This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Extreme Networks
- Community List
- Network Management & Authentication
- ExtremeCloud IQ- Site Engine Management Center
- RE: Netsight email alert for core device not popul...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Netsight email alert for core device not populating device name or IP
Netsight email alert for core device not populating device name or IP
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
09-22-2015 05:38 PM
Hello,
We are running netsight 6.3 to monitor our extreme summit stacks. We have various alarms setup, including invalid login attempt. This is the example I would like to use for my post.
TRAP (ExtremeNetworks extremeInvalidLoginAttempt .1.3.6.1.4.1.1916.0.9 Notice ).
This alarm for our IDF stacks (L2 devices), seems to work pretty well. But for our core stacks (L3 devices), this alert generates in the netsight console; it even sends out an email, but doesn't populate the device name nor IP address in that email. I notice in the Netsight Console, in the bottom part of the screen, I do see the error output, the source (displays as an IP address) and information (shows invalid login attempt). I'm stumped as to how to get this to populate in the email. When for idf stacks it shows up as expected (IP and device name), but for core stacks the information in the email is missing any info that would help identify the stack (IP / name)
(examples below).
As a test for our core devices, I added both the WAN interface and management interface IPs both to netsight to see if that would help. It didn't seem to make a difference in getting the email to populate properly. It shows nothing for IP and nothing for device name.
In the console:
Interestingly enough, for the emails that populate properly (showing IP and name) the source for them shows up the device *name*
But for the emails that don't populate properly, the alerts that aren't populating properly (do not show name nor ip for the email alert) the source for them shows up as the WAN IP interface (not the name). Correlation?
=============
Example of IDF Email Alert: shows the device name just dandy.
============
Device: (IP address shows here - good)
Severity: Error
Message: Invalid Login Attempt sysUpTime.0 = Timeticks: (2245960000) 259 days, 22:46:40.00 sysDescr.0 = STRING: ExtremeXOS (Stack) version 15.3.1.4 v1531b4-patch1-44 by release-manager on Fri Sep 5 16:29:36 EDT 2014
Device Name: IDF1_MainOffice
Nickname: IDF1_MainOffice
===================
Example of Core stack Email Alert: - see how the device name is missing and it has no IP Address.
==================
Device: (no IP shows here at all)Severity: Error
Message: Invalid Login Attempt sysUpTime.0 = Timeticks: (2210800500) 255 days, 21:06:45.00 sysDescr.0 = STRING: ExtremeXOS (Stack) version 15.3.1.4 v1531b4-patch1-44 by release-manager on Fri Sep 5 16:29:36 EDT 2014
Device Name: (no name shows here at all)
Nickname: (no name here either)
I guess I can correlate getting an email then looking in the console, but I'm wondering is there a way to get this information to actually populate in the email itself?
Thanks in advance,
Sarah
We are running netsight 6.3 to monitor our extreme summit stacks. We have various alarms setup, including invalid login attempt. This is the example I would like to use for my post.
TRAP (ExtremeNetworks extremeInvalidLoginAttempt .1.3.6.1.4.1.1916.0.9 Notice ).
This alarm for our IDF stacks (L2 devices), seems to work pretty well. But for our core stacks (L3 devices), this alert generates in the netsight console; it even sends out an email, but doesn't populate the device name nor IP address in that email. I notice in the Netsight Console, in the bottom part of the screen, I do see the error output, the source (displays as an IP address) and information (shows invalid login attempt). I'm stumped as to how to get this to populate in the email. When for idf stacks it shows up as expected (IP and device name), but for core stacks the information in the email is missing any info that would help identify the stack (IP / name)
(examples below).
As a test for our core devices, I added both the WAN interface and management interface IPs both to netsight to see if that would help. It didn't seem to make a difference in getting the email to populate properly. It shows nothing for IP and nothing for device name.
In the console:
Interestingly enough, for the emails that populate properly (showing IP and name) the source for them shows up the device *name*
But for the emails that don't populate properly, the alerts that aren't populating properly (do not show name nor ip for the email alert) the source for them shows up as the WAN IP interface (not the name). Correlation?
=============
Example of IDF Email Alert: shows the device name just dandy.
============
Device: (IP address shows here - good)
Severity: Error
Message: Invalid Login Attempt sysUpTime.0 = Timeticks: (2245960000) 259 days, 22:46:40.00 sysDescr.0 = STRING: ExtremeXOS (Stack) version 15.3.1.4 v1531b4-patch1-44 by release-manager on Fri Sep 5 16:29:36 EDT 2014
Device Name: IDF1_MainOffice
Nickname: IDF1_MainOffice
===================
Example of Core stack Email Alert: - see how the device name is missing and it has no IP Address.
==================
Device: (no IP shows here at all)Severity: Error
Message: Invalid Login Attempt sysUpTime.0 = Timeticks: (2210800500) 255 days, 21:06:45.00 sysDescr.0 = STRING: ExtremeXOS (Stack) version 15.3.1.4 v1531b4-patch1-44 by release-manager on Fri Sep 5 16:29:36 EDT 2014
Device Name: (no name shows here at all)
Nickname: (no name here either)
I guess I can correlate getting an email then looking in the console, but I'm wondering is there a way to get this information to actually populate in the email itself?
Thanks in advance,
Sarah
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
11-10-2015 07:49 PM
yes thank you. extreme helped me with this command, so the traps are sent with the ip address that I have in netsight.
Thank you for the follow up.
configure snmpv3 add target-addr "TVa6546c4TV1techoff" param "TV1techoff" ipaddress x.x.x.x transport-port 162 from (ip of management interace) tag-list "TVTrapTag"
Thank you for the follow up.
configure snmpv3 add target-addr "TVa6546c4TV1techoff" param "TV1techoff" ipaddress x.x.x.x transport-port 162 from (ip of management interace) tag-list "TVTrapTag"
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
11-10-2015 07:46 PM
Sarah,
Are you all set with this request or do you need further assistance?
Are you all set with this request or do you need further assistance?
Doug Hyde
Director, Technical Support / Extreme Networks
Director, Technical Support / Extreme Networks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
09-23-2015 04:30 PM
We have X670V-48x, and X650-24x(SS)
I get the same results on both types
I get the same results on both types
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
09-22-2015 06:54 PM
What switch model is the core switch ?
