cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
823
Views
0
Helpful
1
Replies
crdoyle
Cisco Employee

CLI Analyzer Feature Request - Disconnected mode for Air Gap Networks

Hi team,

We have customer's interested in this tool, however, we would need to be able to run it without persistent Internet connectivity.  

 

Ideally, launch the tool, have it download/update a local database of the analysis intel and then allow the Internet connection to be closed.  Configuration files from classified network devices could be dropped into the tool for local analysis, the results provided and exported off.  Then delete the config files and report and the tool is ready to connect to the Internet again at a later date to download any updates to the analysis dB.

 

Thoughts?

1 REPLY 1
Scottie.Cochran
Beginner

We run into this same type of stop-gap when we are registering our Smart Licenses. There is an Air Gap solution for that, but the database that is sent is static. This would not be the case for CLI Analyzer; as its review, remediation, and solution for configuration files would be dependent on changes made real time.
I would like to see the CLI Analyzer have an offline solution matrix of common commands, interactions, and solutions in an offline environment. The reasons for an air-gapped system usually deals with sensitive nature of the information (think HIPAA). I would hope that the engineers there would see the benefits of rounding out CLI Analyzer to address this feature. All-in-all, I like what CLI Analyzer is capable; we just need it to operate with all functionality as air-gapped.