HI,
Does any one know how to setup Sonicwall firewall configuration backups in .exp format via NCM?
Regards,
Qasim
↧
Sonicwall configuration backups
↧
RegEx case sensitive
I am trying to build a rule with an and/or block using the Advanced Config Search option but need the search to ignore case.
for example i need the search to find "interface" as well as "Interface"
How do i do this?
↧
↧
Backup config from Huawei Router an Switch
Hello,
I need for assistance to load template that allows me to backup the Huawei device configuration, routers and switches.
The routers I have are of the series AR 28XX series, switches are s2000.
Thank you.
Regards.
Fernando Veloso.
↧
Connectivity issues, discarding configuration (or configuration is too short) NCM 7.1
I've captured the configs on about 500 routers, but on about 10 of them, I get the following error in config download every time:
Connectivity issues, discarding configuration (or configuration is too short)
How do I troubleshoot this? I can login manually, and do a show configuration without a problem.
All routers should have identical configuration and IOS version.
↧
NCM comparison criteria being disabled
Every time I run the config wizard, which is a lot since our server isn't working well, it disables some of my comparison criteria and messes up the config compare scripts. Does anyone know how to stop the wizard from overwriting our settings?
↧
↧
Ignoring lines When Comparing files in NCM
Question on ignoring lines when comparing files in NCM. I have read through several documents and the NCM admin guide and thought I had this understood but apparently I am way off. I am trying to ignore lines in a Cisco switch configs simply because it is not necessary to evaluate them. As an example I want to ignore these 2 lines...
! Last configuration change
! NVRAM config last
I found 2 rules int the NCM Compare Criteria that were not enabled that should do the trick. These rules were not enabled so I enabled them. Then when comparing 2 files I see the line that I do not want to compare are still being compared...
The criteria I see on these 2 rules is ^ ! Last The way I understand that is the ^ means start at the beginning of the line and it should match ! Last plus anything that follows until the end of the line. I have tried adding .* or even just a * but the lines is still not ignored...
any help on what I am not understanding would be appreciated or where to find some additional documentation.
↧
NCM & RegEx.... What am I doing wrong????
I am trying to compare the startup config and the running config from a Cisco 2960. I am trying to get NCM to ignore the crypto section of the 2 configs because they will never match. So far I have had no luck. NCM always compares the crypto sections and shows there is a difference.... Screen shot below....
I have tried several variations of the ignore RegEx expressions and they have not worked. Finally I went to a learn and test RegEx site because I can drag and drop my config file in the test area and create my own RegEx expression. I have a two working RegEx expressions that I created on this site. Both work just fine in the test area but do not work in NCM. My expressions are below.... This is the link to the RegEx learn and test site... http://www.regexr.com/
^crypto pki((.|\n)*)cert.*\s
^crypto pki((.|\n)*)quit.*\s
Basically the expression says Where the characters 'crypto pki' are the first characters on the line capture all line between that and the characters 'cert' for the startup config or 'quit' for the running config. This includes all whitespace characters.
My assumption here is that multiline is enabled with the NCM RegEx engine.... maybe its not....
Any Ideas or suggestions on what I am doing wrong here?
↧
SonicWALL NSA Device Template
We are using SonicWALL NSA 5.9 SonicOS-1.3.6.1.4.1.8741.1.ConfigMgmt-Commands template to get SonicWall devices config information. But we are just able to get Running config. Can anyone help me how we can get Startup config ?
<Configuration-Management Device="SonicWALL NSA SonicOS v5.9" SystemOID=" 1.3.6.1.4.1.8741.1">
<Commands>
<Command Name="RESET" Value="configure${CRLF}no cli pager session${CRLF}"/>
<Command Name="Startup" Value="pending-config"/>
<Command Name="Running" Value="current-config"/>
<Command Name="DownloadConfig" Value="show ${ConfigType}"/>
<Command Name="Version" Value="show status"/>
</Commands>
</Configuration-Management>
Thanks,
Maalik
↧
NCM - Config Change Templates - Can you call a Script?
Within a Configuration Change Template is it possible to call a Configuration script defined under "Configs > Configuration Management > Script Management"?
↧
↧
NCM timing out on Cisco file transfer
Hello,
I'm attempting to get NCM to copy firmware images to Cisco switches, but it is timing out during the copy. The template is attached, and the trace is attached (initial SCP command removed for security reasons).
The SCP server is remote to the site, and the switch can reach it. The file starts copying, but the template times out and NCM disconnects from the switch prematurely. Because the switch doesn't return to a prompt after the file copy begins, it never begins the Delay command.
Cisco switches use a series of exclamation marks to delineate chunks on the file transfer, and this switch shows one every 500KB. Based on the transfer speed, this is about once every 27 seconds, and as the global SSH prompt timeout is 15 seconds I believe this is my issue.
Is there a way to modify the SSH prompt timeout for the duration of a template, or trigger the wait command with the copy command? I would like to avoid modifying the global timeout if possible, as that will affect the other non-Cisco devices.
Thanks!
↧
Multi context firewall: is it possible to back up each context and also unobfuscated pre shared keys when more system:running-config only works in certain contexts?
As above, is it possible to back up three contexts in a multi context firewall whilst also including unobfuscated pre shared keys for VPN termination? Heres the template I'm using...
<!--SolarWinds Network Management Tools-->
<!--Copyright 2007 SolarWinds.Net All rights reserved-->
<!--Modified 12/02/2011-->
<Configuration-Management Device="Cisco FWSM Context 10.xxx.xxx.xxx" SystemOID=" 1.3.6.1.4.1.9.1.674">
<Commands>
<Command Name="RESET" Value="terminal width 0${CRLF}terminal length 0${CRLF}changeto context ${ConfigType}" RegEx="#" />
<Command Name="Context_System" Value="system"/>
<Command Name="Context_Admin" Value="admin"/>
<Command Name="Context_TEST" Value="Test"/>
<Command Name="DownloadConfig" Value="more system:running"/>
<Command Name="Reboot" Value="reload noconfirm"/>
<Command Name="EnterConfigMode" Value="config terminal"/>
<Command Name="ExitConfigMode" Value="quit"/>
<Command Name="Startup" Value="show startup"/>
<Command Name="Running" Value="running"/>
<Command Name="UploadConfig" Value="${EnterConfigMode}${CRLF}${ConfigText}${CRLF}${ExitConfigMode}"/>
<Command Name="DownloadConfigIndirect" Value="write net ${StorageAddress}:/${StorageFilename}"/>
<Command Name="UploadConfigIndirect"/>
<Command Name="EraseConfig" Value="write erase${CRLF}Yes"/>
<Command Name="SaveConfig" Value="write memory"/>
<Command Name="Version" Value="show version"/>
</Commands>
</Configuration-Management>
So on this firewall I'd like to back up System, Admin, and another context called Test
The problem seems to lie within this line of config which only runs in system context...
<Command Name="DownloadConfig" Value="more system:running"/>
the same command is unrecognised in both admin and Test contexts. I've tried adding two DownloadConfig command lines to the template but I got errors. It would be great if you could do that and Solarwinds would cycle through the available DownloadConfig commands until it gets a hit.
So if I want to run one job that'll download each context and also give me unobfuscated preshared keys this is impossible?
I was thinking to run seperate jobs, but I can only point a device at one device template?
Any one any ideas of how I could get around this?
↧
How can I change the sample interval in the latency and packet loss graph??
I want to generate a latency and packet loss chart using a 1 minute sampling interval. Currently the lowest option I have is for 15 minutes. If a monitored device stops responding to pings I need to be able to determine the downtime without rounding to 15 minutes....
↧
Create limitation for an admin account
hello
We have some solarwinds modules. I want delegate accounts to be admin for related module. for example I want for a user set "Allow Administrator Rights" to "yes" but he can not work with NCM module. in other words he is admin of solarwinds except NCM module. it can be done by setting NCM role to "None No access to NCM functionality." from user accont management, but beacuse of his administratin rights he can edit the setting and set "Administrator Unlimited access to NCM functionality." for NCM role. is there a way to specify every modules admin?
↧
↧
ACS is eventually being discontinued - what are people planning on using for device management, ISE / tac_plus / etc?
At my current job we have an older version of Cisco ACS that is going EOL soon. We've started looking into upgrading to the latest Cisco ACS server, which is version 5.5 I hear. Not only is it very expensive to go above 500 devices, but Cisco is telling us that this is the very last version of Cisco ACS that will ever be put out and that they want everyone to move to ISE instead. I'm guessing that will be several years in the future, but we're hesitant at paying so much money for what could be an eventual dead-end for us.
I find it a bit funny, especially since they don't even have an ISE server that does TACACS yet, and for those of us that want the ability to do things like Shell Command Authorization Sets, that's pretty critical since Radius can't do that to my knowledge. I've noticed there are a couple TACACS alternatives out there, like tac_plus, tacacs.net and clearbox. I'm just curious what people are planning on doing on their network, or if they are already moved away from Cisco's product, what are they using?
I'd really love to see Solarwinds put out a product geared at handling device management like this, to work in concert with NCM. And preferably not stick it to us with a huge pricetag like Cisco is with both the newer ACS servers and ISE. Wonder if there are any plans for that? Would be a nice addition to their current product line.
↧
NCM audit report for single user
Does anyone know how to create an NCM audit report for a single user? I guess I have to go in and use SQL commands because I cannot find a way to do it in the web-report canned section. If it's SQL, where can I get a list of the fields/parameters I can request data on?
↧
NCM 7.4 dashboard comparison for backed up glance report.
Recently upgraded from NCM <cough> v7.0.2 / 7.1.1 to a fresh install v7.4
Managers/Security Governance like the quick eyeball of the below view due to the potential risk exposed of devices not being backed up.
Is it a UX misfortune in the WebUI where the report is stacked rather than layered, or have I reconfigured a tickbox somewhere in NCM as a new option?
Showing the new view in their dashboard I know I'm going to get the 'why is there such a huge gap' whereas the gap should only be a blue strip of 7 nodes above the green, but still report 95 nodes in the below example.
| NCM 7.1.1 | NCM 7.4 |
|---|---|
|  |
↧
F5 and NCM backup
Hi All
Please help
My aim is to back up configs on our GTM/LTM F5. I have pretty much used all the templates I can see on this forum e.e F5 BIG IP-1.3.6.1.4.1.3375.ConfigMgmt-Commands and I get the error
.Validation Failed: An error occurred during script parsing. Position: Line 1, Character 3 Error message: mismatched character '-' expecting '=' Please check script syntax.
We are running Licensed Version 11.4.1 on the F5. I am not too familiar with F5. I do the following
......(tmos) # show running-config
Display all 235 items? (y/n) y
I have used the template assistant and have entered "y" in the RegEx, which i think it does accept but then comes back with "Unable to get Config Text". I have looked at the templates on here and really not too clear about some of the lines e.g. " <Command Name="EraseConfig" Value="write erase${CRLF}Yes"/>". Luckily it never went past the error above. I did remove the lines i did not think i will need and now left with the below:
<!--SolarWinds Network Management Tools-->
<!--Copyright 2007 SolarWinds.Net All rights reserved-->
<!--Modified 12/02/2011-->
<Configuration-Management Device="BIGIP F5 LTM" SystemOID=" 1.3.6.1.4.1.3375.2.1.3.4">
<Commands>
<Command Name="DownloadConfig" Value="show running-config all-properties"/>
<Command Name="PostCommand" Value="${ENTER}"/>
<Command Name="PostCommand" Value="y"/>
</Commands>
</Configuration-Management>
Not sure if "PostCommand" is valid.
When I log in I get this as my prompt
name@(device)(cfg-sync In Sync)(Active)(/Common)(tmos)#
Please help. I just need to back up the configs on the F5 like I do for the Cisco.
Thanks
↧
↧
There was no endpoint listening
Can anyone help with the below message. Server has been running for 2 years, got rebooted and now it doesn't work. I opened a case with SW but I am getting replies outside my timezone so it's on response a day. I need this working again.
Website configuration failed:
• Web Request for /Orion/Login.aspx failed - The underlying connection was closed: An unexpected error occurred on a receive.
• Connection to SolarWinds® Information Service did not succeed.
Last error: There was no endpoint listening at net.tcp://hgsclpnsvm05-01:17777/SolarWinds/InformationService/Orion/certificate that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details.
Services configuration failed:
• Error starting Service (SWInfoServiceSvc), Cannot start service SWInfoServiceSvc on computer '.'.
• Error starting Service (SWInfoServiceSvcV3), Cannot start service SWInfoServiceSvcV3 on computer '.'.
• Error starting Service (SWCollectorPollingControllerSvc), Cannot start service SWCollectorPollingControllerSvc on computer '.'.
• Error starting Service (SWCollectorDataProcessorSvc), Cannot start service SWCollectorDataProcessorSvc on computer '.'.
↧
Log user who actioned change
Dear All,
Is it possible to log which user within NCM performed a given change (And the associated IOS commands used in that particular job) ? We are evaluating the product to replace our current LMS solution and this is a very important feature. Basicly what we need is that if user X actioned a job within NCM to change the host name on device X, a log entry holding the username, device and commands executed are written to the SQL database (or a SYSLOG server). This is required for auditing purposes. We currently have similar functionality via Cisco ACS, which records entries via tacacs & radius. Since NCM uses the service account to push configurations changes we require a alternative logging feature.
↧
Everything DISA STIGs for your Network
Introduction
This page will be the Main Page for all DISA STIG information provided by CourtesyIT. The intent is to follow this page to alert you to new content and discussions about being DISA STIG Compliant. Please feel free to message me if you would like any STIG\Vendors packages developed that are not listed here.
This page is not endorsed by DISA or Solarwinds, but merely one interpretation of the requirements. Community involvement is encouraged.
Directory
1. Getting Started
This link will be to discuss ways to get started and how this process and capability can work for you.
How to Use the Compliance Feature in Solarwinds.pdf
How to Create a Policy Report.pdf
2. How to Create a STIG Dashboard and View
This link will provide a document for you to download and build a Dashboard to show your success with the NCM Compliance feature.
3. Reports by Vendor
These links will be based on Vendor STIGs. For best results, please download these reports through NCM. Navigate via Configs Tab > Compliance > Manage Policy Reports > Shared on Thwack Tab.
Juniper Networks
Dell
Palo Alto
4. RAW DATA
This text document is the raw data for all the rules. This document can be used as a policy or baseline for all rules in the event submission is required for the coding and configuration of you Compliance Solution.
5. DISA STIG Matrix
This document is a matrix to validate which rules are applied to which type of functional device.
6. Other Customization's
This link is a random sampling of various customization's I found through some Thwackers Content pages.
How to do various customizations with your Solarwinds
.
.
.
.Living Document.
↧