Skip to Main Content
Liongard Library

Welcome to Liongard Library, where Lions share! This is a community-led space where Liongard users can come to teach and learn from one another.
Share custom Metrics, get inspired and see what’s trending in the Pride.

Pride Etiquette:
➕ Have great custom Metrics? Add them as entries!
🌟 Want to use a Metric? Copy the query and
follow this doc.
👍 Tried a Metric from the Library? Like it!
📣 Have a question or feedback on a Metric? Add a comment!
🔎 Not sure where to start? Learn about Metrics and how to write them.
💬 Need help writing a metric or want to help support others? Join the conversation in our Liongard Lounge #metrics slack channel.


🥴 See something off? Open a support chat to let us know.

ADD A NEW METRIC ENTRY

SonicWall

Showing 27 of 877

Sonicwall: Exposed WAN zone HTTPS mgmt

Detects WAN Zone enabled HTTPS Management interfaces with ANY as the source IP
Austin B [QuoStar] over 2 years ago in SonicWall 0

Sonicwall: Exposed WAN Zone HTTP mgmt

Detects WAN Zone enabled HTTP Management interfaces with ANY as the source IP
Austin B [QuoStar] over 2 years ago in SonicWall 0

SonicWall: Content Filtering is Licensed

Determines if Content Filtering is "Licensed". Can add | length(@) at the end for a return of 1.
Aaron Arlotti over 2 years ago in SonicWall 0

Sonicwall: LoadBalance Primary Member vs Active Member (Gen 6)

Show the configured Primary member of a load balancer and the active at the time of the Inspector scan. Note: Does not work for Gen 7 Sonicwalls
Austin B [QuoStar] over 1 year ago in SonicWall 0

Sonicwall | Version Is 6.5 Or Greater

Using new roarpath function, check if sonicwall is version 6.5 or greater. Change the 6.5 to any version you want to compare for.
Stephen Rankich almost 2 years ago in SonicWall 0

Sonicwall: NAT contains RDS services

This one is a little trickier to catch but looks for the translated service containing RDP, RDS, Terminal, or 3389 with source being any. This is an indicator of wide open RDP however if the service does not contain these names it is missed.
Devon over 2 years ago in SonicWall 0

Sonicwall: Exposed IKE/VPN

Detects IKE connections with ANY as the source IP.
Austin B [QuoStar] over 2 years ago in SonicWall 0