Welcome, Guest. Please login or register.

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - tristanbob

Pages: 1 [2] 3 4 ... 10
Definition Files / Re: Cisco 3850 stack def
« on: January 12, 2018, 12:36:22 AM »
Cisco has released the Catalyst 9300 (which is really just a 3850X).   I used the 3850 stack .def file below:

Code: [Select]
sudo cp
sudo chown www-data:www-data

Just replace "38xx" with "39xx" and this is working great for us!


I just wanted to say, Paraidomat, that is a neat hack to make Nedi discover 1/4 of your devices at the same time!

How does it handle new devices?  For instance, if a new device was plugged into existing two devices, which are being discovered by different Nedi processes?  Would the new device get added twice?  Or would the second process simply output an error, like "device exists, skipping".

Installation / Missing dependencies on "Install" instructions for Ubuntu
« on: September 16, 2016, 07:55:22 PM »
I recently used the Ubuntu instructions here:


Nedi was working fine for the most part, but then I tried to initiate a backup using the web-interface.


That page caused Nedi to complain about some missing Perl modules.   I fixed it by installing these packages:


Ok, I got things working again by using PHP5.6, which requires using a PPA repository.

Code: [Select]

# This is needed for "apt-get-repository"
sudo apt-get install software-properties-common python-software-properties

# Add the new repo
sudo add-apt-repository ppa:ondrej/php

# Download package lists
sudo apt-get update

# Install Nedi dependencies
sudo apt-get install apache2 libapache2-mod-php5.6 mysql-server libnet-snmp-perl libcrypt-rijndael-perl libcrypt-hcesha-perl libcrypt-des-perl libdigest-hmac-perl libio-pty-perl libnet-telnet-perl libalgorithm-diff-perl librrds-perl php5.6-mysql php5.6-snmp php5.6-gd php5.6-mcrypt rrdtool libsocket6-perl

# I can't remember if this is required, or done by the packages above...
sudo a2enmod php5.6

# Restart Apache
sudo service apache2 restart

That should work for Ubuntu 16.04.  Let me know if I need to correct anything!

I just upgraded Ubuntu to 16.04 and it broke just like you described. 

What is the best way around this?  Sounds like we need to get php5 installed again?   

I'll post if I find out how to get this working again.

Thanks Remo!  I ran your SQL command using your nifty "System>Database" tool and it reduced my total nodes by ~90%.   

Before: 24.0 million nodes
After: 2.2 million nodes

Needless to say, Node reports are much faster.  (although I still wonder why I have 2 million nodes)

Thanks for your assistance!


I noticed my Nodes feature has been getting slower and slower, so I checked on the quantity of nodes:

New    2,171
Active    4,525,308
Wlan    4,796,687
IP Change    1,063,297
IF Change    15,805,663
No Name    18,231
No IP    16,408
Discover Once    167,450

Total    24,563,767

There is no way there are that many nodes on our network! And these numbers keep growing.  My theory is that Nedi is creating a new Node entry any time there is a unique "DNS name + IP + MAC" combo.  On our wireless, we have 15 min DHCP leases so users could be seen on hundreds of different IPs.

I searched for one node with DNS name of "amelia-pond", and it came up with the 527 results.  The DNS name name was always the same, but the MAC address (including vendors) and IPs varied a lot. 

I am running Nedi version 1.5.225.  We didn't have this explosive growth problem with previous versions.



Wow, once again I find something new and cool about Nedi.  Thanks for letting me know about the "-k" option!


Discovery / SSH discovery fails if keys change... but I have a solution!
« on: January 21, 2015, 07:31:42 PM »
I keep seeing several email alerts from Nedi 1.4 that say this:

22) blg-100-sw1 CLI Bridge Fwd error: no working user

I found out that this is because SSH is warning that the key is different from the one in "~/.ssh/known_hosts"


ssh -o 'StrictHostKeyChecking no' -l nedi


ssh -o 'UserKnownHostsFile /dev/null' -o 'StrictHostKeyChecking no' -l nedi

Please add this change to Nedi so that it can still find devices with changed SSH keys!

/inc/libcli.pm, line 518 on Nedi 1.4
              my $known = "-o 'UserKnownHostsFile /dev/null' -o 'StrictHostKeyChecking no'";


Discovery / Re: IP addresses via DHCP-snooping?
« on: January 21, 2015, 07:23:36 PM »

Your idea is a good one.  I think the DHCP Snooping entries will stay in the switch until the next reboot.  This means it has a longer history than ARP, which has a 4-hour timer by default.  (I guess that would only matter if you ran Nedi less often then every 4 hours) 

This might provide the information needed:


However, you do have a fairly uncommon setup (SNMP access to L2 devices, but not L3).  Hopefully you can sponsor the addition of the feature!



Definition Files / Re:, Cisco FWSM
« on: January 21, 2015, 07:11:37 PM »
I don't think the ASA CLI code is working for us.  Here is what my email alert shows:

15) Campus-fw       Command no terminal pager returned ERROR: % Invalid input detected at '^' marker.
16) Campus-fw       Command show arp returned ERROR: % Invalid input detected at '^' marker.

Here is when I run discovery:

Code: [Select]
sudo ./nedi.pl -a -v -d c

Prepare (CLI)  ----------------------------------------------------------------
PREP:arp supported and user nedi exists

ArpND (CLI)   -----------------------------------------------------------------
SSH :nedi@ Tout:10s OS:IOS-asa EN:[\w+().-]+#\s?$
PTY :Forking ssh -o 'StrictHostKeyChecking no' -l nedi
CLI2:Matched 'password:' sending password
CLI3:Password sent
CLI4:Matched Campus-fw>  (without enpass)
DBG :Elevate=3 Min=0 Mode=C Notify=AbCDEfGijlMNopSTW
EVNT:MOD=C/3 L=150 CL=nede TGT=Campus-fw MSG=Command no terminal pager returned ERROR: % Invalid input detected at '^' marker.
MLQ :admin Campus-fw Command no terminal pager returned ERROR: % Invalid input detected at '^' marker.
EFWD:1 Mail and 0 SMS queued
DBG :Elevate=3 Min=0 Mode=C Notify=AbCDEfGijlMNopSTW
EVNT:MOD=C/3 L=150 CL=nede TGT=Campus-fw MSG=Command show arp returned ERROR: % Invalid input detected at '^' marker.
MLQ :admin Campus-fw Command show arp returned ERROR: % Invalid input detected at '^' marker.
EFWD:1 Mail and 0 SMS queued
ARPC:0 ARP entries found

Write ArpND -------------------------------------------------------------------
WAND:0 new IPs and 0 updates written

Is this because Nedi is not trying to "enable" before running those commands?


GUI / Re: Creating amazingly cool network maps with Nedi!
« on: January 21, 2015, 06:57:46 PM »
Thanks for the information Remo!  I have updated my post with the updates.

Yes, this was on Nedi 1.4.   

The good news is it only happened on the first discover.  I can't get it to repeat, but if it does I will gather the debug info you requested.



I am not sure what I was running into.  Since you tested and it worked, you can consider this "unreproducible".  We are installed and running with a database called "nedi".

Thanks for testing it for me!


GUI / Creating amazingly cool network maps with Nedi!
« on: January 13, 2015, 07:36:03 PM »
I have been having the time of my life playing with the new mapping capabilities inside Nedi.  I think many people don't understand how powerful they are, since it requires some tweaking to get results.

Here are some pointers to get you started:

Filter: (Used to restrict which devices are drawn on the map)

Here are some examples:

Device != ap   
(Hundreds of wireless access points (AP) can make a campus map too crowded, so don't display them.  This requires that you use "ap" in the name of your APs.)

Device = buildingname
(Great for getting a view of devices in one area)

Size and Format

I like to choose the biggest size that fits on my screen, which is currently "1920x1200".  If you want to use a custom size, you can manually edit the part of the URL for this.  For example: "&dim=1920x1920".

"SVG" format is great for a static map, that can be zoomed into using the browser's built in zoom function.

"JSON" is a REALLY fun output that is dynamic and interactive.  You will see the nodes bounce about trying to find the optimal design, and you can click and drag on nodes to make them move.

Map Type

We do not use customized SNMP location strings, so the only useful option for us here is "Devices" and "Flat".

Connection End

I can't figure out what "Connection" setting does, it doesn't seem to affect anything.  I do know that "Metric" is used to specify how spread apart the map will be.  Low numbers will make devices bunch up, and big numbers will spread everything apart.   (Note: These settings are ONLY used with the JSON format.)

Connection format

You can play with these, but I like the "Arc" and "Straight" lines the best.  "Length" is another setting used to specify how spread apart the map will be.  (Note: This setting does NOT have any affect when using the JSON format.)

Connection Information

This will add information about the links, such as link type (100 Mbps/1 Gbps/10Gbps) and link usage as percentage of the total link capacity.  (Note: This setting does NOT have any affect when using the JSON format.)

Node Configuration

This is probably my favorite feature of this tool.  I like to select "CPU Load" or "Tempurature".  This colors the devices based on the values of those sensors.  For example, Red devices have High CPU or High Temp.  "Image Large" can be used to show your manager what devices are on your network.   


Those are all the settings I use.  What settings do you use?

Pages: 1 [2] 3 4 ... 10