgmtInterface
ssh IP2 255.255.255.255 MgmtInterface
ssh IP3 255.255.255.255 MgmtInterface
I know how to put it into the policy manager to check and make sure these specific lines and IP's are there, that part is easy. What I want to do is know when another unauthorized management IP or subnet get's added to this list, is there a way to do that?
If not, it would be nice to be able to do things like this!! I could see it being useful in cases such as this and with other things like SNMP communities too. ie: check to see that your authorized SNMP communities are there, but no others...