Re: [j-nsp] End host mapping tool
On 11/28/2011 02:15 AM, Dale Shaw wrote:
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I'm surprised Netdisco doesn't work. Does JunOS not support ipNetToMedia
in that configuration or something? We use a home-grown system that
polls that very table, and it works fine on our J-Series.
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] End host mapping tool
If you enable LLDP on all your switches/devices... and you have an all Juniper
network... you could write a JUNOScript that would do this... *and* do the OUI
lookup too.
Derick Winkworth
CCIE #15672 (RS, SP), JNCIE-M #721
http://blinking-network.blogspot.com
From: Chris Kawchuk juniperd...@gmail.com
To: Dale Shaw dale.shaw+j-...@gmail.com
Cc: juniper-nsp juniper-nsp@puck.nether.net
Sent: Sunday, November 27, 2011 8:40 PM
Subject: Re: [j-nsp] End host mapping tool
Intermapper does this as part of it's Layer 2 discovery...
- Scans a Subnet to find all IP pingable/snmp poll-able devices in a range.
- Gathers all the MAC addresses off your EX switches,
- Looks at the MAC forwarding Table on the EX to see which MAC is out which
physical port
- Reads any ARP entries on any routers/switches to do the IP-MAC
conversion/lookup.
- Then connects the IP devices it found to the correct physical port on the EX
switch visually on the map (also in a easy-to-copy table view)
Commercial software, but pretty nifty. It at least 'gets it right' 90ish% of
the time. =)
- Chris.
On 2011-11-28, at 1:15 PM, Dale Shaw wrote:
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I've personally tried the cacti 'MacTrack' plugin, as well as the
relevant module within Statseeker -- neither work as intended. In the
latter case, there is a product enhancement request logged but I'm
looking for something in the short term.
What are you using in your environment to do this?
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
[j-nsp] End host mapping tool
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I've personally tried the cacti 'MacTrack' plugin, as well as the
relevant module within Statseeker -- neither work as intended. In the
latter case, there is a product enhancement request logged but I'm
looking for something in the short term.
What are you using in your environment to do this?
cheers,
Dale
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] End host mapping tool
On Sun, Nov 27, 2011 at 6:15 PM, Dale Shaw dale.shaw+j-...@gmail.comwrote:
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I've personally tried the cacti 'MacTrack' plugin, as well as the
relevant module within Statseeker -- neither work as intended. In the
latter case, there is a product enhancement request logged but I'm
looking for something in the short term.
What are you using in your environment to do this?
Hrm... I've had good personal luck with NetDisco and MacTrack.
Another great system I've been enjoying recently is Observium (
http://www.observium.org/wiki/Main_Page ). It blows Cacti out of the water,
IMO.
Cheers,
jof
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] End host mapping tool
Intermapper does this as part of it's Layer 2 discovery...
- Scans a Subnet to find all IP pingable/snmp poll-able devices in a range.
- Gathers all the MAC addresses off your EX switches,
- Looks at the MAC forwarding Table on the EX to see which MAC is out which
physical port
- Reads any ARP entries on any routers/switches to do the IP-MAC
conversion/lookup.
- Then connects the IP devices it found to the correct physical port on the EX
switch visually on the map (also in a easy-to-copy table view)
Commercial software, but pretty nifty. It at least 'gets it right' 90ish% of
the time. =)
- Chris.
On 2011-11-28, at 1:15 PM, Dale Shaw wrote:
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I've personally tried the cacti 'MacTrack' plugin, as well as the
relevant module within Statseeker -- neither work as intended. In the
latter case, there is a product enhancement request logged but I'm
looking for something in the short term.
What are you using in your environment to do this?
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
Re: [j-nsp] End host mapping tool
Hi,
I've previously used a great free network discovery / management tool called
NeDi ( http://nedi.ch ) - supports multiple vendors, discovers network kit and
hosts on the network, integrates with Cacti - really rich feature set. Note
that I have not used it with Juniper kit, but it should support at least some
of it. It discovers the network based on snmp and lldp, starting from the
default gw - or you can add network kit manually.
Again it might be another tool that doesn't handle Juniper MIBs too well, but I
think it's worth a shot.
Also, if you use mostly DHCP and you have access / control over your DHCP
infrastructure, you can track your hosts using DHCP snooping and option 82 -
the forwarding kit will tell your DHCP server what each client is physically
connected to (device, interface). Even commercial IPAM systems often use ISC
dhcpd in the background so it should be possible to get this working even if
the ipam tool doesn't directly support this.
Regards,
Wojciech
-
Wojciech Owczarek
On 28 Nov 2011, at 02:15, Dale Shaw dale.shaw+j-...@gmail.com wrote:
Hi all,
Is anyone aware of open source or COTS software that provides MAC
address to switch port to IP address (and vice versa) mapping and
discovery? aka end user / end station tracking.
There are lots of them out there ('netdisco' being a popular open
source choice) but I haven't stumbled across one yet that properly
understands Juniper (JUNOS) bridging MIB(s) supported on EX-series
such that the MAC/L2 to IP/L3 resolution works properly.
I've personally tried the cacti 'MacTrack' plugin, as well as the
relevant module within Statseeker -- neither work as intended. In the
latter case, there is a product enhancement request logged but I'm
looking for something in the short term.
What are you using in your environment to do this?
cheers,
Dale
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
___
juniper-nsp mailing list juniper-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/juniper-nsp
