Execute a script when a rule is used
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎06-01-2016 01:06 PM
Hello,
I'm working with NAC and so netlogin.
We have a need to have a switch plugged on another one without having to disable the netlogin but it looks like it's impossible.
We tried numerous setup, and the only one that is working, is to make the second switch linked with a trunk port.
As every port on the network has netlogin enabled by default, I would like to know if there is a way to disable it and make the edge port, a trunk port with all the VLANs on it.
I was wondering, is it possible to call a script and execute it when a specific rule / policy is used ?
This script would basically disable netlogin on that port and put all the VLANs, basically changing it from a end user type port, to a trunk type port.
I know we can do that by hand, through OneView and it works fine, but it's not very efficient in our setup.
Thanks
Gaspard
I'm working with NAC and so netlogin.
We have a need to have a switch plugged on another one without having to disable the netlogin but it looks like it's impossible.
We tried numerous setup, and the only one that is working, is to make the second switch linked with a trunk port.
As every port on the network has netlogin enabled by default, I would like to know if there is a way to disable it and make the edge port, a trunk port with all the VLANs on it.
I was wondering, is it possible to call a script and execute it when a specific rule / policy is used ?
This script would basically disable netlogin on that port and put all the VLANs, basically changing it from a end user type port, to a trunk type port.
I know we can do that by hand, through OneView and it works fine, but it's not very efficient in our setup.
Thanks
Gaspard
38 REPLIES 38
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎06-01-2016 04:57 PM
Ok, I worked on UPM today, and I think that making the netlogin disabled on that port then adding all the VLANs is pretty useful.
I have a question: on OneView, you can use scripts with $port which refers to the port, but how do you do that on an UPM script ?
$port won't be understood by the OS, and I don't know how I could get the port number to send the CLI command with the port number. Do you have an idea how I could do it ?
Now, your EDP technique, I see how you want to do it, and it looks pretty nice !
It would surely by useful to "cancel" the script when it's not a switch connected, but an end user device. Making an end user port become a trunk port would certainly be a problem haha
I have a question: on OneView, you can use scripts with $port which refers to the port, but how do you do that on an UPM script ?
$port won't be understood by the OS, and I don't know how I could get the port number to send the CLI command with the port number. Do you have an idea how I could do it ?
Now, your EDP technique, I see how you want to do it, and it looks pretty nice !
It would surely by useful to "cancel" the script when it's not a switch connected, but an end user device. Making an end user port become a trunk port would certainly be a problem haha
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎06-01-2016 04:57 PM
I have to check tomorrow with the team, I'll keep you updated 
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎06-01-2016 01:33 PM
Hi Gaspard,
are all these switches that you are using EXOS-Switches ?
/André
are all these switches that you are using EXOS-Switches ?
/André
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎06-01-2016 01:33 PM
Yes, all of them
