I have some configurations that apply to specific interfaces based on their role usually identified by the description.
It would be great if we could identify a "section" based on a string ie "description DS[1|3]IT", "description outside", "description inside" or "description Isolated" then search that "section" for the required configuration string or configuration block. Then if needed the remediation could be applied to the violating "section". I have tried to get something like this to work but not much luck.
This could be used to ensure that a specific ACL "block" exists and that it is applied to a specific interface or group of interfaces.