I have an interesting problem at one of my customers. They are using LMS 4.0.1, but they have a problem with user tracking with SNMPv3. They using a very simple SNMP configuration, wich is the following:
access-list 80 permit x.x.x.x snmp-server group SNMPV3GROUP v3 priv write SNMPV3_VIEW access 80 snmp-server view SNMPV3_VIEW iso included snmp-server view SNMPV3_VIEW mib-2 included snmp-server view SNMPV3_VIEW cisco included
User name: SNMPV3USER Engine ID: 8000000903000014F2C38169 storage-type: nonvolatile active access-list: 80 Authentication Protocol: SHA Privacy Protocol: AES128 Group-name: SNMPV3GROUP
snmp-server group SNMPV3GROUP v3 context vlan-X
Now they have UT working well for their Ctalyst 4500 switches, and the half of the 6500s (They have 2950 switches as well, but for those UT with SNMPv3 is unsupported). So the problem is the following: they have 12 6500 switches, with the same IOS version (10 pieces of WS-C6506-E + SUP720-3B IOS: 12.2(18)SXF17 (IP Services), 2 pieces of WS-C6506 + SUP720-BASE IOS: 12.2(18)SXF17 (IP Services)). They have identical SNMP configuration on both devices. Based on the logs from LMS it seems that on the problematic switches for some reason LMS identifies the switchports as routed:
==============Checking for Device==============
10.255.255.11 : INFO : The switch has been discovered by ANI Server.
IP : 10.255.255.11
Details :Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-IPSERVICESK9-M), Version 12.2(18)SXF17, RELEASE SOFTWARE (fc1)
Thanks for the answer. That was the first problem, wich I already fixed with the customer. As you can see in my post, SNMP context are configured, both 6500 are configured in the same manner, but half of them produces UT data, the other half does not.
No, theres is no MAC addresses in the UT report of the problematic switches at all. Btw on the switch itself with sh mac address-table command there are the MACs, but as I wrote in my first post, for some reason the LMS thinks a switchport is being a routed port. But unable to find any reason what can be the problem.
Basic network connectivity must be good on all switches, because it is a working network, so I am sure that all the IP addressing, DFGW settings should be good.
[toc:faq]The ProblemOn traditional switches whenever we have a trunk
interface we use the VLAN tag to demultiplex the VLANs. The switch needs
to determine which MAC Address table to look in for a forwarding
decision. To do this we require the switch to do...
[toc:faq]Introduction:Netdr is a tool available on a RSP720, Sup720 or
Sup32 that allows one to capture packets on the RP or SP inband. The
netdr command can be used to capture both Tx and Rx packets in the
software switching path. This is not a substitut...
IntroductionOSPF, being a link-state protocol, allows for every router
in the network to know of every link and OSPF speaker in the entire
network. From this picture each router independently runs the Shortest
Path First (SPF) algorithm to determine the b...