plugins/Invoke-IcingaCheckNLA.psm1
<# .SYNOPSIS Checks whether the network location awareness(NLA) found the correct firewall profile for a given network adapter .DESCRIPTION Invoke-IcingaCheckNLA returns either 'OK' or 'CRITICAL', whether the check matches or not. More Information on https://github.com/Icinga/icinga-powershell-plugins .FUNCTIONALITY This module is intended to be used to check the status of the firewall profile for a given network adapter. Based on the match result the status will change between 'OK' or 'CRITICAL'. The function will return one of these given codes. .EXAMPLE PS> Invoke-IcingaCheckNLA -Profile "DomainAuthenticated" -Verbosity 3; [CRITICAL] Check package "NLA" (Match All) - [CRITICAL] NLA for vEthernet (DockerNAT) \_ [OK] NLA for Ethernet 4: DomainAuthenticated \_ [CRITICAL] NLA for vEthernet (DockerNAT): Value "Public" is not matching threshold "DomainAuthenticated" .EXAMPLE PS> Invoke-IcingaCheckNLA -Profile "DomainAuthenticated" -NICs "Ethernet 1" -Verbosity 1; [OK] Check package "NLA" (Match All) .PARAMETER Profile Used to specify the profile to check. Available profiles are 'DomainAuthenticated', 'Public', 'Private' .PARAMETER NICs Used to specify the NICs where to check the filewall profile. When not presented every nic which is active will be checked .PARAMETER Verbosity Changes the behavior of the plugin output which check states are printed: 0 (default): Only service checks/packages with state not OK will be printed 1: Only services with not OK will be printed including OK checks of affected check packages including Package config 2: Everything will be printed regardless of the check state 3: Identical to Verbose 2, but prints in addition the check package configuration e.g (All must be [OK]) .INPUTS System.String .OUTPUTS System.String .LINK https://github.com/Icinga/icinga-powershell-plugins .NOTES #> function Invoke-IcingaCheckNLA() { param( [ValidateSet('DomainAuthenticated', 'Public', 'Private')] [string]$Profile, [ValidateSet(0, 1, 2, 3)] [int]$Verbosity = 0, [array]$NICs ); $NLAPackage = New-IcingaCheckPackage -Name 'NLA' -OperatorAnd -Verbose $Verbosity; if ($NICs.Count -eq 0) { foreach ($NLAData in (Get-NetConnectionProfile -ErrorAction Stop)) { $NLAName = $NLAData.InterfaceAlias; $NLACheck = New-IcingaCheck -Name "NLA for $NLAName" $NLAData.NetworkCategory -ObjectExists $NLAData -NoPerfData; $NLACheck.CritIfNotMatch([string]$Profile) | Out-Null; $NLAPackage.AddCheck($NLACheck); } } else { foreach ($NIC in $NICs) { $NLAData = (Get-NetConnectionProfile -InterfaceAlias $NIC -ErrorAction Stop); $NLACheck = New-IcingaCheck -Name "NLA for $NIC" -Value $NLAData.NetworkCategory -ObjectExists $NLAData -NoPerfData; $NLACheck.CritIfNotMatch([string]$Profile) | Out-Null; $NLAPackage.AddCheck($NLACheck); } } return (New-IcingaCheckResult -Check $NLAPackage -NoPerfData $TRUE -Compile); } |