NeDi Community

NeDi Software Specific => Discovery => Topic started by: kierberger on April 27, 2009, 02:29:57 PM

Title: ASA 5520 Discovery
Post by: kierberger on April 27, 2009, 02:29:57 PM
Hi,

Last week I upgraded to 1.0.4. and now I canīt find my ASA5520 ?
Does anybody have an idea?

thanx
Josef

root@nagios:/opt/nedi# ./nedi.pl -a 10.68.1.129

NeDi 1.0.4 - 4.Apr 2009
OUI:    14892 NIC vendor entries read
Dev:    33 devices read from nedi.devices
Link:   0 links (WHERE type = "STAT") read from nedi.links


Manual-Discovery with 1 seed(s) on Mon Apr 27 13:54:17 2009
====================================================================================
Device                          Status                               Todo/Done-Time
------------------------------------------------------------------------------------
10.68.1.129     hoiktf01        Can't call method "get_request" on an undefined value at ./inc/libsnmp.pl line 259.

_____________________________________________________________________________

The  mentionend lines are as follows:

    258         if($misc::sysobj{$so}{sn}){
    259                 $r  = $session->get_request($misc::sysobj{$so}{sn});
Title: Re: ASA 5520 Discovery
Post by: rickli on April 28, 2009, 06:24:11 PM
Did you check its .def? Maybe something's broken there. I don't remember touching it though...  ??? :-\
Title: Re: ASA 5520 Discovery
Post by: rufer on April 29, 2009, 01:34:34 PM
My ASA are discovered by OUI discovery. So check oui.txt and the ouidev option in nedi.conf

Greetings
Rufer
Title: Re: ASA 5520 Discovery
Post by: spiffturk on April 29, 2009, 08:32:37 PM
Just to demonstrate that it's not an isolated issue, I have this problem too-- also on a Cisco ASA 5520.  It does *not* have this problem on an ASA 5505, nor on an ASA 5510.

I just now upgraded from rc5, which worked with no problems.  Working from Rickli's suggestion, I diffed the .def files from 1.0.4 with the ones from rc5, and didn't see any differences.  Any thoughts?

Thanks,

--
Will
Title: Re: ASA 5520 Discovery
Post by: kierberger on April 30, 2009, 09:11:31 AM
hi,
thanx for the replies, here is the snmpwalk of this ASA5520 in epic length  ;):

root@nagios:/opt/nedi/sysobj# snmpwalk a.b.c.d -v1 -c ..........
SNMPv2-MIB::sysDescr.0 = STRING: Cisco Adaptive Security Appliance Version 7.2(4)
SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.9.1.670
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (1328533000) 153 days, 18:22:10.00
SNMPv2-MIB::sysContact.0 = STRING: ............
SNMPv2-MIB::sysName.0 = STRING: .........
SNMPv2-MIB::sysLocation.0 = STRING: ..;.....;.....;...;........
SNMPv2-MIB::sysServices.0 = INTEGER: 4
IF-MIB::ifNumber.0 = INTEGER: 3
IF-MIB::ifIndex.1 = INTEGER: 1
IF-MIB::ifIndex.2 = INTEGER: 2
IF-MIB::ifIndex.3 = INTEGER: 3
IF-MIB::ifDescr.1 = STRING: Adaptive Security Appliance 'HO_01_6509' interface
IF-MIB::ifDescr.2 = STRING: Adaptive Security Appliance 'WAN' interface
IF-MIB::ifDescr.3 = STRING: Adaptive Security Appliance 'management' interface
IF-MIB::ifType.1 = INTEGER: ethernetCsmacd(6)
IF-MIB::ifType.2 = INTEGER: ethernetCsmacd(6)
IF-MIB::ifType.3 = INTEGER: ethernetCsmacd(6)
IF-MIB::ifMtu.1 = INTEGER: 1500
IF-MIB::ifMtu.2 = INTEGER: 1500
IF-MIB::ifMtu.3 = INTEGER: 1500
IF-MIB::ifSpeed.1 = Gauge32: 1000000000
IF-MIB::ifSpeed.2 = Gauge32: 100000000
IF-MIB::ifSpeed.3 = Gauge32: 10000000
IF-MIB::ifPhysAddress.1 = STRING: 0:22:55:cf:5b:5c
IF-MIB::ifPhysAddress.2 = STRING: 0:22:55:cf:5b:5f
IF-MIB::ifPhysAddress.3 = STRING: 0:22:55:cf:5b:5b
IF-MIB::ifAdminStatus.1 = INTEGER: up(1)
IF-MIB::ifAdminStatus.2 = INTEGER: up(1)
IF-MIB::ifAdminStatus.3 = INTEGER: up(1)
IF-MIB::ifOperStatus.1 = INTEGER: up(1)
IF-MIB::ifOperStatus.2 = INTEGER: up(1)
IF-MIB::ifOperStatus.3 = INTEGER: down(2)
IF-MIB::ifLastChange.1 = Timeticks: (700) 0:00:07.00
IF-MIB::ifLastChange.2 = Timeticks: (700) 0:00:07.00
IF-MIB::ifLastChange.3 = Timeticks: (496500) 1:22:45.00
IF-MIB::ifInOctets.1 = Counter32: 405342951
IF-MIB::ifInOctets.2 = Counter32: 2056466613
IF-MIB::ifInOctets.3 = Counter32: 900
IF-MIB::ifInUcastPkts.1 = Counter32: 11833073
IF-MIB::ifInUcastPkts.2 = Counter32: 10424090
IF-MIB::ifInUcastPkts.3 = Counter32: 3
IF-MIB::ifInNUcastPkts.1 = Counter32: 0
IF-MIB::ifInNUcastPkts.2 = Counter32: 35595
IF-MIB::ifInNUcastPkts.3 = Counter32: 12
IF-MIB::ifInDiscards.1 = Counter32: 0
IF-MIB::ifInDiscards.2 = Counter32: 0
IF-MIB::ifInDiscards.3 = Counter32: 0
IF-MIB::ifInErrors.1 = Counter32: 0
IF-MIB::ifInErrors.2 = Counter32: 0
IF-MIB::ifInErrors.3 = Counter32: 0
IF-MIB::ifOutOctets.1 = Counter32: 1591397472
IF-MIB::ifOutOctets.2 = Counter32: 1029840144
IF-MIB::ifOutOctets.3 = Counter32: 3872
IF-MIB::ifOutUcastPkts.1 = Counter32: 10049389
IF-MIB::ifOutUcastPkts.2 = Counter32: 12012376
IF-MIB::ifOutUcastPkts.3 = Counter32: 38
IF-MIB::ifOutNUcastPkts.1 = Counter32: 2736
IF-MIB::ifOutNUcastPkts.2 = Counter32: 2
IF-MIB::ifOutNUcastPkts.3 = Counter32: 19
IF-MIB::ifOutDiscards.1 = Counter32: 0
IF-MIB::ifOutDiscards.2 = Counter32: 0
IF-MIB::ifOutDiscards.3 = Counter32: 0
IF-MIB::ifOutErrors.1 = Counter32: 0
IF-MIB::ifOutErrors.2 = Counter32: 0
IF-MIB::ifOutErrors.3 = Counter32: 0
IF-MIB::ifOutQLen.1 = Gauge32: 0
IF-MIB::ifOutQLen.2 = Gauge32: 0
IF-MIB::ifOutQLen.3 = Gauge32: 0
IF-MIB::ifSpecific.1 = OID: SNMPv2-SMI::zeroDotZero
IF-MIB::ifSpecific.2 = OID: SNMPv2-SMI::zeroDotZero
IF-MIB::ifSpecific.3 = OID: SNMPv2-SMI::zeroDotZero
IP-MIB::ipForwarding.0 = INTEGER: forwarding(1)
..
.
..
.
.
.
.
.
.
.
SNMPv2-MIB::snmpInPkts.0 = Counter32: 215819
SNMPv2-MIB::snmpOutPkts.0 = Counter32: 215804
SNMPv2-MIB::snmpInBadVersions.0 = Counter32: 15
SNMPv2-MIB::snmpInBadCommunityNames.0 = Counter32: 8
SNMPv2-MIB::snmpInBadCommunityUses.0 = Counter32: 0
SNMPv2-MIB::snmpInASNParseErrs.0 = Counter32: 0
SNMPv2-MIB::snmpInTooBigs.0 = Counter32: 0
SNMPv2-MIB::snmpInNoSuchNames.0 = Counter32: 0
SNMPv2-MIB::snmpInBadValues.0 = Counter32: 0
SNMPv2-MIB::snmpInReadOnlys.0 = Counter32: 0
SNMPv2-MIB::snmpInGenErrs.0 = Counter32: 0
SNMPv2-MIB::snmpInTotalReqVars.0 = Counter32: 215967
SNMPv2-MIB::snmpInTotalSetVars.0 = Counter32: 0
SNMPv2-MIB::snmpInGetRequests.0 = Counter32: 65193
SNMPv2-MIB::snmpInGetNexts.0 = Counter32: 150617
SNMPv2-MIB::snmpInSetRequests.0 = Counter32: 0
SNMPv2-MIB::snmpInGetResponses.0 = Counter32: 0
SNMPv2-MIB::snmpInTraps.0 = Counter32: 0
SNMPv2-MIB::snmpOutTooBigs.0 = Counter32: 0
SNMPv2-MIB::snmpOutNoSuchNames.0 = Counter32: 0
SNMPv2-MIB::snmpOutBadValues.0 = Counter32: 0
SNMPv2-MIB::snmpOutGenErrs.0 = Counter32: 0
SNMPv2-MIB::snmpOutGetRequests.0 = Counter32: 0
SNMPv2-MIB::snmpOutGetNexts.0 = Counter32: 0
SNMPv2-MIB::snmpOutSetRequests.0 = Counter32: 0
SNMPv2-MIB::snmpOutGetResponses.0 = Counter32: 215820
SNMPv2-MIB::snmpOutTraps.0 = Counter32: 8
SNMPv2-MIB::snmpEnableAuthenTraps.0 = INTEGER: 0
SNMPv2-MIB::snmpSilentDrops.0 = Counter32: 0
SNMPv2-MIB::snmpProxyDrops.0 = Counter32: 0
IF-MIB::ifName.1 = STRING: HO_01_6509
IF-MIB::ifName.2 = STRING: WAN
IF-MIB::ifName.3 = STRING: management
IF-MIB::ifInMulticastPkts.1 = Counter32: 0
IF-MIB::ifInMulticastPkts.2 = Counter32: 0
IF-MIB::ifInMulticastPkts.3 = Counter32: 0
IF-MIB::ifInBroadcastPkts.1 = Counter32: 0
IF-MIB::ifInBroadcastPkts.2 = Counter32: 0
IF-MIB::ifInBroadcastPkts.3 = Counter32: 0
IF-MIB::ifOutMulticastPkts.1 = Counter32: 0
IF-MIB::ifOutMulticastPkts.2 = Counter32: 0
IF-MIB::ifOutMulticastPkts.3 = Counter32: 0
IF-MIB::ifOutBroadcastPkts.1 = Counter32: 0
IF-MIB::ifOutBroadcastPkts.2 = Counter32: 0
IF-MIB::ifOutBroadcastPkts.3 = Counter32: 0
IF-MIB::ifLinkUpDownTrapEnable.1 = INTEGER: enabled(1)
IF-MIB::ifLinkUpDownTrapEnable.2 = INTEGER: enabled(1)
IF-MIB::ifLinkUpDownTrapEnable.3 = INTEGER: enabled(1)
IF-MIB::ifHighSpeed.1 = Gauge32: 1000
IF-MIB::ifHighSpeed.2 = Gauge32: 100
IF-MIB::ifHighSpeed.3 = Gauge32: 10
IF-MIB::ifPromiscuousMode.1 = INTEGER: false(2)
IF-MIB::ifPromiscuousMode.2 = INTEGER: false(2)
IF-MIB::ifPromiscuousMode.3 = INTEGER: false(2)
IF-MIB::ifConnectorPresent.1 = INTEGER: true(1)
IF-MIB::ifConnectorPresent.2 = INTEGER: true(1)
IF-MIB::ifConnectorPresent.3 = INTEGER: true(1)
IF-MIB::ifAlias.1 = STRING:
IF-MIB::ifAlias.2 = STRING:
IF-MIB::ifAlias.3 = STRING:
IF-MIB::ifCounterDiscontinuityTime.1 = Timeticks: (0) 0:00:00.00
IF-MIB::ifCounterDiscontinuityTime.2 = Timeticks: (0) 0:00:00.00
IF-MIB::ifCounterDiscontinuityTime.3 = Timeticks: (0) 0:00:00.00
SNMPv2-SMI::mib-2.47.1.1.1.1.2.1 = STRING: "ASA 5520 Adaptive Security Appliance"
SNMPv2-SMI::mib-2.47.1.1.1.1.3.1 = OID: SNMPv2-SMI::enterprises.9.12.3.1.3.448
SNMPv2-SMI::mib-2.47.1.1.1.1.4.1 = INTEGER: 0
SNMPv2-SMI::mib-2.47.1.1.1.1.5.1 = INTEGER: 3
SNMPv2-SMI::mib-2.47.1.1.1.1.6.1 = INTEGER: 0
SNMPv2-SMI::mib-2.47.1.1.1.1.7.1 = STRING: "Chassis"
SNMPv2-SMI::mib-2.47.1.1.1.1.8.1 = STRING: "V03 "
SNMPv2-SMI::mib-2.47.1.1.1.1.9.1 = STRING: "1.0(11)4"
SNMPv2-SMI::mib-2.47.1.1.1.1.10.1 = STRING: "7.2(4)"
SNMPv2-SMI::mib-2.47.1.1.1.1.11.1 = STRING: "JMX1234L29J"
SNMPv2-SMI::mib-2.47.1.1.1.1.12.1 = STRING: "cisco Systems Inc."
SNMPv2-SMI::mib-2.47.1.1.1.1.13.1 = STRING: "ASA5520"
SNMPv2-SMI::mib-2.47.1.1.1.1.14.1 = ""
SNMPv2-SMI::mib-2.47.1.1.1.1.15.1 = ""
SNMPv2-SMI::mib-2.47.1.1.1.1.16.1 = INTEGER: 2
SNMPv2-SMI::mib-2.47.1.2.1.1.2.1 = STRING: " (Functional Role: Router)"
SNMPv2-SMI::mib-2.47.1.2.1.1.2.2 = STRING: " (Functional Role: Intranet VPN Hub)"
SNMPv2-SMI::mib-2.47.1.2.1.1.2.3 = STRING: " (Functional Role: Remote Access Hub)"
SNMPv2-SMI::mib-2.47.1.2.1.1.2.4 = STRING: " (Functional Role: Layer2/3 Firewall)"
SNMPv2-SMI::mib-2.47.1.2.1.1.3.1 = OID: SNMPv2-SMI::mib-2
SNMPv2-SMI::mib-2.47.1.2.1.1.3.2 = OID: SNMPv2-SMI::enterprises.9.9.171
SNMPv2-SMI::mib-2.47.1.2.1.1.3.3 = OID: SNMPv2-SMI::enterprises.9.9.392
SNMPv2-SMI::mib-2.47.1.2.1.1.3.4 = OID: SNMPv2-SMI::enterprises.9.9.147
SNMPv2-SMI::mib-2.47.1.2.1.1.4.1 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.4.2 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.4.3 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.4.4 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.5.1 = Hex-STRING: 0A 44 01 81 00 A1
SNMPv2-SMI::mib-2.47.1.2.1.1.5.2 = Hex-STRING: 0A 44 01 81 00 A1
SNMPv2-SMI::mib-2.47.1.2.1.1.5.3 = Hex-STRING: 0A 44 01 81 00 A1
SNMPv2-SMI::mib-2.47.1.2.1.1.5.4 = Hex-STRING: 0A 44 01 81 00 A1
SNMPv2-SMI::mib-2.47.1.2.1.1.6.1 = OID: SNMPv2-TM::snmpUDPDomain
SNMPv2-SMI::mib-2.47.1.2.1.1.6.2 = OID: SNMPv2-TM::snmpUDPDomain
SNMPv2-SMI::mib-2.47.1.2.1.1.6.3 = OID: SNMPv2-TM::snmpUDPDomain
SNMPv2-SMI::mib-2.47.1.2.1.1.6.4 = OID: SNMPv2-TM::snmpUDPDomain
SNMPv2-SMI::mib-2.47.1.2.1.1.7.1 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.7.2 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.7.3 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.7.4 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.8.1 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.8.2 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.8.3 = ""
SNMPv2-SMI::mib-2.47.1.2.1.1.8.4 = ""
SNMPv2-SMI::mib-2.47.1.3.1.1.1.1.1 = INTEGER: 1
SNMPv2-SMI::mib-2.47.1.3.1.1.1.2.1 = INTEGER: 1
SNMPv2-SMI::mib-2.47.1.3.1.1.1.3.1 = INTEGER: 1
SNMPv2-SMI::mib-2.47.1.3.1.1.1.4.1 = INTEGER: 1
SNMPv2-SMI::mib-2.47.1.4.1.0 = Timeticks: (0) 0:00:00.00

@remo: shouldnīt I find the string "ASA5520" somewhere when i do a "grep cisco *"
in the /sysobj/ folder ?

root@nagios:/opt/nedi/sysobj# grep cisco *
1.3.6.1.4.1.9.1.113.def:Type    cisco1601
1.3.6.1.4.1.9.1.125.def:Type    cisco7204
1.3.6.1.4.1.9.1.14.def:Type     cisco4500
1.3.6.1.4.1.9.1.162.def:Type    ciscoAS5300
1.3.6.1.4.1.9.1.168.def:Type    ciscoWSX5302
1.3.6.1.4.1.9.1.172.def:Type    cisco1605
1.3.6.1.4.1.9.1.185.def:Type    cisco2610
1.3.6.1.4.1.9.1.186.def:Type    cisco2611
1.3.6.1.4.1.9.1.187.def:Type    cisco2612
1.3.6.1.4.1.9.1.19.def:Type     cisco2503
1.3.6.1.4.1.9.1.201.def:Type    cisco1720
1.3.6.1.4.1.9.1.208.def:Type    cisco2620
1.3.6.1.4.1.9.1.209.def:Type    cisco2621
1.3.6.1.4.1.9.1.214.def:Type    cisco803
1.3.6.1.4.1.9.1.222.def:Type    cisco7206VXR
1.3.6.1.4.1.9.1.223.def:Type    cisco7204VXR
1.3.6.1.4.1.9.1.27.def:Type     cisco2511
1.3.6.1.4.1.9.1.30.def:Type     cisco2514
1.3.6.1.4.1.9.1.313.def:Type    ciscoAS5350
1.3.6.1.4.1.9.1.319.def:Type    cisco2650
1.3.6.1.4.1.9.1.326.def:Type    cisco1751
1.3.6.1.4.1.9.1.362.def:Type    ciscoIAD2420
1.3.6.1.4.1.9.1.413.def:Type    cisco2691
1.3.6.1.4.1.9.1.414.def:Type    cisco3725
1.3.6.1.4.1.9.1.416.def:Type    cisco1760
1.3.6.1.4.1.9.1.436.def:Type    cisco3745
1.3.6.1.4.1.9.1.466.def:Type    cisco2610XM
1.3.6.1.4.1.9.1.467.def:Type    cisco2611XM
1.3.6.1.4.1.9.1.469.def:Type    cisco2621XM
1.3.6.1.4.1.9.1.471.def:Type    cisco2651XM
1.3.6.1.4.1.9.1.497.def:Type    cisco831
1.3.6.1.4.1.9.1.499.def:Type    cisco836
1.3.6.1.4.1.9.1.543.def:Type    cisco3825
1.3.6.1.4.1.9.1.544.def:Type    cisco3845
1.3.6.1.4.1.9.1.578.def:Type    cisco2851
1.3.6.1.4.1.9.1.592.def:Type    ciscoOS-CIGESM-18TT-EBU
1.3.6.1.4.1.9.1.619.def:Type    cisco2801
1.3.6.1.4.1.9.1.620.def:Type    cisco1841
1.3.6.1.4.1.9.1.663.def:Type    ciscoNme16Es1Ge
1.3.6.1.4.1.9.1.679.def:Type    ciscoAS5350XM

@rufus: thanks for yout reply, but if iīm not wrong the local arp cache of my nedi host will not be filled with
mac adresses īcause nedi is in a different VLAN so the oui detection wonīt work;(I think at least?)

greetings
josef
Title: Re: ASA 5520 Discovery
Post by: rufer on April 30, 2009, 09:31:39 AM
OUI discovery also takes into account any mac found in the ARP cache of a discovered router!

We have ASA-5510 and had some borrowed ASA-5540 that all worked with Nedi, as long as OUI discovery for their mac address was correctly configured.
Perhaps you can also configure CDP for the ASA, but I didn't do that.

Greetings
Rufer
Title: Re: ASA 5520 Discovery
Post by: rickli on April 30, 2009, 08:01:27 PM
kierberger: Nope is it's defined as

Type    ASA5520

Try nedi.pl -y (optional grepping) instead  :)

It fails around getting the serial#, on the 5520. I lied about touching this def (getting old, I guess). I've modified it to include the new custom RRD (# of Connections in this case). Please check for unwanted spaces probably at the SNMPv statement...
Title: Re: ASA 5520 Discovery
Post by: spiffturk on April 30, 2009, 08:37:50 PM
Yep, that fixed it.  There was a space between the tab and "2HC" on the SNMPv line.  Took out the space and all is well.  Thanks for the help!

--
Will
Title: Re: ASA 5520 Discovery
Post by: kierberger on May 01, 2009, 02:08:16 PM
Worked for me ,too. Problem solved. Weekend. Have a beer.  ;D -

A big hand to all of you for the quick help
yours coridally
Josef