Download - OSMC 2014: Network Discovery update | Remo Rickli

Transcript

Page 1: OSMC 2014: Network Discovery update | Remo Rickli

Page 2: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 2

• Was ist NeDi?

• Wie funktioniert’s?

• Was bringt’s?

Page 3: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 3

HP MASE - Network Infrastructure HP ASE - ProCurve Mobility HP ASE - ProCurve Network Management NeDi “Erfunden” UBS Investment Bank ans Internet angeschlossen! Lebte 2 Jahre in Florida Dipl. Ing. (HTL/FH) Nachrichtentechnik

4/2014

Page 4: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 4

• Netzwerk Management & Überwachung

• Konfigurationen sichern

• IT Inventarisieren

• Computer finden & verfolgen

• Sicherheits-audits & mehr

• VM Management

• Printer Management

Page 5: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 5

Page 6: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 6

Page 7: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 7

Page 8: OSMC 2014: Network Discovery update | Remo Rickli

Discovery (Perl)

nedi.conf Backend

(SQL DB)

Frontend (PHP)

seedlist

sysobj.def

oui/iab.txt

msg.txt

maps.php

cmd/cmd-log.txt

RRDs

Nov-14 NeDi – find IT 8

moni

syslog

trap

Page 9: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 9

Page 10: OSMC 2014: Network Discovery update | Remo Rickli

syslog.pl nedi.pl trap.pl moni.pl

source monitored?

N Y

Event level 10

Discard

Forward

Event level 50-250

in notify string?

Y N

Alert Setting None Event, Email

Event

Event, Email, SMS

up/down alert every 100th alert on repeat Reboot detected

Discovery notification

Events Table

Mail

SMS

Events

nedi.pl: notify letter is uppercase? level >= forward limit or <= discard limit? info matching forward or discard regexp? (forward wins over discard)

Page 11: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 11

Page 12: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 12

• Discovery läuft Regelmässig durch das ganze Netz • Es kann bestimmt werden, was wann ausgelesen wird • Policies bestimmen, was wichtig ist und was nicht • Aktionen können automatisch ausgelöst werden

• Monitoring überprüft nur, ob Ziele noch leben • Erlaubt zusätzlich granulare Schwellwerte

• Events (Discovery, Syslog, Traps und Monitoring) werden Zentral gesammelt und ausgewertet

Page 13: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 13

Page 14: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 14

Page 15: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 15

Page 16: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 16

• Berichte auswählen • Ggf. Filter setzen • Graph oder Map hinzufügen • Als Bookmark speichern

Page 17: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14

SNMP Location String: Maledives;Meeru;My Bar;E;Wallrack

NeDi – find IT 17

Page 18: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 18 NeDi – find IT

Page 19: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 19

Page 20: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 20

• Openstreet Maps als Alternative? • Weiteren Mehrwert schaffen…

Page 21: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 21

Page 22: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 22

Page 23: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 23

Page 24: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 24 NeDi – find IT

Page 25: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 25 NeDi – find IT

Page 26: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 26

Page 27: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 27

Page 28: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 28

Page 29: OSMC 2014: Network Discovery update | Remo Rickli

21.11.2014 29 NeDi – find IT

Page 30: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 30

Page 31: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 31

Page 32: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 32

Page 33: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 33

Page 34: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 34

Page 35: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 35

Page 36: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 36

Page 37: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 37

Page 38: OSMC 2014: Network Discovery update | Remo Rickli

Nov-14 NeDi – find IT 38

1dev:~#ne -a charon Discovery (%VERSION%) /var/nedi/nedi.pl -a charon Started with 1 seeds at Mon Aug 25 17:13:55 2014 ------------------------------------------------------------------------------- Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 0/1-1s =============================================================================== END :Took 0 minutes

n1dev:~#ne -a charon -x echo Discovery (%VERSION%) /var/nedi/nedi.pl -a charon -x echo Started with 1 seeds at Mon Aug 25 17:12:26 2014 ------------------------------------------------------------------------------- Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 existing charon 10.10.10.1 2 public 1.3.6.1.4.1.2021.250.255 m0n0wall charon.nedi.ch 1.8.1 generic-pc FreeBSD 8.4-RELEASE-p7 i386 0 0/1-1s =============================================================================== END :Took 0 minutes