Network Discovery Update
Werbung
• Was ist NeDi? • Wie funktioniert’s? • Was bringt’s? Nov-14 NeDi – find IT 2 4/2014 HP MASE - Network Infrastructure HP ASE - ProCurve Mobility HP ASE - ProCurve Network Management NeDi “Erfunden” UBS Investment Bank ans Internet angeschlossen! Lebte 2 Jahre in Florida Dipl. Ing. (HTL/FH) Nachrichtentechnik Nov-14 NeDi – find IT 3 • Netzwerk Management & Überwachung • Konfigurationen sichern • IT Inventarisieren • Computer finden & verfolgen • Sicherheits-audits & mehr • VM Management • Printer Management Nov-14 NeDi – find IT 4 Nov-14 NeDi – find IT 5 Nov-14 NeDi – find IT 6 Nov-14 NeDi – find IT 7 Discovery (Perl) nedi.conf Backend seedlist moni sysobj.def syslog oui/iab.txt trap RRDs (SQL DB) msg.txt Nov-14 Frontend maps.php (PHP) cmd/cmd-log.txt NeDi – find IT 8 Nov-14 NeDi – find IT 9 syslog.pl trap.pl nedi.pl Discovery notification Events source monitored? N moni.pl up/down alert every 100th alert on repeat Reboot detected in notify string? Y Y N nedi.pl: notify letter is uppercase? level >= forward limit or <= discard limit? info matching forward or discard regexp? (forward wins over discard) Forward Event, Email Alert Setting None Discard Event, Email, SMS Event level 10 Event level 50-250 Mail Events Table Event SMS Nov-14 NeDi – find IT 11 • • • • Discovery läuft Regelmässig durch das ganze Netz Es kann bestimmt werden, was wann ausgelesen wird Policies bestimmen, was wichtig ist und was nicht Aktionen können automatisch ausgelöst werden • Monitoring überprüft nur, ob Ziele noch leben • Erlaubt zusätzlich granulare Schwellwerte • Events (Discovery, Syslog, Traps und Monitoring) werden Zentral gesammelt und ausgewertet Nov-14 NeDi – find IT 12 Nov-14 NeDi – find IT 13 Nov-14 NeDi – find IT 14 Nov-14 NeDi – find IT 15 • • • • Berichte auswählen Ggf. Filter setzen Graph oder Map hinzufügen Als Bookmark speichern Nov-14 NeDi – find IT 16 SNMP Location String: Maledives;Meeru;My Bar;E;Wallrack Nov-14 NeDi – find IT 17 Nov-14 NeDi – find IT 18 Nov-14 NeDi – find IT 19 • Openstreet Maps als Alternative? • Weiteren Mehrwert schaffen… Nov-14 NeDi – find IT 20 Nov-14 NeDi – find IT 21 Nov-14 NeDi – find IT 22 Nov-14 NeDi – find IT 23 Nov-14 NeDi – find IT 24 Nov-14 NeDi – find IT 25 Nov-14 NeDi – find IT 26 Nov-14 NeDi – find IT 27 Nov-14 NeDi – find IT 28 21.11.2014 NeDi – find IT 29 Nov-14 NeDi – find IT 30 Nov-14 NeDi – find IT 31 Nov-14 NeDi – find IT 32 Nov-14 NeDi – find IT 33 Nov-14 NeDi – find IT 34 Nov-14 NeDi – find IT 35 Nov-14 NeDi – find IT 36 Nov-14 NeDi – find IT 37 1dev:~#ne -a charon Discovery (%VERSION%) /var/nedi/nedi.pl -a charon Started with 1 seeds at Mon Aug 25 17:13:55 2014 ------------------------------------------------------------------------------Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 0/1-1s =============================================================================== END :Took 0 minutes n1dev:~#ne -a charon -x echo Discovery (%VERSION%) /var/nedi/nedi.pl -a charon -x echo Started with 1 seeds at Mon Aug 25 17:12:26 2014 ------------------------------------------------------------------------------Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 existing charon 10.10.10.1 2 public 1.3.6.1.4.1.2021.250.255 m0n0wall charon.nedi.ch 1.8.1 generic-pc FreeBSD 8.4-RELEASE-p7 i386 0 0/1-1s =============================================================================== END :Took 0 minutes Nov-14 NeDi – find IT 38