Nov-14 NeDi – find IT 2
• Was ist NeDi?
• Wie funktioniert’s?
• Was bringt’s?
Nov-14 NeDi – find IT 3
HP MASE - Network Infrastructure HP ASE - ProCurve Mobility HP ASE - ProCurve Network Management NeDi “Erfunden” UBS Investment Bank ans Internet angeschlossen! Lebte 2 Jahre in Florida Dipl. Ing. (HTL/FH) Nachrichtentechnik
4/2014
Nov-14 NeDi – find IT 4
• Netzwerk Management & Überwachung
• Konfigurationen sichern
• IT Inventarisieren
• Computer finden & verfolgen
• Sicherheits-audits & mehr
• VM Management
• Printer Management
Nov-14 NeDi – find IT 5
Nov-14 NeDi – find IT 6
Nov-14 NeDi – find IT 7
Discovery (Perl)
nedi.conf Backend
(SQL DB)
Frontend (PHP)
seedlist
sysobj.def
oui/iab.txt
msg.txt
maps.php
cmd/cmd-log.txt
RRDs
Nov-14 NeDi – find IT 8
moni
syslog
trap
Nov-14 NeDi – find IT 9
syslog.pl nedi.pl trap.pl moni.pl
source monitored?
N Y
Event level 10
Discard
Forward
Event level 50-250
in notify string?
Y N
Alert Setting None Event, Email
Event
Event, Email, SMS
up/down alert every 100th alert on repeat Reboot detected
Discovery notification
Events Table
SMS
Events
nedi.pl: notify letter is uppercase? level >= forward limit or <= discard limit? info matching forward or discard regexp? (forward wins over discard)
Nov-14 NeDi – find IT 11
Nov-14 NeDi – find IT 12
• Discovery läuft Regelmässig durch das ganze Netz • Es kann bestimmt werden, was wann ausgelesen wird • Policies bestimmen, was wichtig ist und was nicht • Aktionen können automatisch ausgelöst werden
• Monitoring überprüft nur, ob Ziele noch leben • Erlaubt zusätzlich granulare Schwellwerte
• Events (Discovery, Syslog, Traps und Monitoring) werden Zentral gesammelt und ausgewertet
Nov-14 NeDi – find IT 13
Nov-14 NeDi – find IT 14
Nov-14 NeDi – find IT 15
Nov-14 NeDi – find IT 16
• Berichte auswählen • Ggf. Filter setzen • Graph oder Map hinzufügen • Als Bookmark speichern
Nov-14
SNMP Location String: Maledives;Meeru;My Bar;E;Wallrack
NeDi – find IT 17
Nov-14 18 NeDi – find IT
Nov-14 NeDi – find IT 19
Nov-14 NeDi – find IT 20
• Openstreet Maps als Alternative? • Weiteren Mehrwert schaffen…
Nov-14 NeDi – find IT 21
Nov-14 NeDi – find IT 22
Nov-14 NeDi – find IT 23
Nov-14 24 NeDi – find IT
Nov-14 25 NeDi – find IT
Nov-14 NeDi – find IT 26
Nov-14 NeDi – find IT 27
Nov-14 NeDi – find IT 28
21.11.2014 29 NeDi – find IT
Nov-14 NeDi – find IT 30
Nov-14 NeDi – find IT 31
Nov-14 NeDi – find IT 32
Nov-14 NeDi – find IT 33
Nov-14 NeDi – find IT 34
Nov-14 NeDi – find IT 35
Nov-14 NeDi – find IT 36
Nov-14 NeDi – find IT 37
Nov-14 NeDi – find IT 38
1dev:~#ne -a charon Discovery (%VERSION%) /var/nedi/nedi.pl -a charon Started with 1 seeds at Mon Aug 25 17:13:55 2014 ------------------------------------------------------------------------------- Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 0/1-1s =============================================================================== END :Took 0 minutes
n1dev:~#ne -a charon -x echo Discovery (%VERSION%) /var/nedi/nedi.pl -a charon -x echo Started with 1 seeds at Mon Aug 25 17:12:26 2014 ------------------------------------------------------------------------------- Device Status Todo/Done-Time =============================================================================== 10.10.10.1 charon SvSmIcIm i8 j5 a0 existing charon 10.10.10.1 2 public 1.3.6.1.4.1.2021.250.255 m0n0wall charon.nedi.ch 1.8.1 generic-pc FreeBSD 8.4-RELEASE-p7 i386 0 0/1-1s =============================================================================== END :Took 0 minutes