MIBS, SMMPv1, SMMPv2, SMMPv3 and management
Hi :- topology: coreswtich 6509 as layer 2 with FWSM for layer3 When I have done an User Tracking Acquisition and let me show anEnd Hosts Report I can see the IP-Adresses to the MACs. Is it right that that the CW LMS is getting this data from thelayer3 network device which have an ARP-Table of all these networks/devices? How can solve this problem? Can I get this from the FWSM and when how? Regards Marcus
Yes, UT gets the IP addresses from ARP tables of layer 3 devices (during acquisitions). If Dynamic UT is enabled, IPs can also be obtained by polling the CISCO-DHCP-SNOOPING-MIB from switches. Campus Manager does not support firewalls such as the FWSM. You will need to use another layer 3 device (e.g. a router) to get the IPs. What I have done in my lab is to point my servers to a shadow router which is just configured to redirect hosts to the real router. This shadow routers only purpose is to learn ARP entries. I then manage this router in Campus. UT will use that router to get the ARP entries.
In this case, a shadow router would be a router with an interface on each VLAN (or one trunk interface with subinterfaces for each VLAN). The routers IPs would be the default gateway for all clients in each VLAN. However, the routers next hop would be the FWSM. The only thing this router would be doing would be caching ARP entries. As an example, the FWSM has an interface IP such as 10.1.1.1. The shadow router would be 10.1.1.2, and all clients in that VLAN would use 10.1.1.2 as their default gateway. Yes, this does add complexity to the network, and it may not be a feasible solution in all cases. However, since Campus does not support firewalls, this would be the only way for it to reliably learn ARP data for the end hosts.