Ironport Health Check

Update: if you are facing the error : Exception calling “DownloadString” with “1” argument(s) than follow blog posthttps://syscloudpro.com/2019/04/13/powershell-tip-exception-calling-downloadstring-with-1-arguments/Hi Readers,You have seen other Health check scripts from me for E

 
 
 
 
 
(0)
403 times
Add to favorites
Applications
4/14/2019
E-mail Twitter del.icio.us Digg Facebook
Sign in to ask a question


  • Hi Vikas, Thank you for the script, It has helped me a lot.
    2 Posts | Last post March 03, 2019
    • I created a job to run the script every 5 minutes and then replicate it to a Dashboard that I created.
      My question is:
      Do you know any command lines to close the user session in each script?
      
      Each time I run the script, a session is created that can be viewed in the Ironprt CLI.
      The sessions are many.
      
      Thank you very much.
      AngelF.
    • I run it every hour & not faced any issue with sessions, I will check, if you find than post it in comments for others.
  • Setup a Notification when an Upgrade is available
    2 Posts | Last post February 18, 2019
    • Hi Vikas, I need to set up a Notification when an Upgrade is available on the Ironports. If i login to the Ironports I can see the words "Upgrade available" at the top of the page. Is there a way to extract this  and/or get the upgrade version.
      
      I tried the following commands, but $ExtractIronport does not show the upgrade version or even the words "upgrade available". Is there an alternate way or a different command I can run to get this.
      
      $Userid = "svc_xxxxxxxx"  
      $password ="xxxxxxxxxxxx" 
      $IronPortServer = "esa-xxxx-101"
      $IronPortUrl = "https://$IronPortServer/xml/status"
      $WebClient = new-object System.Net.WebClient 
      [System.Net.ServicePointManager]::ServerCertificateValidationCallback = {$true} 
      $WebClient.Credentials = new-object System.Net.NetworkCredential($Userid, $password) 
      $ExtractIronport = $webclient.DownloadString($IronPortUrl)
      
    • No Worries. I found a work around by scraping the webpage
  • Monitor Multiple Ironports
    7 Posts | Last post October 26, 2017
    • cool script..
      
      I have around 40 ironports & would like to monitor all of them. Can you please help me.
      
      Also is it possible to check the status of services in Ironports. Thank you in advance
    • we are monitoring 4 without any issues from long time, what issue you are facing?
    • Hi, Thank you.
      
      I want PS to read the device IP/hostname from text file which is saved on remote host.
      
      Accessing https://<<HOSTNAME>>/xml/status doesnt return any output. Should we expect it to return any info when accessed.
    • In newer version of Ironport only admin permissions can access the status page
    • ours is Async OS 9.x.x... Are you saying 10.X.
      
      Can you plz help me with my question on how to read display 40 devices status by reading the ip address from text file.
    • i was answering below query as you said that https://<<HOSTNAME>>/xml/status is nt returing anything.
      This should return XML if its not returning than first you should need to torubleshoot it in my case it was permissions issue & than we came to know that now guest account is not able to open it but admin permissions are required.
      
      for picking the ips addresses from a file you can user $variable = get-content .\ip.txt & than looping that value..
    • Hi  All,
      I would like thank Sukhija Vikas  for providing Ironport Healthcheck script & to Mohamed Ghouse who helped me in this. I used it as a refference & build a new one for multiple device
      
      below is the link for the script
      https://gallery.technet.microsoft.com/scriptcenter/Ironport-Health-Check-2c78d42f
  • running script against multiple IronPort appliances
    9 Posts | Last post May 25, 2017
    • HI
      
      this is a great tool.
      Would it be possible to have this script report status of multiple ironport appliances within single email?
      
      please advise
      
      thanks
      miro
    • Yes need to modify it.. will update that in next version..
    • Great job on the script Sukhija Vikas!
      I was able to add another ironport to the script by duplicating then incrementing xmlironport, identity, status and birthtime. I had to add a column within the second set of information for the second ironport.
      I had to use an admin account to connect to the ironport. That might be version specific issue on the ironport.
      Also, is there a reason you are using a batch file to call the script? You should be able to execute the script directly or use task scheduler.
    • Sukhija, Thanks for putting this tool together.  I took your tool a little further to help support our multiple ironports.  I also removed all of the add-content commands and the temp file you were creating as it's not really necessary since everything can be stored in a variable.  It looks like I'm not able to attach a file here and the code doesn't fit in this window so if you want a copy of it, please send me your email address.  My email is james.kendig@gmail.com
      
      
    • Just git your messages now.. Thanks both of you..Justin..I just used batch file as its simple, user just need to double click it to run manually..no other reason..
    • Hi Vikas, I tried your code and it work great. I even got it to work across several ironport (I just ended up feeding the names as a string)
      The only problem is the password as that poses a security concern. Are you able to call public/private keys in powershell to authenticate to IronPort instead of a login /password (http://somoit.net/ironport/ironport-automate-commands-scripts-from-windows)
      Thanks
    • Create a guest account in ironport so that that account can't do anything if compromised.
    • Thanks Vikas. The script is working great !!!
      Also we have 2 clusters and each cluster made up of several IronPorts. If we change the config on one cluster (for example safe lists), we need to remember to update the second cluster. So do you have a similar script that can compare ironport clusters ..... or another way of putting the question would be.. how can I can a dump of the SAFELIST from one cluster?
      Thanks
    • Sorry for posting an addition to the earlier question.
      Alternatively how can I get the XML url that will get Ironport config.
      It could be something similar to the IronPort status url https://<ironport-name>/xml/status