Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - mgiammarco

Pages1
#1
General Support / How Netxms reads lldp data?
March 21, 2021, 06:50:55 PM
Hello,
reading documentation about network topology I see:  Topology data provided by CDP, LLDP, and NDP (SONMP)

But how Nextms reads it? I have a network with Mikrotik and fs switches. IS Nextxms able to get LLDP data using SNMP?

Do I need to do something?

Thanks,
Mario
#2
General Support / Re: Disable SYS_IF_DOWN for most nodes
January 06, 2021, 02:15:14 PM
I prefer to not see alarms in alarm browser but I am also interested in your idea.
I supposed this is a common thing to ask, like having different thresholds for different nodes.
#3
General Support / Disable SYS_IF_DOWN for most nodes
January 06, 2021, 01:09:31 PM
Hello,
I am learning NetXMS.
I have a big network with servers, routers, switches and pcs.
I receive too many SYS_IF_DOWN events.
I want to receive them only from servers, which is the best way to do it?
Thanks,
Mario
#4
General Support / Re: Syslog parser debugging is untestable
January 04, 2021, 07:56:32 AM
I solved the problem...
... if you have not the node with agent installed syslogparser receive log messages but it does not generate events!!!!

#5
General Support / Re: Syslog parser debugging is untestable
January 04, 2021, 07:50:04 AM
You gave me an idea.
I reproduced the exact error message and resent it using "logger" bash utility.
No alarms fired.
So I tried it in another host and this time it works!
It is incredible.
I have tcpdump, this one from host called "pvehpbig" works:

05:42:12.998464 IP 10.1.0.4.46393 > mon-netxms.syslog: SYSLOG user.notice, length: 48
        0x0000:  4500 004c 67fa 4000 4011 be5d 0a01 0004  E..Lg.@.@..]....
        0x0010:  0a01 0044 b539 0202 0038 064b 3c31 333e  ...D.9...8.K<13>
        0x0020:  4a61 6e20 2034 2030 363a 3434 3a31 3420  Jan..4.06:44:14.
        0x0030:  7076 6568 7062 6967 2065 7665 3470 7665  pvehpbig.eve4pve
        0x0040:  2d62 6172 633a 2070 726f 7661            -barc:.prova

This one from host called siippve1 does not work:

05:43:30.834995 IP 10.2.1.240.50964 > mon-netxms.syslog: SYSLOG user.notice, length: 48
        0x0000:  4500 004c 2b24 4000 3c11 fd46 0a02 01f0  E..L+$@.<..F....
        0x0010:  0a01 0044 c714 0202 0038 f1a6 3c31 333e  ...D.....8..<13>
        0x0020:  4a61 6e20 2034 2030 363a 3435 3a33 3220  Jan..4.06:45:32.
        0x0030:  7369 6970 7076 6531 2065 7665 3470 7665  siippve1.eve4pve
        0x0040:  2d62 6172 633a 2070 726f 7661            -barc:.prova

It seems the same message to me!
Mario
#6
General Support / Re: Syslog parser debugging is untestable
January 04, 2021, 12:43:48 AM
In syslog browser I find all log lines with "eve4pve-barc: %"
#7
General Support / Re: Syslog parser debugging is untestable
January 03, 2021, 09:53:31 PM
I also created a new event type for second rule.
#8
General Support / Syslog parser debugging is untestable
January 03, 2021, 06:59:51 PM
Hello,
I post in a separate message.
I have this syslog parser rule:

Code Select
<parser trace="1" name="ceph">
   <macros/>
   <rules>
      <rule name="backup in errore">
         <match repeatCount="0" repeatInterval="1">ERROR: Backup of (.*)</match>
         <event>GIA_BACKUP_ERROR</event>
         <agentAction action=""></agentAction>
      </rule>
      <rule name="eve4pve in errore">
         <match repeatCount="0" repeatInterval="1">eve4pve-barc: (.*)</match>
         <event>GIA_BACKUP_ERROR</event>
         <agentAction action=""></agentAction>
      </rule>
   </rules>
</parser>


First rule matches correctly. Second rule does not match but I am pretty sure that logline starts with "eve4-pve-barc:"
I have tried also with process=1.
Can you help me?
Thanks,
Mario
#9
General Support / Replacing custom solution (elasticsearch and riemann) with NetXMS
January 01, 2021, 07:00:09 PM
Hello,
I have (like many) a complex situation to monitor with information scattered in:
- syslog
- snmp
- graphite/collectd sensors

I was building a custom solution with elasticsearch, riemann, influxdb and so on
But looking for a snmp input solution I have found NetXMS and now I am rebuilding my monitoring on it.
But now I have several questions (yes I am reading and reading and reading docs):

- I am trying syslog parsing and my (simple) regular expression does not work. How can I debug it? Is there a way to try it on already received syslog messages? I cannot reproduce easily the syslog message to test
- when I receive a syslog line "backup finished" I must check if time is above 8.00 (slow backup), how can I do it?
- suppose I need to test that backup are executed, so I need to check that a syslog "finished backup" is present at least once a day, can I do it with repeatCount?

Thanks in advance for any help!
Mario
#10
General Support / Re: [newbie] Trying to use FREENAS mib
January 01, 2021, 05:46:29 PM
I discovered that it is easier to use mib explorer and build my dci
#11
General Support / [newbie] Trying to use FREENAS mib
December 31, 2020, 12:41:20 PM
Hello,
netxms is very cool, I am learning it!
I have added FREENAS-MIB.txt, compiled it.
Now I see that my freenas node is still marked as "generic".
So I add snmp.driver attribute "FREENAS" and I do "configuration full".
But the freenas node is still "generic"
What have I done wrong?
Thanks,
Mario
Pages1