LMS 4.2 User tracking and router arp table

Similar Messages

• LMS Campus Manager User Tracking and LLDP

  I haven't been able to find a definitive answer on whether User Tracking can complete its
  discovery using LLDP (802.1AB) instead of CDP. My WAN provider only supports LLDP.
  If anyone has successfully used LLDP for this purpose I'd appreciate a reply - otherwise I'll have to head to the lab.
  Thank you....William

  No, LLDP is not supported by Campus Manager.  Only CDP is supported.

• LMS 4.2 user tracking

  Hello,
  I have a problem with LMS 4.2 user tracking.
  When I generate a report on all my network all mac address are ok but there is no Hostname/Ip address in the result, except for 2 equipments.
  the only difference between these 2 equipements and the rest of the network is that they are connected on a not routed vlan. All the other phones, computers are connected on a routed vlan.
  I have a Nexus 5k as core and 2960 as access. Routing between vlans is done with the Nexus
  My DNS server is ok and reachable
  Here is a screenshot of the report attached.   
  Thanks for your help

  Yes, the Nexus 5000 series has a few issues with LMS (and other things). Among them is the non-support of User Tracking. I'm told it's a MIB variable issue but it's been the case for some time now and remains so with the current LMS release.
  Here is the reference from the Supported Devices Table which states in part:
  The following features are not supported:
  User Tracking (Nexus 1K, 4K, 5K and 7K with FEX), VLAN Management, VRF Lite, LANE Management
  Configuration Deploy Protocols: HTTPS, SCP, SSH, RCP
  Configuration Fetch Protocols: HTTPS, SCP, SSH, RCP
  Software Distribution by: Advanced flow, Image, Remote Staging
  Software Repository Synchronization
  CiscoView - [1.3.6.1.4.1.9.12.3.1.3.840, 1.3.6.1.4.1.9.12.3.1.3.903, 1.3.6.1.4.1.9.12.3.1.3.907, 1.3.6.1.4.1.9.12.3.1.3.930]

• LMS 4.2 User Tracking not enabled

  Hi all,
  I have an issue on some switches located on remote sites.
  For all switches on the main site (where LMS is located) User tracking is enabled.
  For switches on the remote sites, user tracking seems not to be enabled.
  This means we can't run the reclaim ports reports on them.
  Discovery, Fault Discovery and Inventory are enabled,
  but User tracking and Data collection are not active on these remote swithes.
  How can this feature be enabled? Can't seem to find it.
  Thx in advance!

  Hi ,
  you need not to do anything on the switch..
  You need to check if for those devices "Data collection " is running fine or not
  I hope the device is managed in LMS , check the device here first "Admin > Collection Settings > User Tracking > Acquisition Action"
  If the device is missing then delete it and re-add in LMS and run the Data collection followed by user tracking acquisition.
  Are you using SNMPv2 or SNMPv3 on those devices ?
  Thanks-
  Afroz

• LMS 4.1 User Tracking

  Does someone know if or what is the best way to do a acquistion on ip address on devices that appear to be dead until ping before LMS4.1 reports onn them. For example we run acquistion on a branch we do not see 172.20.12.51, howver we ping it from my desktop and then run user tracking and then it shows up.

  One option when setting up discovery is to do ping sweep of the target subnet(s). It has pros and cons. Reference page 5 of the LMS 4.1 (not just) for Dummies Guide.
  OTOH if an device appears inactive until pinged, it must not be typically generating traffic to its default gateway (or that gateway is not managed by LMS) as that would be the normal source of information about the host (ip-mac correlation anyhow) in a default discovery type.
  Hope this helps.

• LMS 4.2 User Tracking for Avaya IP Handsets and Connected Devices

  I manage an environment that makes extensive use of Avaya IP phones and it's frustrating that this seems to limit the usefulness of the User Tracking application within LMS.
  We configure the switch (2960) ports connected to the handsets as dot1q trunks with the associated PC being connected to the switch built into the phone.
  Having done some forum research it seems that UT only adds an entry for a device connected on a trunk port if it is a Cisco IP phone, not anything else.  This is frustrating as it eliminates a large part of our network from being recorded in UT and is doubley frustrating since the PC connected to the switch on the phone also isn't recorded.
  Is there any way to get around this problem that anybody is aware of?  Thanks

  As long as you have a supported Cisco Layer 3 device in your LMS-management domain, you should be able to correlate the IP-MAC addresses in User Tracking (UT).
  UT support is not specifically listed for the ASA firewall - I'm not sure it will support that feature if it is the users' gateway.
  Useful links:
  UT explanation from the LMS Admin Guide
  Supported devices listing
  Hope this helps.

• LMS 2.6 User Tracking - Application error: URN_NOT_FOUND

  Hi,
  When I run a quick report in Campus Manager (User Tracking  > Reports) I get the following error appearing in a window:
  Application error: URN_NOT_FOUND :  urn "ogs_server_urn" : Not found !!.
  Could anybody help me?
  I attach the ctm_config.txt file
  thanks

  From which directory did you get this ctm_config.txt?  I need to see the ones under NMSROOT/MDC/tomcat/webapps/campus/WEB-INF/lib and NMSROOT/MDC/tomcat/webapps/cmapps/WEB-INF/lib.
  Since this is LMS 2.6, I also need to see the output of the pdshow command.

• LMS 4.2 User Tracking (Ani Server) issue

  Running LMS 4.2.
  I have an issue where Data Collection, UT Acquisition, and VRF Collection go from normal display (on Device Status Portal Page) to "loading". At this point user tracking stops functioning. Eventually a number of processes are reported as down. When trying to view items such as Discrepancies and Best Practice Deviations the message "ANIDbEngine process may be down"
  If all daemons are stopped and restarted everything runs fine again for a few days then the same thing happens again.
  I have attached some log files related to ani. These were collected while the problem is evident, prior to processes being restarted
  Any feedback would be appreciated

  Yes, the Nexus 5000 series has a few issues with LMS (and other things). Among them is the non-support of User Tracking. I'm told it's a MIB variable issue but it's been the case for some time now and remains so with the current LMS release.
  Here is the reference from the Supported Devices Table which states in part:
  The following features are not supported:
  User Tracking (Nexus 1K, 4K, 5K and 7K with FEX), VLAN Management, VRF Lite, LANE Management
  Configuration Deploy Protocols: HTTPS, SCP, SSH, RCP
  Configuration Fetch Protocols: HTTPS, SCP, SSH, RCP
  Software Distribution by: Advanced flow, Image, Remote Staging
  Software Repository Synchronization
  CiscoView - [1.3.6.1.4.1.9.12.3.1.3.840, 1.3.6.1.4.1.9.12.3.1.3.903, 1.3.6.1.4.1.9.12.3.1.3.907, 1.3.6.1.4.1.9.12.3.1.3.930]

• User Tracking and Observation

  Does Portal provide user tracking (observing/storing user behavior at the website) functionality out-of-box or is this a special add-on product?
  For user tracking capabilities do you need to stay in the Portal30 schema or can we create our own custom tables that would store user information and tune portal to read from those tables? What is the best practice?
  Thanks in advance,
  Jason

  Portal provides its own monitoring tools to portal administrators. If you want to create a personalized procedure, portal stores such tracking information in wwlog_activity_logs. Just select from it like:
  select userid, http_remote_address
  from portal30.wwlog_activity_logs
  where start_time >= some date
  and action in ('login');

• Verizon 9100EM Router - ARP Table No Longer Working

  I have the Westell 9100EM router from Verizon.  The router allows to set static DHCP connections using a function called ARP Table (under Advanced menu).  It actually used to work.  However, when I attempted to add a new static connection today, ARP Tbale was no longer working.  It shows connections that I set  up in the past but does not allow to add any new connection or even to change anything.  
  Specifically, the ARP Table now has only three columns (IP Address, Physical Address, and Device).  There used to be several additional columns (Lease Type, Connection Name, Status, and Action), which are now gone.  The "Action" column had links from where one could change the setting.  It also had the option "New Static Connection", which is now gone as well.
  Any idea what the reason could be?
  Thanks a lot.

  It seems to me that the router's firmware (OS if you will) was upgraded OR downgraged.
  If you are the original poster (OP) and your issue is solved, please remember to click the "Solution?" button so that others can more easily find it. If anyone has been helpful to you, please show your appreciation by clicking the "Kudos" button.

• Gratuitous ARPs do not populate the router ARP Table

  Hello,
  In order to debug an ARP problem in a Firewall cluster environment, I connected a one-armed router on the public VLAN of the firewall cluster, in order to observe the ARP cache behaviour during a switchover. I configured a loopback interface on this router and  a default route to this loopback interface to simulate a real router.
  When a switchover occurs between firewall cluster members, the active member sends Gratuitous ARPs for all NATed IP addresses. In my environment, I have 110 NATed addresses configured on the firewall.
  By launching a "debug arp" on the one armed router,  I clearly see all 110 gratuitous ARPs arriving on the router, but the ARP cache of the router is NOT populated with the 110 entries...
  Note  : The command is configured on the one armed router :
  Router(config)# ip arp gratuitous local
  What can be the problem ? Is there any condition for a router to accept Gratuitous ARPs ?
  Thank you for any help
  Yves

  Hi
  Gratuitous arp is used when a host wants to inform the switch that the mac-address has changed eg.
  You have a cluster which has redundant connections and an IP to mac-address mapping. If the active NIC fails the IP address is moved across to the standby NIC but the standby NIC has a different mac-address. So the cluster sends out a gratuitous arp which informs the switch of the new IP to mac-address mapping.
  The reason you might not want to allow gratuitous arp is that you might not want your switch updating it's arp table based on annoucements from devices on the LAN as you could very easily spoof mac-addresses and corrupt the arp cache.
  HTH
  Jon

• LMS 4.0 User Tracking Major Acquisition

  Any recommendations on how oftern to run a UT Major Acquisition?  Right now I'm scheduled every day, every 4 hours.  Is this too often?  My concern is that I may be putting too much traffic on the network allong with using too much CPU's from my equipment.

  It depends on a few things.  Remember, the main point of UT is to find users on the network.  It doesn't make sense to run UT acquisition when users are not connected to the network.
  Are you using Dynamic UT?  If so, you can greatly reduce the number of UT major acquisitions.
  Do you have lots of people coming in and out of the office throughout the day?  If so, you will want to either consider dynamic UT, or run more frequent acquisitions.
  Is the network infrastructure changing frequently?  If you have a lot of infrastructure changes like devices being added, trunks changing state, etc. you can limit the number of major acquistions and run minor acquisitions instead.
  By default, LMS runs major acquisitions at 10 am and 2 pm.  This is designed to get most users when they are in the office.  If business hours dictate other times, then adjust the schedule accordingly.
  Dynamic UT is a great way to supplement acquisitions and provide you near real time user updates on the network.  As soon as a user connects or leaves the network, UT can be informed.  Favoring dynamic UT and reducing acquisitions to one or two will greatly reduce the load on the network while giving you a chance to find "transient" users on the network.
  One advantage of doing major acquisitions (over dynamic UT) is that ARP entries are resolved to hostnames during acquisition.  If you go with dynamic UT, you will still want to run at least one major acquisition in the busy part of the day to make sure you get your users' hostnames showing up.
  For the questions of CPU and network load, are you seeing spikes during your acquisition periods?  Are these spikes causing user issues?  If the answer is yes, then you should definitely back off the schedule.  Either explore dynamic UT or just reduce acquisition to once or twice per day.

• LMS 4.1 user tracking does not pull ip address from hosts on switches

  New install discovered router and switches at same location with no issues. However when running an acquisition on those switches most fields are populated except the ip address of end host associated with port. Mac address, port speed, etc. but no ip address info on per port basis. Any ideas, using snmp v3 if that makes a difference.
  Sent from Cisco Technical Support iPad App

  Thanks for this.  This really clarified things in my head.  I didn't realize that you were not seeing MACs in UT.  This is a new feature of LMS 4.1.  UT will show those ports that are up/up even if the MAC address cannot be determined.  The reason the MAC address cannot be determined is that your switch code is too old.  You need 12.2(25)SEE or higher to support SNMPv3 contexts necessary to poll MAC addresses.  If you upgrade, then configure the following for each VLAN context (seen in "show snmp context") then you should see those MACs (then IPs):
  snmp-server group v3group v3 context vlan-10

• LMS 4.2, User Tracking Utility

                     Hello everyone;
  I had a new installation of LMS 4.2 and everythinks works fine but User trucking utility database has an empty host name / IP address. Any one knows the reason why this information is not polled ?
  Thanks
  Alina Andiraos

  Hi Alina,
  Seems that you have configured SNMP V3 on your devices. If this is the case, the command below will be required for every VLAN on every device running SNMP V3:
  snmp-server group group_name v3 auth context vlan-vlan_id
  example:
  snmp-server group LMS v3 auth context vlan-1
  snmp-server group LMS v3 auth context vlan-2
  Have a good day.
  Moath Rawasheh

• LMS 3.2 User Tracking 10GE trunk to HP BladeSystem c7000 w. Virtual Connect Flex10

  Hi All,
  situation:
  LMS 3.2
  Cat6509 w. 4 port 10 GE module connected with trunk to
  HP BladeSystem c7000 Enclosure
  with
  HP Virtual Connect Flex-10 10Gb Ethernet Module
  with
  #20 of ESX servers, Citrix
  UT settings: "config trunk for end host disc. = enable on this trunk."
  No show for connected MAC's of the server and end hosts (Citrix sessions).
  Note: this works well for a ESX based DL380 server connected with 1GB trunk to a C3750.
  Why is this not working for this Cat6509 configuration ?
  Is the 10 GE port supported in Campus manager?
  regards,

  Hi Joseph,
  Long time ago I started this discussion about UT support for portchannels. Right now we're on the level of LMS 4.2, do you know if there is any progress made with support for UT on portchannels?
  Kind regards
  Ad