Send netdisco-users mailing list submissions to
netdisco-users@lists.sourceforge.net
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.sourceforge.net/lists/listinfo/netdisco-users
or, via email, send a message with subject or body 'help' to
netdisco-users-requ...@lists.sourceforge.net
You can reach the person managing the list at
netdisco-users-ow...@lists.sourceforge.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of netdisco-users digest..."
Today's Topics:
1. Re: Reading ARP from Cisco FTD (Nikolaos Milas)
2. Re: Reading ARP from Cisco FTD (Nikolaos Milas)
--- Begin Message ---
Hello everybody,
I am trying the same on our FTD 2130 with NetDisco v2.60.10.
I have tried the indicated config (in FTD.pm):
device_auth:
- tag: sshftd
driver: cli
platform: FTD
only: '192.0.2.1'
username: oliver
password: letmein
enable_password: myenablepass
It does not seem to be working. I am connecting to the FTD LINA
interface with the required ssh credentials.
However, I note that in fact there is no enable_password in FTD cli any
more (as it was with ASAs), so I have left the above setting blank; my
config is as follows:
device_auth:
- tag: sshftd
driver: cli
platform: FTD
only: '10.10.10.100'
username: admin
password: myftdclipassword
enable_password:
Am I doing something wrong? Please advise.
Thanks in advance,
Nick
On 1/10/2022 12:06 π.μ., Oliver Gorwits wrote:
Hi all, 2.057006 is released with the FTD module in it. Many thanks!
On Fri, 30 Sept 2022 at 14:03, Christian Ramseyer
<ramse...@netnea.com> wrote:
Thanks Sebastian, I've added it (with some additional s/ASA/FTD/
in the comments)
Cheers
Christian
On 30.09.22 13:22, Sebastian Rösch wrote:
Hi there,
I´m wondering, if somebody already tried to arpnip ARP entries
from Cisco FTD? I´m talking about real Cisco FTD with FTD, not
the ASA image. In my case, ND basically finds 0 Arp entries.
Hardware is FTD 2130 with SW version v7.0.1.
I solved the issue by adapting the ASA.pm file. Could somebody
implent this as an additional file FTD.pm in a future ND version?
Workarround in ASA.pm:
/home/netdisco/perl5/lib/perl5/App/Netdisco/SSHCollector/Platform/ASA.pm
It works with following lines adapted:
new:
Define Platform
Line 1 package App::Netdisco::SSHCollector::Platform::FTD;
Line 5 App::Netdisco::SSHCollector::Platform::FTD
FTD shows > (bigger than) after login:
Line79 $prompt = qr/>\s*$/;
Not needed Firepower sends all entries at once:
Line 82 # $expect->send("terminal pager 2147483647\n");
Line 83 # ($pos, $error, $match, $before, $after) =
$expect->expect(5, -re, $prompt);
Name Command not available:
Line 85 # $expect->send("show names\n");
Line 86 # ($pos, $error, $match, $before, $after) =
$expect->expect(60, -re, $prompt);
Line 87 # my @names = split(m/\n/, $before);
Line 103 # foreach my $name (@names) {
Line 104 # if ($name =~
qr/name\s([0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3})\s([\w-]*)/x)
{
Line 105 # if ($ip eq $2) {
Line 106 # $ip = $1;
Line 107 # }
Line 108 # }
Line 109 # }
You can also use the attached FTD.pm File.
Best Regards,
Sebastian
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://sourceforge.net/p/netdisco/mailman/netdisco-users/
--
Christian Ramseyer, netnea ag
Network Management. Security. OpenSource.
https://www.netnea.com
Phone: +41 79 644 77 64
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://sourceforge.net/p/netdisco/mailman/netdisco-users/
_______________________________________________
Netdisco mailing list
netdisco-users@lists.sourceforge.net
https://sourceforge.net/p/netdisco/mailman/netdisco-users/
--- End Message ---
--- Begin Message ---
On 17/3/2023 12:10 π.μ., Christian Ramseyer wrote:
...
It's unfortunately very hard to help with these modules without having
access to a device. But you can run the process manually from the
terminal like so:
netdisco-do arpnip -DISQ -d <ip>
...
Hi Christian,
Thanks for your guidance.
I have tried:
$ ~/bin/netdisco-do arpnip -DISQ -d 10.10.10.100
...
[17325] 2023-03-17 09:48:52 info arpnip: error - Don't know device:
10.10.10.100
I guess this happens because our firewall is in fact an HA pair of two
FTD 2130 devices, each of which has a dedicated management IP Address
(10.10.10.100 and 10.10.10.101 respectively), but the management /
administration is carried out from another IP Address (10.10.10.102)
which belongs to the FMCv (Firepower Management Center - running as a
virtual machine on ESXi) and serves as the HA-Pair management address.
The pair behaves as a single Firewall device on the network (with
10.10.10.102), but cli (LINA) connection via ssh has to be done to each
particular device. In this case, 10.10.10.100 is the master (of the HA
pair).
Consequently, discover / snmpwalk works with the main management IP
(10.10.10.102) of the pair (the FMCv), but not with the IP Address of
each separate device.
Yet, we cannot use the cli over the main management IP Address
(10.10.10.102).
I assume that the same situation would most probably also occur if it
was a standalone FTD device, with FMCv running as a VM (at another IP
Address).
How do we resolve this situation in netdisco configuration?
Cheers,
Nick
--- End Message ---
_______________________________________________
Netdisco mailing list - Digest Mode
netdisco-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/netdisco-users
