Nav-users Februar 2007

nav-users@lister.sikt.no

4 participants
6 discussions

Announcement: NAV 3.2.1 released
by werner＠debian.org 27 Feb '07

27 Feb '07

On Fri, Feb 16, 2007 at 12:37:14PM +0100, Morten Brekkevold wrote: > Latest status from Morten Werner Olsen is that the Debian package of 3.2.0 is > in testing, hopefully a 3.2.1 version will be officially released next week. Today the Debian package for NAV 3.2.1 is moved into the http://pkg-nav.alioth.debian.org/debian sarge local archive. I have updated the install-howto [1], but /usr/share/doc/nav/README.Debian is not verified so feedback is more than welcome! :) - Werner [1] http://pkg-nav.alioth.debian.org/install-howto.txt

1 0

Updated InstallingOnRHEL4 to cover NAV 3.2.1
by roger.aas＠hsh.no 22 Feb '07

22 Feb '07

I have the last days updated my installation description of NAV on CentOS and RHEL to cover the newest version of NAV. The highlights: - Updated for NAV 3.2.1 - Use the default LVM setup - Small change in sample firewall setup - Set options for Tomcat - Place jdbc and snmp jars in nav java folder - New security setup for postgresql for nav 3.2.1 - No in-built backup of the database - Updated two packages: - Java 1.5.0_09 -> 1.5.0_11 - DB_File 1.814 -> 1.815 Same link as before: http://metanav.ntnu.no/moin.cgi/InstallingOnRHEL4 Always nice with feedback on this document, especially if you find some errors. Best regards, - Roger -- Roger Aas Stord/Haugesund University College

1 0

Problem with HP 9304m & vlan
by vidar.faltinsen＠uninett.no 06 Feb '07

06 Feb '07

On Mon, 8 Jan 2007, Marco Barbieri wrote: > Hi all, > i'm trying to use NAV 3.1.1 in my environment, my main problem seems to be > that my network in mainly based on HP router/switches: 9304m (foundry/hp), > procurve 5304, 5308, 2824 etc.. and a couple of cisco. > I don't have cdp active on any machine, the net is ospf based and snmp > enabled. > > The Cisco machines are fully understood, i can see the vlans that are there > defined, counters and so on, everything is fine. > > Some HP machines are understood too or a sort of mainly Procurve family 25xx e > 53xx even if i can't see the vlans that are defined on those router/switches. > > Hp/Foundry 9304m is the worst understood: non only it doesn't show any defined > vlan but it doesn't show the expansions slots that are fitted in the chassis. > Obviously these are my main router/switches. :) We have never tested NAV with a Hp/Foundry 9304m. Can you send us the list of OIDs NAV classifies the box to and we can take it from there. Typically the data from https://yournav/report/netboxsnmpoid?netboxid=id of your foundry (linked from the "All IP devices report, right column). So you do not see any router ports in NAV? - Vidar >From barbieri.marco at unimore.it Mon Feb 12 09:48:27 2007 From: barbieri.marco at unimore.it (Marco Barbieri) Date: Mon Feb 12 09:48:46 2007 Subject: [Nav-users] Problem with HP 9304m & vlan In-Reply-To: <Pine.LNX.4.64.0702061629450.30147(a)tyholt.uninett.no> References: <200701081206.48961.barbieri.marco(a)unimore.it> <Pine.LNX.4.64.0702061629450.30147(a)tyholt.uninett.no> Message-ID: <200702120948.27513.barbieri.marco(a)unimore.it> On Tuesday 06 February 2007 16:33, you wrote: > We have never tested NAV with a Hp/Foundry 9304m. Can you send us the list > of OIDs NAV classifies the box to and we can take it from there. i've attacched an archive containing the page you asked > So you do not see any router ports in NAV? and in the scond page you can see how is the machine is "seen" by NAV. In the meanwhile i've upgradade to NAV 3.2.0, so reports are generated with this version. Thanks for answering. Best Reagards. -- Marco Barbieri - CeSIA - 059-2055218

1 0

Need to make a sms-Alert when a mac-address enter the network
by vidar.faltinsen＠uninett.no 06 Feb '07

06 Feb '07

On Mon, 5 Feb 2007, Dan Oetting wrote: > On Jan 19, 2007, at 5:02 AM, Peder Magne Sefland wrote: > > >We use DHCP and I would like to get an sms-message when this > >mac-address enter the network. Can this be done today? > > On a small scale such as having only 1 MAC address that you need to catch, you > could configure your DHCP servers to assign this MAC a specific IP. > > With the suspect confined to a known set of IP addresses you could also setup > a sniffer on the external routes to capture all traffic from those IPs to see > for yourself if there is abuse. > > I am surprised that switches can't generate an SNMP trap whenever a new MAC > address is added to it's routing tables. You probably mean bridge table, anyway, are you sure? For Cisco I've read that you can do this: "You can generate SNMP traps whenever a MAC address change occurs by enabling the set snmp trap enable macnotification command in conjunction with enabling the set cam notification and set cam notification historysize commands." I haven't tested it yet, maybe someone out there has? We have SNMP trap on TODO for NAV 3.3, we are thinking of an implementation that can trigger certain scripts on a given snmp trap oid. We see to very interesting use cases: * when linkdown/up trap is detected update the cooresponding link value in the swport/gwport database table. * when a new mac address is seen/gone trigger a script that opens/closes corresponding machine tracker records (cam table). This script could also post alarms regarding wanted mac addresses. - Vidar

1 0

cricket error in logs
by morten.brekkevold＠uninett.no 02 Feb '07

02 Feb '07

Mr. Caryl Whitlatch wrote, On 19-01-2007 16:11: > Config tree needs to be recompiled: File > /usr/local/nav/cricket/cricket-config/switches/Defaults is newer than the > compiled version This warning appears if the cricket-configuration has been changed without cricket-compile having been run. Normally, cricket-compile is run if necessary at the start of each collection run - which is at least every 5 minutes. You might be seeing this error because of file permission problems. Makecricketconfig.pl prior to NAV 3.2 used to unnecessarily set restrictive umasks before creating new Cricket configuration files. Please make sure that every file and directory below /usr/local/nav/cricket/cricket-config/ is writable by the navcron user, and readable by everyone (or the user who runs the Apache process - the point being that Cricket's web interface must be able to read the config). I also recommend upgrading to NAV 3.2, of course :) -- mvh Morten Brekkevold UNINETT >From morten.brekkevold at uninett.no Fri Feb 2 14:36:11 2007 From: morten.brekkevold at uninett.no (Morten Brekkevold) Date: Fri Feb 2 14:36:30 2007 Subject: [Nav-users] cricket 2 In-Reply-To: <004201c73bdc$4ca5b2c0$4732a8c0@cwhitlatch> References: <004201c73bdc$4ca5b2c0$4732a8c0@cwhitlatch> Message-ID: <45C33E4B.4030103(a)uninett.no> Mr. Caryl Whitlatch wrote, On 19-01-2007 16:12: > Anything I should be concerned with here? [output from makecricketconfig snipped] No, everything looks normal (except for the fact that makecricketconfig in NAV 3.1.1 has known bugs). -- mvh Morten Brekkevold UNINETT >From morten.brekkevold at uninett.no Fri Feb 2 14:38:17 2007 From: morten.brekkevold at uninett.no (Morten Brekkevold) Date: Fri Feb 2 14:38:30 2007 Subject: [Nav-users] Announcement: NAV 3.2.0 released In-Reply-To: <1170419636.12236.1.camel@myh> References: <45C32599.4070207(a)uninett.no> <1170419636.12236.1.camel@myh> Message-ID: <45C33EC9.3030606(a)uninett.no> Stein Magnus Jodal wrote, On 02-02-2007 13:33: > Err. Morten meant 3.2.0. He blames the day of the week ;-) That, and lack of strong coffee :P > "When in doubt, read the subject!" -Morten Yes, truth is in the headers. -- mvh Morten Brekkevold UNINETT >From oetting at usgs.gov Mon Feb 5 11:28:28 2007 From: oetting at usgs.gov (Dan Oetting) Date: Mon Feb 5 19:28:35 2007 Subject: [Nav-users] Need to make a sms-Alert when a mac-address enter the network In-Reply-To: <45B0C184.3657.00CE.0(a)hivolda.no> References: <45B0C184.3657.00CE.0(a)hivolda.no> Message-ID: <78035348-7938-499C-9093-9E9F2D9E73DF(a)usgs.gov> On Jan 19, 2007, at 5:02 AM, Peder Magne Sefland wrote: > We use DHCP and I would like to get an sms-message when this > mac-address enter the network. Can this be done today? On a small scale such as having only 1 MAC address that you need to catch, you could configure your DHCP servers to assign this MAC a specific IP. With the suspect confined to a known set of IP addresses you could also setup a sniffer on the external routes to capture all traffic from those IPs to see for yourself if there is abuse. I am surprised that switches can't generate an SNMP trap whenever a new MAC address is added to it's routing tables. -- Dan O.

1 0

Announcement: NAV 3.2.0 released
by morten.brekkevold＠uninett.no 02 Feb '07

02 Feb '07

NAV 3.1.0 is now available for download at SourceForge, see http://sourceforge.net/projects/nav :-) This is mainly a feature release, but it also contains a number of bugfixes. There is still a number of known bugs that we are working on. If you discover bugs, please report them on this list or at http://sourceforge.net/projects/nav . Binary packages for Debian will be available soon. The Debian package is maintained by Morten Werner Olsen, on commission from UNINETT. Alex Krapivins updated CentOS RPMs are also available for download at SourceForge. -- mvh Morten Vold UNINETT

1 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Nav-users Februar 2007