search

netdisco / snmp-info

Other
38 stars 32 forks source link

Netdisco - Not matching duplicate devices? #373

Closed MickG72 closed 3 years ago

MickG72 commented 5 years ago

Hi All,

I have a 50+ palo alto devices , and they all have multiple ip addresses. When discovery is run, netdisco finds both addresses and adds them into netdisco has separate devices. Looking at the devices in inventory, they both have the same serial number, just different IP's I have deleted one of duplicates, but it re-appears in the next scan.

Not sure what details you require, to help resolved this ?

image

rc9000 commented 5 years ago

This is how it's supposed to work:

So it looks like step two does not work on these Palo Altos. Can you run 

netdisco-do discover -DI -d <your ip>

and check if your output produces something like

$ netdisco-do discover -DI -d 10.12.60.62
... (lots of output snipped)
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - aliased as 10.12.136.134
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - aliased as 10.12.61.6
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - aliased as 10.12.60.126
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - aliased as 10.12.215.225
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - aliased as 10.12.60.62
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] device - removed 5 aliases
[6899] 2019-10-13 23:10:46 debug  [10.12.60.62] aliases - added 5 new aliases
...

If not, post the output here and maybe we can see what goes wrong.

MickG72 commented 5 years ago

Hi, I have run the debug as requested: netdisco@netdisco:~$ netdisco-do discover -DI -d 10.50.31.245 [45213] 2019-10-13 23:25:57 info App::Netdisco version 2.044002 loaded. [45213] 2019-10-13 23:25:58 info discover: [10.50.31.245] started at Mon Oct 14 10:25:58 2019 [45213] 2019-10-13 23:25:58 debug discover: running with timeout 600s [45213] 2019-10-13 23:25:58 debug => running workers for phase: check [45213] 2019-10-13 23:25:58 debug -> run worker check/base/0 [45213] 2019-10-13 23:25:58 debug Discover is able to run. [45213] 2019-10-13 23:25:58 debug => running workers for phase: early [45213] 2019-10-13 23:25:58 debug -> run worker early/properties/100 [45213] 2019-10-13 23:25:58 debug snmp reader cache warm: [10.50.31.245] [45213] 2019-10-13 23:25:58 debug [10.50.31.245:161] try_connect with ver: 2, class: SNMP::Info::Layer3::PaloAlto, comm: SNMP::Info::_global uptime : DISMAN-EVENT-MIB::sysUpTimeInstance : .1.3.6.1.2.1.1.3.0 SNMP::Info::_global description : SNMPv2-MIB::sysDescr.0 : .1.3.6.1.2.1.1.1.0 SNMP::Info::_global id : SNMPv2-MIB::sysObjectID.0 : .1.3.6.1.2.1.1.2.0 SNMP::Info 3.68 SNMP::Info::device_type() layers:01001100 id:25461 sysDescr:"Palo Alto Networks VM-Series firewall" SNMP::Info::_validate_autoload_method(vtp_d_name) Unable to resolve method. SNMP::Info::_global name : SNMPv2-MIB::sysName.0 : .1.3.6.1.2.1.1.5.0 SNMP::Info::_global ports : IF-MIB::ifNumber.0 : .1.3.6.1.2.1.2.1.0 SNMP::Info::_global mac : IF-MIB::ifPhysAddress.1 : .1.3.6.1.2.1.2.2.1.6.1 SNMP::Info::_validate_autoload_method(ps1_type) Unable to resolve method. SNMP::Info::_validate_autoload_method(ps2_type) Unable to resolve method. SNMP::Info::_validate_autoload_method(ps1_status) Unable to resolve method. SNMP::Info::_validate_autoload_method(ps2_status) Unable to resolve method. SNMP::Info::_validate_autoload_method(fan) Unable to resolve method. SNMP::Info::_validate_autoload_method(slots) Unable to resolve method. SNMP::Info::_global os_ver : PAN-COMMON-MIB::panSysSwVersion.0 : .1.3.6.1.4.1.25461.2.1.2.1.1.0 SNMP::Info::_global pa_model : PAN-COMMON-MIB::panChassisType.0 : .1.3.6.1.4.1.25461.2.1.2.2.1.0 SNMP::Info::_load_attr e_parent : ENTITY-MIB::entPhysicalContainedIn : .1.3.6.1.2.1.47.1.1.1.1.4 SNMP::Info::_load_attr e_class : ENTITY-MIB::entPhysicalClass : .1.3.6.1.2.1.47.1.1.1.1.5 SNMP::Info::_load_attr e_serial : ENTITY-MIB::entPhysicalSerialNum(1) : .1.3.6.1.2.1.47.1.1.1.1.11.1 SNMP::Info::_global contact : SNMPv2-MIB::sysContact.0 : .1.3.6.1.2.1.1.4.0 SNMP::Info::_global location : SNMPv2-MIB::sysLocation.0 : .1.3.6.1.2.1.1.6.0 [45213] 2019-10-13 23:25:59 debug -> run worker early/properties/100 [45213] 2019-10-13 23:25:59 debug -> run worker early/properties/100 SNMP::Info::_load_attr old_ip_index : IP-MIB::ipAdEntIfIndex : .1.3.6.1.2.1.4.20.1.2 SNMP::Info::_load_attr new_ip_index : IP-MIB::ipAddressIfIndex : .1.3.6.1.2.1.4.34.1.3 SNMP::Info::_load_attr new_ip_type : IP-MIB::ipAddressType : .1.3.6.1.2.1.4.34.1.4 SNMP::Info::_load_attr i_index : IF-MIB::ifIndex : .1.3.6.1.2.1.2.2.1.1 SNMP::Info::_load_attr i_description : IF-MIB::ifDescr : .1.3.6.1.2.1.2.2.1.2 SNMP::Info::_load_attr old_ip_netmask : IP-MIB::ipAdEntNetMask : .1.3.6.1.2.1.4.20.1.3 SNMP::Info::_load_attr new_ip_prefix : IP-MIB::ipAddressPrefix : .1.3.6.1.2.1.4.34.1.5 SNMP::Info::_load_attr new_ip_type : IP-MIB::ipAddressType : .1.3.6.1.2.1.4.34.1.4 SNMP::Info::_load_attr ip_addr6_index : IP-MIB::ipAddressIfIndex : .1.3.6.1.2.1.4.34.1.3 SNMP::Info::_load_attr c_addr6_index : CISCO-IETF-IP-MIB::cIpAddressIfIndex : .1.3.6.1.4.1.9.10.86.1.1.2.1.3 SNMP::Info::IPv6::ipv6_index: data comes from none of the MIBs. SNMP::Info::_load_attr ip_addr6_index : IP-MIB::ipAddressIfIndex : .1.3.6.1.2.1.4.34.1.3 SNMP::Info::_load_attr c_addr6_index : CISCO-IETF-IP-MIB::cIpAddressIfIndex : .1.3.6.1.4.1.9.10.86.1.1.2.1.3 SNMP::Info::IPv6::ipv6_index: data comes from none of the MIBs. SNMP::Info::_load_attr ip_addr6_type : IP-MIB::ipAddressType : .1.3.6.1.2.1.4.34.1.4 SNMP::Info::_load_attr c_addr6_type : CISCO-IETF-IP-MIB::cIpAddressType : .1.3.6.1.4.1.9.10.86.1.1.2.1.4 SNMP::Info::IPv6::ipv6_type: data comes from none of the MIBs. SNMP::Info::_load_attr ip_addr6_pfx : IP-MIB::ipAddressPrefix : .1.3.6.1.2.1.4.34.1.5 SNMP::Info::_load_attr c_addr6_pfx : CISCO-IETF-IP-MIB::cIpAddressPrefix : .1.3.6.1.4.1.9.10.86.1.1.2.1.5 SNMP::Info::IPv6::ipv6_addr_prefixlength: data comes from none of the MIBs. [45213] 2019-10-13 23:26:00 debug resolving 0 aliases with max 50 outstanding requests [45213] 2019-10-13 23:26:00 debug [10.50.31.245] device - removed 1 aliases [45213] 2019-10-13 23:26:00 debug [10.50.31.245] aliases - added 1 new aliases [45213] 2019-10-13 23:26:00 debug -> run worker early/properties/100 SNMP::Info::_load_attr i_type : IF-MIB::ifType : .1.3.6.1.2.1.2.2.1.3 SNMP::Info::_validate_autoload_method(i_ignore) Unable to resolve method. SNMP::Info::_load_attr i_mtu : IF-MIB::ifMtu : .1.3.6.1.2.1.2.2.1.4 SNMP::Info::_load_attr orig_i_speed : IF-MIB::ifSpeed : .1.3.6.1.2.1.2.2.1.5 SNMP::Info::_load_attr i_speed_high : IF-MIB::ifHighSpeed : .1.3.6.1.2.1.31.1.1.1.15 SNMP::Info::_validate_autoload_method(i_speed_admin) Unable to resolve method. SNMP::Info::_load_attr i_mac : IF-MIB::ifPhysAddress : .1.3.6.1.2.1.2.2.1.6 SNMP::Info::_load_attr i_up : IF-MIB::ifOperStatus : .1.3.6.1.2.1.2.2.1.8 SNMP::Info::_load_attr i_up_admin : IF-MIB::ifAdminStatus : .1.3.6.1.2.1.2.2.1.7 SNMP::Info::_load_attr i_alias : IF-MIB::ifAlias : .1.3.6.1.2.1.31.1.1.1.18 SNMP::Info::_load_attr orig_i_name : IF-MIB::ifName : .1.3.6.1.2.1.31.1.1.1.1 SNMP::Info::_load_attr el_index : EtherLike-MIB::dot3StatsIndex : .1.3.6.1.2.1.10.7.2.1.1 SNMP::Info::_load_attr el_duplex : EtherLike-MIB::dot3StatsDuplexStatus : .1.3.6.1.2.1.10.7.2.1.19 SNMP::Info::_validate_autoload_method(i_duplex_admin) Unable to resolve method. SNMP::Info::_load_attr bp_index : BRIDGE-MIB::dot1dBasePortIfIndex : .1.3.6.1.2.1.17.1.4.1.2 SNMP::Info::_load_attr stp_p_state : BRIDGE-MIB::dot1dStpPortState : .1.3.6.1.2.1.17.2.15.1.3 SNMP::Info::_load_attr bp_index : BRIDGE-MIB::dot1dBasePortIfIndex : .1.3.6.1.2.1.17.1.4.1.2 SNMP::Info::_load_attr qb_i_vlan : Q-BRIDGE-MIB::dot1qPvid : .1.3.6.1.2.1.17.7.1.4.5.1.1 SNMP::Info::_load_attr i_lastchange : IF-MIB::ifLastChange : .1.3.6.1.2.1.2.2.1.9 SNMP::Info::_validate_autoload_method(agg_ports) Unable to resolve method. SNMP::Info::_global load_uptime : DISMAN-EVENT-MIB::sysUpTimeInstance : .1.3.6.1.2.1.1.3.0 SNMP::Info::_global snmpEngineTime : SNMP-FRAMEWORK-MIB::snmpEngineTime.0 : .1.3.6.1.6.3.10.2.1.3.0 SNMP::Info::_global(snmpEngineTime) NOSUCHOBJECT at /home/netdisco/perl5/lib/perl5/App/Netdisco/Worker/Plugin/Discover/Properties.pm line 152. [45213] 2019-10-13 23:26:01 debug [10.50.31.245] db/ports - removed 0 port entries from DevicePortPower [45213] 2019-10-13 23:26:01 debug [10.50.31.245] db/ports - removed 34 port entries from DevicePortProperties [45213] 2019-10-13 23:26:01 debug [10.50.31.245] db/ports - removed 0 port entries from DevicePortVlan [45213] 2019-10-13 23:26:01 debug [10.50.31.245] db/ports - removed 0 port entries from DevicePortWireless [45213] 2019-10-13 23:26:01 debug [10.50.31.245] db/ports - removed 0 port entries from DevicePortSsid [45213] 2019-10-13 23:26:01 debug [10.50.31.245] interfaces - removed 34 interfaces [45213] 2019-10-13 23:26:01 debug [10.50.31.245] interfaces - added 34 new interfaces [45213] 2019-10-13 23:26:01 debug => running workers for phase: main [45213] 2019-10-13 23:26:01 debug -> run worker main/canonicalip/100 [45213] 2019-10-13 23:26:01 debug -> run worker main/entities/100 SNMP::Info::_load_attr entPhysicalDescr : ENTITY-MIB::entPhysicalDescr : .1.3.6.1.2.1.47.1.1.1.1.2 SNMP::Info::_load_attr e_descr : ENTITY-MIB::entPhysicalDescr : .1.3.6.1.2.1.47.1.1.1.1.2 SNMP::Info::_load_attr e_type : ENTITY-MIB::entPhysicalVendorType : .1.3.6.1.2.1.47.1.1.1.1.3 SNMP::Info::_load_attr e_name : ENTITY-MIB::entPhysicalName : .1.3.6.1.2.1.47.1.1.1.1.7 SNMP::Info::_load_attr e_pos : ENTITY-MIB::entPhysicalParentRelPos : .1.3.6.1.2.1.47.1.1.1.1.6 SNMP::Info::_load_attr e_hwver : ENTITY-MIB::entPhysicalHardwareRev : .1.3.6.1.2.1.47.1.1.1.1.8 SNMP::Info::_load_attr e_fwver : ENTITY-MIB::entPhysicalFirmwareRev : .1.3.6.1.2.1.47.1.1.1.1.9 SNMP::Info::_load_attr e_swver : ENTITY-MIB::entPhysicalSoftwareRev : .1.3.6.1.2.1.47.1.1.1.1.10 SNMP::Info::_load_attr e_model : ENTITY-MIB::entPhysicalModelName : .1.3.6.1.2.1.47.1.1.1.1.13 SNMP::Info::_load_attr e_serial : ENTITY-MIB::entPhysicalSerialNum : .1.3.6.1.2.1.47.1.1.1.1.11 SNMP::Info::_load_attr e_fru : ENTITY-MIB::entPhysicalIsFRU : .1.3.6.1.2.1.47.1.1.1.1.16 [45213] 2019-10-13 23:26:02 debug [10.50.31.245] modules - removed 1 chassis modules [45213] 2019-10-13 23:26:02 debug [10.50.31.245] modules - added 1 new chassis modules [45213] 2019-10-13 23:26:02 debug -> run worker main/neighbors/100 [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - removed 0 outdated manual topology links [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - setting manual topology links SNMP::Info::_global lldp_sys_cap : LLDP-MIB::lldpLocSysCapEnabled.0 : .1.0.8802.1.1.2.1.3.6.0 SNMP::Info::_global(lldp_sys_cap) NOSUCHOBJECT at /home/netdisco/perl5/lib/perl5/App/Netdisco/Worker/Plugin/Discover/Neighbors.pm line 113. SNMP::Info::_load_attr lldp_rem_id : LLDP-MIB::lldpRemChassisId : .1.0.8802.1.1.2.1.4.1.1.5 SNMP::Info::_validate_autoload_method(hasCDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasSONMP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasFDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasEDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasAMAP) Unable to resolve method. [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - neighbor protocols are not enabled [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - processed 0 neighbors [45213] 2019-10-13 23:26:02 debug -> run worker main/neighbors/100 SNMP::Info::_load_attr ospf_peers : OSPF-MIB::ospfNbrIpAddr : .1.3.6.1.2.1.14.10.1.1 SNMP::Info::_load_attr ospf_peer_id : OSPF-MIB::ospfNbrRtrId : .1.3.6.1.2.1.14.10.1.3 SNMP::Info::_load_attr isis_adj : ISIS-MIB::isisISAdjIPAddrAddress : .1.3.6.1.2.1.138.1.6.3.1.3 SNMP::Info::_load_attr bgp_peer_addr : BGP4-MIB::bgpPeerRemoteAddr : .1.3.6.1.2.1.15.3.1.7 SNMP::Info::_validate_autoload_method(eigrp_peers) Unable to resolve method. [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - no BGP, OSPF, IS-IS, or EIGRP peers [45213] 2019-10-13 23:26:02 debug -> run worker main/neighbors/100 SNMP::Info::_load_attr docs_if_cmts_cm_status_inet_address : DOCS-IF-MIB::docsIfCmtsCmStatusInetAddress : .1.3.6.1.2.1.10.127.1.3.3.1.21 [45213] 2019-10-13 23:26:02 debug [10.50.31.245] neigh - no modems (probably not a DOCSIS device) [45213] 2019-10-13 23:26:02 debug -> run worker main/portpower/100 SNMP::Info::_load_attr peth_power_watts : POWER-ETHERNET-MIB::pethMainPsePower : .1.3.6.1.2.1.105.1.3.1.1.2 SNMP::Info::_load_attr peth_power_status : POWER-ETHERNET-MIB::pethMainPseOperStatus : .1.3.6.1.2.1.105.1.3.1.1.3 [45213] 2019-10-13 23:26:02 debug [10.50.31.245] power - 0 power modules [45213] 2019-10-13 23:26:02 debug -> run worker main/portproperties/100 SNMP::Info::_validate_autoload_method(i_err_disable_cause) Unable to resolve method. SNMP::Info::_validate_autoload_method(i_faststart_enabled) Unable to resolve method. SNMP::Info::_load_attr lldp_rem_id : LLDP-MIB::lldpRemChassisId : .1.0.8802.1.1.2.1.4.1.1.5 SNMP::Info::_validate_autoload_method(hasCDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasSONMP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasFDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasEDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasAMAP) Unable to resolve method. SNMP::Info::_load_attr lldp_rem_id : LLDP-MIB::lldpRemChassisId : .1.0.8802.1.1.2.1.4.1.1.5 SNMP::Info::_validate_autoload_method(hasCDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasSONMP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasFDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasEDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasAMAP) Unable to resolve method. SNMP::Info::_load_attr lldp_rem_id : LLDP-MIB::lldpRemChassisId : .1.0.8802.1.1.2.1.4.1.1.5 SNMP::Info::_validate_autoload_method(hasCDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasSONMP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasFDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasEDP) Unable to resolve method. SNMP::Info::_validate_autoload_method(hasAMAP) Unable to resolve method. SNMP::Info::_load_attr lldp_rem_media_cap_spt : LLDP-EXT-MED-MIB::lldpXMedRemCapSupported : .1.0.8802.1.1.2.1.5.4795.1.3.1.1.1 SNMP::Info::_load_attr lldp_rem_vendor : LLDP-EXT-MED-MIB::lldpXMedRemMfgName : .1.0.8802.1.1.2.1.5.4795.1.3.3.1.5 SNMP::Info::_load_attr lldp_rem_model : LLDP-EXT-MED-MIB::lldpXMedRemModelName : .1.0.8802.1.1.2.1.5.4795.1.3.3.1.6 SNMP::Info::_load_attr lldp_rem_sw_rev : LLDP-EXT-MED-MIB::lldpXMedRemSoftwareRev : .1.0.8802.1.1.2.1.5.4795.1.3.3.1.3 SNMP::Info::_load_attr lldp_rem_serial : LLDP-EXT-MED-MIB::lldpXMedRemSerialNum : .1.0.8802.1.1.2.1.5.4795.1.3.3.1.4 [45213] 2019-10-13 23:26:03 debug [10.50.31.245] properties - removed 0 ports with properties [45213] 2019-10-13 23:26:03 debug [10.50.31.245] properties - added 34 new port properties [45213] 2019-10-13 23:26:03 debug -> run worker main/vlans/100 SNMP::Info::_load_attr v_name : Q-BRIDGE-MIB::dot1qVlanStaticName : .1.3.6.1.2.1.17.7.1.4.3.1.1 SNMP::Info::_load_attr v_name : Q-BRIDGE-MIB::dot1qVlanStaticName : .1.3.6.1.2.1.17.7.1.4.3.1.1 SNMP::Info::_load_attr bp_index : BRIDGE-MIB::dot1dBasePortIfIndex : .1.3.6.1.2.1.17.1.4.1.2 SNMP::Info::_load_attr qb_i_vlan : Q-BRIDGE-MIB::dot1qPvid : .1.3.6.1.2.1.17.7.1.4.5.1.1 SNMP::Info::_validate_autoload_method(i_vlan_type) Unable to resolve method. SNMP::Info::_load_attr qb_cv_egress : Q-BRIDGE-MIB::dot1qVlanCurrentEgressPorts : .1.3.6.1.2.1.17.7.1.4.2.1.4 SNMP::Info::_load_attr qb_v_egress : Q-BRIDGE-MIB::dot1qVlanStaticEgressPorts : .1.3.6.1.2.1.17.7.1.4.3.1.2 SNMP::Info::_load_attr bp_index : BRIDGE-MIB::dot1dBasePortIfIndex : .1.3.6.1.2.1.17.1.4.1.2 SNMP::Info::_load_attr qb_cv_untagged : Q-BRIDGE-MIB::dot1qVlanCurrentUntaggedPorts : .1.3.6.1.2.1.17.7.1.4.2.1.5 SNMP::Info::_load_attr qb_v_untagged : Q-BRIDGE-MIB::dot1qVlanStaticUntaggedPorts : .1.3.6.1.2.1.17.7.1.4.3.1.4 SNMP::Info::_load_attr bp_index : BRIDGE-MIB::dot1dBasePortIfIndex : .1.3.6.1.2.1.17.1.4.1.2 [45213] 2019-10-13 23:26:03 debug [10.50.31.245] vlans - removed 0 port VLANs [45213] 2019-10-13 23:26:03 debug [10.50.31.245] vlans - added 0 new port VLANs [45213] 2019-10-13 23:26:03 debug [10.50.31.245] vlans - removed 0 device VLANs [45213] 2019-10-13 23:26:03 debug [10.50.31.245] vlans - added 0 new device VLANs [45213] 2019-10-13 23:26:03 debug [10.50.31.245] vlans - discovered for ports and device [45213] 2019-10-13 23:26:03 debug -> run worker main/wireless/100 SNMP::Info::_validate_autoload_method(i_ssidlist) Unable to resolve method. [45213] 2019-10-13 23:26:03 debug -> run worker main/withnodes/0 [45213] 2019-10-13 23:26:03 info discover: finished at Mon Oct 14 10:26:03 2019 [45213] 2019-10-13 23:26:03 info discover: status done: Ended discover for 10.50.31.245

rc9000 commented 5 years ago

Hmm looks like all the IP-MIB objects come up empty. You can verify this by running 

netdisco-do show -e new_ip_index  -d <ip>
netdisco-do show -e old_ip_index  -d <ip>

This just produces undef/empty and not some tables, right? Also in this PAN OS MIB support list, IP-MIB is not mentioned at all.

Maybe the information can be found in one of the PAN-specific MIBS mentioned there? In that case the SNMP::Info module could be extended to work with this stuff. Unfortunately I don't have access to such devices, but you can try to walk the device or grep the MIBs for "ip", "ipaddress" and similar, maybe you can find something. Or somebody else might read this and have some input.

Also there has been talk earlier to also use the serial as additional mean to de-duplicate devices, in this case it would probably do the trick. I don't quite remember though if that was only an idea or if we already have a partial implementation somewhere.

As a temporary workaround, you can try sticking the additional addresses into discover_no, so at least you won't get all the duplicate devices.

MickG72 commented 5 years ago

You are right: netdisco@netdisco:~$ netdisco-do show -e new_ip_index -d 10.50.31.245 [50309] 2019-10-14 00:05:32 info App::Netdisco version 2.044002 loaded. [50309] 2019-10-14 00:05:34 info show: [10.50.31.245]/new_ip_index started at Mon Oct 14 11:05:34 2019 undef [50309] 2019-10-14 00:05:36 info show: finished at Mon Oct 14 11:05:36 2019 [50309] 2019-10-14 00:05:36 info show: status done: Showed new_ip_index response from 10.50.31.245 netdisco@netdisco:~$ netdisco-do show -e old_ip_index -d 10.50.31.245 [50495] 2019-10-14 00:06:05 info App::Netdisco version 2.044002 loaded. [50495] 2019-10-14 00:06:06 info show: [10.50.31.245]/old_ip_index started at Mon Oct 14 11:06:06 2019 undef [50495] 2019-10-14 00:06:08 info show: finished at Mon Oct 14 11:06:08 2019 [50495] 2019-10-14 00:06:08 info show: status done: Showed old_ip_index response from 10.50.31.245

Matching them via serial numbers would be a great thing. Or to somehow connect the two devices together ?

Thanks

rc9000 commented 5 years ago

Ok thanks for checking, as suspected.

Actually now that I think about it, the serial method would only solve half the problem, the device_ip aliases are still critical for the neighbor topology.

I have not used the manual topology and pseudo devices and device_identity setting much, but my hunch is that in the current Netdisco it is not possible to have a normally detected device and then add some aliases manually that will persist. But I'd let this issue sit here for a bit, I might be wrong and others will correct me :)

inphobia commented 4 years ago

i had a look at this last week but for some reason didn't post my comment.

according to their docs they do support mib-ii, which has ipAddrTable, however i didn't find support for it in snmp::info nor any indication it was tried in the debug output (most likely since there have been a billion newer rfcs & mibs to replace this).

Maybe the information can be found in one of the PAN-specific MIBS mentioned there?

had a look but nothing really stood out.

i wonder why no other palo alto user noticed this, seems like a pretty obvious problem.

@MickG72 if at all possible an snmprec output would help us out, the process is described here: https://github.com/netdisco/snmp-info/wiki/Simulating-Agents#22-snmpsim--snmprec-version

there could be privacy issues with this however, i'll update the wiki first & then this post with the issues and possible options.

update: wiki entry about getting data to us in a private fashion https://github.com/netdisco/snmp-info/wiki/Simulating-Agents#exclamation-privacy-and-sensitive-data-warning-exclamation

ollyg commented 3 years ago

Hi @MickG72 there are now two features in Netdisco which should help:

  1. Netdisco uses the serial number to de-duplicate devices automatically.
  2. You can configure Netdisco to tell it which IP is the canonical IP for a device, instead of it guessing: https://github.com/netdisco/netdisco/wiki/Configuration#device_identity

I hope this helps and resolves the headache! Open a ticket if not.