-
-
Notifications
You must be signed in to change notification settings - Fork 73
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Cisco SD-Access Fabric Edges Not Properly Presented #1134
Comments
Hi! Cisco has some quirks with getting the Mac to Port tables, mostly because many platforms do not support the QBRIDGE MIB (which has these mappings per VLAN), but only the older BRIDGE MIB with some workarounds to make it VLAN-aware. These workarounds are community-based indexing (ie. adding the VLAN id to the SNMP community) for SNMPv2 and contexts (which need to be configured) for SNMPv3. I'd go ahead and read all the items with "cisco" in the name on this page: https://github.com/netdisco/netdisco/wiki/Vendor-Tips, maybe something in there already can make it work for you. But chances are that on SD Access there are even some new challenges. For deeper debugging, you can run the macsuck process on the command line with a lot of SNMP-related output enabled:
Then you see exactly what OIDs are tried, and what they return. Comparing to a non-SD Access device where you get the expected results is often helpful, as well as trying to get the data with manual snmpwalks, and then looking through the SNMP-Info code to see where it goes wrong. I'll move this issue to the netdisco main repo. |
rc9000 thank you for your fantastic response. I appreciate the support. Let me go do some reading. Also apologies for the incorrect forum. Cheers! |
Hello,
Running netdisco 2.69 successfully. System is running on Docker and I have thousands of Devices and Nodes discovered.
However, I noticed recently that a Cisco SD-Access Fabric Edge Node is not displaying all the nodes on all the VLANs and corresponding ports on a non-default VRF
The switch itself does have all the IP to MAC address mappings exposed via SNMP but not sure why all VLANs aren't represented. MAC addresses are searchable but never with a matching IP or Switch/Port mapping.
So, as an example:
Cisco SD-Access Switch
Multiple VLANs
All VLANs are mapped to a VRF called "MONTE_VRF"
On the switch, the "sh ip arp" only shows the underlay IP ARP database.
"show ip arp VRF MONTE_CORP" displays all the VLANs I am interested in.
In Netdisco, when I search by IPs in one of the VLANs, say VLAN 1030 or 1020, they are not showing up.
The VoIP VLAN is showing (VLAN 2046) but no others
The "walk_all2" script in the MIBs folder on the docker container does show an entire list of IP to MAC mappings
EXAMPLE:
./walk_all2 -c public -v 2c -d 10.136.8.137 -w
The above command is not returning VLAN info that I can tell in DECIMAL notation.
Is there a step I am missing?
Thanks for your help and apologies in advance if I missed any info.
Context
Trying to collect ARP and MAC info for a Cisco Switch in an SD-Access Fabric Edge environment. We use multiple VRFs for various traffic and some VLANs are on different VRFs
Your Environment
Device information
The text was updated successfully, but these errors were encountered: