Create cisco_asa_show_running-config_object_service (#1970)

wollmannbruno · mjbear · web-flow · commit 1faea924bad3 · 2025-01-14T09:29:25.000-05:00
Co-authored-by: Michael Bear &lt;38406045+mjbear@users.noreply.github.com&gt;
diff --git a/ntc_templates/templates/cisco_asa_show_running-config_object_service.textfsm b/ntc_templates/templates/cisco_asa_show_running-config_object_service.textfsm
@@ -0,0 +1,19 @@
+Value Required NAME (\S+)
+Value DESCRIPTION (.+?)
+Value PROTOCOL (\S+)
+Value SRC_OPERATOR (\S+)
+Value SRC_PORT_START (\S+)
+Value SRC_PORT_END (\S+)
+Value DST_OPERATOR (\S+)
+Value DST_PORT_START (\S+)
+Value DST_PORT_END (\S+)
+Value ICMP_TYPE (\S+)
+Value ICMP_CODE (\S+)
+
+Start
+  ^object\s+service -> Continue.Record
+  ^object\s+service\s+${NAME}\s*$$
+  ^\s+description\s+${DESCRIPTION}\s*$$
+  ^\s+service\s+${PROTOCOL}(\s+${ICMP_TYPE}(\s+${ICMP_CODE})?)?\s*$$
+  ^\s+service\s+${PROTOCOL}(\s+source\s+${SRC_OPERATOR}\s+${SRC_PORT_START}(\s+${SRC_PORT_END})?)?(\s+destination\s+${DST_OPERATOR}\s+${DST_PORT_START}(\s+${DST_PORT_END})?)?\s*$$
+  ^. -> Error "Did not match any lines"
diff --git a/ntc_templates/templates/index b/ntc_templates/templates/index
@@ -203,6 +203,7 @@ cisco_apic_fabric_show_vlan_extended.textfsm, .*, cisco_apic, fabric sh[[ow]] vl
 cisco_asa_show_module.textfsm:cisco_asa_show_module_details.textfsm:cisco_asa_show_module_status.textfsm, .*, cisco_asa, sh[[ow]] modu[[le]]
 cisco_asa_show_running-config_all_crypto_map.textfsm, .*, cisco_asa, sh[[ow]] ru[[nning-config]] all cr[[ypto]] m[[ap]]
 cisco_asa_show_running-config_object_network.textfsm, .*, cisco_asa, sh[[ow]] ru[[nning-config]] o[[bject]] n[[etwork]]
+cisco_asa_show_running-config_object_service.textfsm, .*, cisco_asa, sh[[ow]] ru[[nning-config]] o[[bject]] s[[ervice]]
 cisco_asa_show_asp_table_vpn-context_detail.textfsm, .*, cisco_asa, sh[[ow]] asp t[[able]] vpn-co[[ntext]] d[[etail]]
 cisco_asa_show_running-config_access-group.textfsm, .*, cisco_asa, sh[[ow]] ru[[nning-config]] access-gr[[oup]]
 cisco_asa_show_running-config_crypto_ikev1.textfsm, .*, cisco_asa, sh[[ow]] ru[[nning-config]] cr[[ypto]] ikev1
diff --git a/tests/cisco_asa/show_running-config_object_service/cisco_asa_show_running-config_object_service.raw b/tests/cisco_asa/show_running-config_object_service/cisco_asa_show_running-config_object_service.raw
@@ -0,0 +1,89 @@
+object service one
+ description test one
+ service tcp source eq 8000 destination eq 9000
+object service two
+ description test two
+ service udp source eq 8000 destination gt 9000
+object service three
+ description test three
+ service tcp source eq 8000 destination lt 9000
+object service four
+ description test four
+ service tcp source eq 8000 destination range 9000 9999
+object service five
+ description test five
+ service tcp source gt 8000 destination eq 9000
+object service six
+ description test six
+ service udp source gt 8000 destination gt 9000
+object service seven
+ description test seven
+ service tcp source gt 8000 destination lt 9000
+object service eight
+ description test eight
+ service tcp source gt 8000 destination range 9000 9999
+object service nine
+ description test nine
+ service tcp source lt 8000 destination eq 9000
+object service ten
+ description test ten
+ service udp source lt 8000 destination gt 9000
+object service eleven
+ description test eleven
+ service tcp source lt 8000 destination lt 9000
+object service twelve
+ description test twelve
+ service tcp source lt 8000 destination range 9000 9999
+object service thirteen
+ description test thirteen
+ service tcp source range 8000 8999 destination eq 9000
+object service fourteen
+ description test fourteen
+ service udp source range 8000 8999 destination gt 9000
+object service fifteen
+ description test fifteen
+ service tcp source range 8000 8999 destination lt 9000
+object service sixteen
+ description test sixteen
+ service tcp source range 8000 8999 destination range 9000 9999
+object service seventeen
+ description test seventeen
+ service tcp source eq 8000
+object service eighteen
+ description test eighteen
+ service tcp source gt 8000
+object service nineteen
+ description test nineteen
+ service udp source lt 8000
+object service twenty
+ description test twenty
+ service tcp source range 8000 8999
+object service twenty-one
+ description test twenty-one
+ service tcp destination eq 8000
+object service twenty-two
+ description test twenty-two
+ service tcp destination gt 8000
+object service twenty-three
+ description test twenty-three
+ service tcp destination lt 8000
+object service twenty-four
+ service udp destination range 8000 8999
+object service twenty-five
+ service tcp source range 1 1024 destination eq https
+object service twenty-six
+ service tcp destination eq http
+object service twenty-seven
+ service tcp source eq ssh
+object service twenty-eight
+ service icmp echo
+object service twenty-nine
+ service icmp
+object service thirty
+ service icmp 9 16
+object service thirty-one
+ description Except for IRC-based botnet C&C traffic
+ service tcp destination neq 6667
+object service thirty-two
+ description Numeric protocol
+ service 137
diff --git a/tests/cisco_asa/show_running-config_object_service/cisco_asa_show_running-config_object_service.yml b/tests/cisco_asa/show_running-config_object_service/cisco_asa_show_running-config_object_service.yml
