René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Specify multiple 'end' criteria in compliance reporting configs?","articleBody":"In one of the examples configuration examples (https://github.com/NetBrainAPI/NetBrain_Automation_Customization/tree/release_to_public/compliance/audit%20and%20compliance%20reporting) , when viewing `line vty` configs, the compliance check config is set to start at `line vty`s and ends at `!`\r\n\r\nThis is somewhat ambiguous for some common use cases which can occur when there are multiple `start`s before the `end` delimiter. Take the following configuration for instance:\r\n\r\n```\r\nline vty 0 4\r\n login local\r\n transport input ssh\r\nline vty 5 10\r\n login local\r\n transport input telnet ssh\r\nline vty 11 15\r\n  login local\r\n  transport input ssh\r\n!\r\n```\r\nAnd take the following rule from the README:\r\n```\r\n login authentication vty telnet:\r\n     match:\r\n     - 'transport input ssh$'\r\n     start: '^line vty \\d+.+'\r\n     end: '!'\r\n     description: 'Make sure telnet is not allowed into the device for management'\r\n     repeated: True\r\n```\r\n\r\nWith the sample rule provided I think we would end up with the following outcome:\r\n\r\n```\r\nlogin authentication line vty 0 4 | PASS\r\nlogin authentication line vty 5 10   | PASS\r\nlogin authentication line vty 11 15 | PASS\r\n```\r\n\r\nThe first one passes because `line vty 0 4` to the end delimiter `!` - i.e. the whole line vty config block - contains the `transport input ssh$` string.\r\n\r\nThe second one passes because from \r\n`line vty 5 10` through `!` there is also the `transport input ssh` line in `line vty 11 15`\r\n\r\nThe 3rd one passes because it is only the last stanza (the vty 11 15) which has the match we want to see.\r\n\r\nThe second line - `line vty 5 10` should fail but doesn't. Is there a way around this? One way would be to have the end be EITHER `!` or `^line vty`. This way the last one is caught and the first and second one are treated individually.\r\n","author":{"url":"https://github.com/theabraxas","@type":"Person","name":"theabraxas"},"datePublished":"2020-12-29T18:30:42.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":1},"url":"https://github.com/6/NetBrain_Automation_Customization/issues/6"}