Send netdisco-users mailing list submissions to
[email protected]
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
[email protected]
You can reach the person managing the list at
[email protected]
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. Re: HSRP MAC Appearing with Many IPs (Jiri Dvorak)
2. netdisco2 errors with neighbor discovery (Joseph Bernard)
3. Re: HSRP MAC Appearing with Many IPs (Golden, Jeffrey)
4. Re: LDAP Authentication (Sassan Dibadj)
--- Begin Message ---
Hello Jeffrey,
somewhere around line 1180 of the netdisco perl script there is already a
special handling
for VRRP addresses. We have added a second block for HSRP:
if ($mac =~ /^00:00:5e:00:/i) {
print "[$hostname] $mac is a VRRP address ... skipping\n" if $DEBUG;
next;
}
if ($mac =~ /^00:00:0c:07:ac:/i) {
print "[$hostname] $mac is a HSRP address ... skipping\n" if $DEBUG;
next;
}
I don't think it makes sense to correlate to IP addresses, as these HSRP mac
addresses are
(usually) not unique. So we just skip them.
Regs,
Jiri
--
----
J. Dvorak
netnea ag, www.netnea.com
gsm +41 79 446 8090
On 03/03/2014 07:43 PM, Golden, Jeffrey wrote:
>
> Hello,
>
> I recently installed Netdisco (version details below) and I
> will be
> using it in a large enterprise environment with many Cisco virtual HSRP
> addresses
> configured. We noticed when Netdisco does a discovery of these devices with
> HSRP
> configured, it correlates all virtual IPs to a single virtual MAC
> (00:00:0c:07:ac:01).
> Is there a way that we can have Netdisco skip correlating this MAC to an IP?
>
>
>
> [root@nmbdplm06 netdisco]# ./netdisco -v
>
> n e t d i s c o
>
> --------------------------------------------------
>
> Netdisco Version : 1.3.2
>
> SNMP::Info Version : 3.01
>
> Net-SNMP Version : 5.0702
>
> Perl Version : 118.53.46.49.48.46.49
>
>
>
> *-- Jeff*
>
>
>
>
>
> ------------------------------------------------------------------------------
> Subversion Kills Productivity. Get off Subversion & Make the Move to Perforce.
> With Perforce, you get hassle-free workflows. Merge that actually works.
> Faster operations. Version large binaries. Built-in WAN optimization and the
> freedom to use Git, Perforce or both. Make the move to Perforce.
> http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
>
>
> _______________________________________________
> Netdisco mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/netdisco-users
--- End Message ---
--- Begin Message ---
I just installed Netdisco 2.024003, and I have a problem with discovery of
neighbor switches. In the web interface I get the errors:
discovery failed: could not SNMP connect to x.x.x.x/32
I can do ~/bin/netdisco-do -D discover -d 1.2.3.4 , and the device will be
discovered. I can do the same with the neighbors one by one, and they work
fine. My problem is that the queued discovers don't work and show the error
above.
Any ideas what might be wrong? Could it be a permissions issue?
Thanks,
Joseph B.
--- End Message ---
--- Begin Message ---
Hello All,
I came across a previous user that encountered this same issue with virtual
HSRP MAC/IP correlations (email thread link below). It seems that solution used
was to add a skip HSRP section, with the virtual HSRP MAC, beneath the skip
VRRP section in the Netdisco code.
What are the chances to get this solution added to the next version of Netdisco?
http://sourceforge.net/p/netdisco/mailman/message/7196042/
Jeff
From: Golden, Jeffrey [Tech]
Sent: Monday, March 03, 2014 1:44 PM
To: '[email protected]'
Subject: HSRP MAC Appearing with Many IPs
Hello,
I recently installed Netdisco (version details below) and I
will be using it in a large enterprise environment with many Cisco virtual HSRP
addresses configured. We noticed when Netdisco does a discovery of these
devices with HSRP configured, it correlates all virtual IPs to a single virtual
MAC (00:00:0c:07:ac:01). Is there a way that we can have Netdisco skip
correlating this MAC to an IP?
[root@nmbdplm06 netdisco]# ./netdisco -v
n e t d i s c o
--------------------------------------------------
Netdisco Version : 1.3.2
SNMP::Info Version : 3.01
Net-SNMP Version : 5.0702
Perl Version : 118.53.46.49.48.46.49
-- Jeff
--- End Message ---
--- Begin Message ---
Thank you the below solution worked perfectly!
Sassan Dibadj
Network Engineer
U.T. Southwestern Medical Center
The Future of Medicine Today!
From: David Baldwin [mailto:[email protected]]
Sent: Sunday, March 02, 2014 5:39 PM
To: Sassan Dibadj; [email protected]
Subject: Re: [Netdisco] LDAP Authentication
On 1/03/14 9:13 AM, Sassan Dibadj wrote:
I’ve been trying for a while now to get LDAP authentication working with
netdisco but have not been successful. This is LDAP with an active directory
domain.
I create an account in netdisco with the same name as the ldap user and check
the ldap box while leaving the password blank.
In netdisco.conf I’ve set the following.
ldap_server = xxxxxxxx
ldap_user_string = DOMAIN\%USER%
ldap_proxy_user = xxxxxxx
ldap_proxy_pass = xxxxxxx
I’ve verified that the proxy user and proxy pass work by doing an ldapsearch
command.
All I get back from netdisco is Bad Login and I can’t find any logs to help
figure out what is going on.
Does anyone have some suggestions as to where logs might be or what I might be
doing wrong?
With AD you do not require a proxy user/pass. User authentication works using
UserPrincipalName as the LDAP bind DN.
Depending on your AD configuration, the following _should_ work for fairly
standard configurations:
ldap_server = <fully qualified domain>
ldap_user_string = %USER%@<FULLY QUALIFIED DOMAIN>
ldap_opts = version => 3, debug => 0
So if your AD domain is called example.com, follwoing should work:
ldap_server = example.com
ldap_user_string = %[email protected]<mailto:%[email protected]>
ldap_opts = version => 3, debug => 0
The technicalities are that the server should actually be the same as DNS for
_ldap._tcp.example.com (which may work also, I haven't tested), and the
UserPrincipalName attribute in AD is of the form
[email protected]<mailto:[email protected]>
David.
Thank you.
________________________________
UT Southwestern Medical Center
The future of medicine, today.
------------------------------------------------------------------------------
Flow-based real-time traffic analytics software. Cisco certified tool.
Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer
Customize your own dashboards, set traffic alerts and generate reports.
Network behavioral analysis & security monitoring. All-in-one tool.
http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk
_______________________________________________
Netdisco mailing list
[email protected]<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/netdisco-users
--
David Baldwin - Senior Systems Administrator (Datacentres + Networks)
Information and Communication Technology Services
Australian Sports Commission http://ausport.gov.au
Tel 02 62147830 Fax 02 62141830 PO Box 176 Belconnen ACT 2616
[email protected]<mailto:[email protected]> 1
Leverrier Street Bruce ACT 2617
Our Values: RESPECT + INTEGRITY + TEAMWORK + EXCELLENCE
________________________________
Keep up to date with what's happening in Australian sport visit
www.ausport.gov.au<http://www.ausport.gov.au>
This message is intended for the addressee named and may contain confidential
and privileged information. If you are not the intended recipient please note
that any form of distribution, copying or use of this communication or the
information in it is strictly prohibited and may be unlawful. If you receive
this message in error, please delete it and notify the sender.
________________________________
--- End Message ---
------------------------------------------------------------------------------
Subversion Kills Productivity. Get off Subversion & Make the Move to Perforce.
With Perforce, you get hassle-free workflows. Merge that actually works.
Faster operations. Version large binaries. Built-in WAN optimization and the
freedom to use Git, Perforce or both. Make the move to Perforce.
http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
_______________________________________________
Netdisco mailing list - Digest Mode
[email protected]
https://lists.sourceforge.net/lists/listinfo/netdisco-users
