Jump to content

Recommended Posts

Posted (edited)

Difficult topic.... I've added the routing firewall now to the scan subnets. Still no result. Frustrating part is that i can SEE all traffic passing by in the firewall. It scans all IP's and even the IP from the iLO5 device. First ping, then SNMP and after all a port scan to check available ports. So you should expect the device in the list but it does not appear. 

So i've got two questions:

1. It came to my attention the "Found Devices" tab in the probe's Network Devices remains empty. (same at every probe) is this expected?
2. So my situation has at least 3 vlans, connected with a routing firewall. The probe in VLAN "12" is scanning VLAN 11,12 and 14. It is able to find devices in all VLAN's. All except the iLO5 and the WatchGuard Firewalls. The firewall traffic logs show me valid traffic and is allowing all ports.  Tried with both "Enable MAC Address Scanning" on and off. What can possibly be wrong?

I still guess it's because the SNMP scan index being found as 127.0.0.1 and because of the clear explanation from Darren, SNMP scan seems to be the only solution for this setup. 

 

 

UPDATE:

It all seems to be a problem with the devices. After taking a closer look, I found the problem. Now... I need the solution but it's not to solve by Automate. A walk on the iLO5 device shows 2 values when running a walk on 1.3.6.1.2.1.4.20.1.2. the first was 127.0.0.1 and the second was 172.30.30.10. strange part: the IP adres I walk on is 172.30.20.10. So it's a fault by the iLO snmp stack.

Same is for the watchguard clsutered firewall with LAG, BOVPN and Vlans. Walking 1.3.6.1.2.1.4.20.1.2 result in a lot of IP addresses from all interfaces, except the management interface because it's a Virtual IP address. Strangest part is that WatchGuard support tells me this is by design. The only solution is to put the probe in the same vlan/subnet as the VIP from the watchguard to be able to detect it. I'm still working with HPe for the iLO solution.

Edited by Duvak

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×