NetXMS Support Forum

Hello!

Is it possible to add user-agent (best would be the possibility to customize it) to the request sent by portcheck or, maybe better, use netsvc subagent to send request when using network services?

Sending the request without user-agent will cause the reject  from firewall adopting OWASP rules (specifically in OWASP 2.2.9 the rule crs_21_protocol_anomalies: 960009 Request Missing a User Agent Header).

I currently prefer the possibility to have a network service because I can add services to "fake" nodes and get the info regarding network service status tied to the node (e.g. when sending "generic" email), If I add the request as a DCI I need to add it to a "real" node and I don't see this possibility of customization (info such as node name is tied to the node where the DCI is added).

Regards,
Marco

Hello!

I'm using LOGWATCH subagent to monitor events from Windows event log. In many occasions happened that a node got crazy and I received 20K+ mails informing about a repetitive event happened every second (especially during the night).
Since NetXMS doesn't provide an "in-house" mechanism to prevent this, thanks to Victor's suggestions, I found the following solutions that I'm reporting here to simplify life of users that had similar problems.

Basic concepts is this:

• Setup a counter to increase every time I receive an event I'm interested in
• Send standard email if the counter is below specific threshold
• Send warning email when the counter is equal to specific threshold
• Stop sending email when counter is above threshold without losing the received events
• Reset the counter after a specific time frame since the first event

Example, threshold 50, time frame 1h. This means that the system will send up to 50 emails in 1 hour, then after the 50th events (whithin 1 hour) will send an e-mail informing about the storm and will store events in the system without sending more emails. After 1 hour since the first event the counter will be reset (through a scheduled task)) and NetXMS will start again sending email for new events of that type.

Here attached you can find my sample scripts to use as base for further developments. Scripts are partially parametrized, feel free to extend and post here improvements

• AlarmCounterTools: script for checking threshold of counter, increase counters and other support tools
• ResetAlarmCounter: script for scheduled task to reset the counter after specified time frame (I don't know ho to pass parameter "eventCount" and use directly function from AlarmCounterTools)
• IncreaseAlarmCounter: script to increase the counter (I don't know ho to pass parameter "eventCount" and use directly function from AlarmCounterTools)
• Scheduled task sample
• EPP sample (3 rules)

Hi Victor,

Is the behavior of logwatch changed in version 2.1 when agent sends parameters to the server? As per my test seems that a new parameter is added at the end of the list (up to ver 2.0.8 I had 10 params sent and now I have 11, in my specific sample the new parameter added has value of '1').

Regards,
Marco

Hi,

I'm using agent authentication feature but there is something that I'm unable to understand.

I encoded 1234567890 using nxencpasswd tool and I got kc23yKtK4oq+OxuoSFDBCcKmCn7xK8e4wqYKfvErx7g= as value. I put 1234567890 in the agent parameter on console (see attachment agent_params_1) and kc23yKtK4oq+OxuoSFDBCcKmCn7xK8e4wqYKfvErx7g= in the agent configuration file (see attachments agent_config_1). Everything works fine, I'm able to communicate with the agent.

Then I did another test: I put the SHA1 value of 1234567890 (that is 01b307acba4f54f55aafc33bb06bbbf6ca803e9a) on both side, agent configuration file (see attachment agent_config_2) and agent parameter in the console (see attachment agent_params_2) and it works fine.

Finally, I did the third test putting directly 1234567890 in both places (agent config file and agent params, I avoided to attach this screenshot) and even in this case it works fine. So, seems that whatever I put works...

As per this post:

https://www.netxms.org/forum/configuration/agent-authentication/

I have to encrypt the password using nxencrpasswd to use the EncryptedSharedSecret! But as per my tests seems that it works even using it as it is

Please not that I have always restarted the agent after changing the shared secret.

Regards,
Marco

Hi,

I've managed to install reporting server to run in Windows environment on MSSQL Server 2016 and AzureSQL. If I try to execute the default report "Alarm Resolution Timer" what I get is this error in the report server log (attached to the post there is the complete log):


20:30:30.089 [quartzScheduler_Worker-1] ERROR o.h.id.enhanced.TableStructure - could not read a hi value
com.microsoft.sqlserver.jdbc.SQLServerException: Invalid object name 'hibernate_sequence'.
        at com.microsoft.sqlserver.jdbc.SQLServerException.makeFromDatabaseError(SQLServerException.java:216) ~[sqljdbc4-4.0.jar:na]
        at com.microsoft.sqlserver.jdbc.SQLServerStatement.getNextResult(SQLServerStatement.java:1515) ~[sqljdbc4-4.0.jar:na]
        at com.microsoft.sqlserver.jdbc.SQLServerPreparedStatement.doExecutePreparedStatement(SQLServerPreparedStatement.java:404) ~[sqljdbc4-4.0.jar:na]


The only similar error I found is this:

https://www.netxms.org/forum/installation/reporting-server-4315/msg20119/#msg20119

But no useful hints...

Any other suggestions on how to solve?

Regards,
Marco

As per subject, since Nano Server (https://technet.microsoft.com/en-us/windows-server-docs/get-started/getting-started-with-nano-server) doesn't support "Windows Installer" technology (only PowerShell), any plan to have an installer for that edition?

Regards,
Marco

Hello!

as per my test the command line switch /SUBAGENT=NETSVC is ignored. Am I using the wrong syntax or that subagent cannot be installed from command line? (I'm able to properly install the LOGWATCH subagent with the same syntax).

Regards,
Marco

Hi!

is the Y axis always starting from 0 (with positive values)? In auto scale mode seems to start always from zero, if you have small variation in the data plotted, it is difficult to evaluate the differences, line seems almost flat.

Is there a way to avoid this?

Regards,
Marco

I'm getting "EVENT LOG SUBSCRIBE FAILED" as return value for LogWatch.Parser.Status()

What can be the issue? I currently don't have access to the log of the agent 

Regards,
Marco

Are there any changes on RADIUS authentication starting from version 2.0.7? I'm no more able to validate users after upgrading from 2.0.5 to 2.0.7 

Regards,
Marco

As per subject, I have this problem when the agent is configured to listen from "Servers". If I configure it to listen from "MasterServers" everything works fine and I'm able to get the events.
Agents is sending properly the traps in both cases (I checked the log running manually with -D 6) but there is no track on the server when it is configured to listen for "Servers".

Tested on server version 2.0.6 and agent version 2.0.5.

Any suggestions?

Regards,
Marco

Hi,

I'm trying to monitor a set of agents from a connection that has a dynamic public IP (IP changes are out of my control). I know I can put name instead of IP as MasterServer in the agent configuration file. Question is: how frequently the agent will query the DNS to resolve the name to IP (name is updated properly on IP change through a dynamic DNS service)?

Regards,
Marco

I know this is something requested since long time:

https://dev.raden.solutions/issues/140

is there any plan to implement SMTP authentication (TLS) to allow NetXMS to send e-mail through authenticated mail servers?

Regards,
Marco

Hi,

In most of Windows installation NetXMS discover the "isatap.*" interface, since I'm not interested in monitoring those interfaces I manually put them into unmanaged state but doing this for hundreds nodes is a boring task.

Has anyone a suggestion on how to automatically set to unmanage some nodes interfaces that meets specific requirements in the name?

Regards,
Marco

Hi,

I choose to show last value in object overview for DCI with {instance} parameter, it works properly but sometimes it appears also the "generic" version of the DCI and not only the instances, see attached images (OK.PNG is as it should be and KO.PNG is the wrong one).

Am I doing something wrong?

Regards,
Marco

Hi,

as per subject, it is possible to use a Portech that is installed in a different zone than the NetXMS server and that is accessed through a proxy? I would like to send some "critical" notifications using that SMS gateway but I did not understand how to configure it.
As alternative, is there an english language web based service (like the one provided by https://websms.ru/) compatible with NetXMS?

Best regards,
Marco

I got an error during the upgrade process, I forced manually the upgrade of the DB through the nxdbmgr tool to see all the errors:

C:\Program Files\NetXMS\bin>nxdbmgr.exe upgrade -X
NetXMS Database Manager Version 2.0-M3 Build 8012

Upgrading database...
Upgrading from version 345 to 346
SQL query failed ([Microsoft][SQL Server Native Client 11.0][SQL Server]The object 'PK__cluster_sync_sub__173876EA' is dependent on column 'subnet_addr'.):
ALTER TABLE cluster_sync_subnets ALTER COLUMN subnet_addr varchar(48)
SQL query failed ([Microsoft][SQL Server Native Client 11.0][SQL Server]The object 'PK__vpn_connector_ne__22AA2996' is dependent on column 'ip_addr'.):
ALTER TABLE vpn_connector_networks ALTER COLUMN ip_addr varchar(48)
SQL query failed ([Microsoft][SQL Server Native Client 11.0][SQL Server]The object 'PK__address_lists__04E4BC85' is dependent on column 'addr1'.):
ALTER TABLE address_lists ALTER COLUMN addr1 varchar(48)
SQL query failed ([Microsoft][SQL Server Native Client 11.0][SQL Server]The object 'PK__address_lists__04E4BC85' is dependent on column 'addr2'.):
ALTER TABLE address_lists ALTER COLUMN addr2 varchar(48)
Upgrading from version 346 to 347
Upgrading from version 347 to 348
Upgrading from version 348 to 349
Upgrading from version 349 to 350
SQL query failed ([Microsoft][SQL Server Native Client 11.0][SQL Server]The data types text and varchar are incompatible in the not equal to operator.):
UPDATE object_properties SET comments = comments + char(13) + char(10) + (SELECT description FROM ap_common WHERE ap_common.id = object_properties.object_id) WHERE EXISTS (SELECT description FROM ap_common WHERE ap_common.id = object_properties.object_id AND description IS NOT NULL AND description <> '')
Upgrading from version 350 to 351
Database upgrade succeeded


I reverted to version M2. Any hints?

Engine is SQL Server 2012 (v. 11.0.5058) on a Windows Server 2012 R2

Best regards,
Marco

Hi!

I'm in trouble with one of my nodes. When I try to  poll for the configuration I always get time out:


[07.12.2014 17:43:10] **** Poll request sent to server ****
[07.12.2014 17:43:10] Poll request accepted
[07.12.2014 17:43:10] Checking node's capabilities...
[07.12.2014 17:43:10] Starting configuration poll for node VM-REDQUEEN
[07.12.2014 17:43:10]    Checking NetXMS agent...
[07.12.2014 17:43:10]    NetXMS native agent is active
[07.12.2014 17:43:11]    NetXMS agent version changed to 1.2.17
[07.12.2014 17:43:11]    Platform name changed to windows-x64
[07.12.2014 17:43:11]    System description changed to Windows VM-REDQUEEN 5.2.3790 Windows Server 2003 R2 Build 3790 Service Pack 2 AMD-64
[07.12.2014 17:43:11]    Reading list of available Windows Performance Counters...
[07.12.2014 17:43:28]    75 counters read
[07.12.2014 17:43:28]    Checking SNMP...
[07.12.2014 17:43:59] POLL ERROR: Request timed out[07.12.2014 17:43:59] **** Poll failed ****


It is in the same network of other nodes (same agent version, same OS, same agent configuration file) that are working properly. Any hints on what to check?

Best regards,
Marco

Hi,

I would like to add some DCI counters, it has been a quite simple task... the problem is that now I get always an empty parameters dialog when origin is from NetXMS Agent. Seems that since ver. 1.2.17 there is no more possibility to select them (see attached snapshot).

Any hint?

Marco

Hi,

I have a lot of "Communication session broken" warning messages in the event log of one of my servers. It seems a quite old problems that should be already solved:

https://www.netxms.org/forum/general-support/netxms-agent-win32-agent-generating-event-saying-communication-session-broken/msg3662/#msg3662

Am I doing something wrong to generate the warning?

Best regards,
Marco