nv-l
[Top] [All Lists]

[nv-l] VPN & Firewall Pb

To: nv-l@lists.tivoli.com
Subject: [nv-l] VPN & Firewall Pb
From: "Maxime TRANNOY" <MTRANNOY@fr.ibm.com>
Date: Thu, 7 Mar 2002 19:44:19 +0100
Netview 6.0.0
AIX4.3.3

Hello,

We monitor a checkpoint Firewall on solaris with Netview.
Everything was ok, but since we have implemented a range of IP address for
Nomad VPN the netmon daemon starts being crazy.
It starts to make ping storm to all IP address in the range (while the
range of this IP address where set to no disvover in the seed file with
"!").

!a.x.240.*

The Firewall was overload and could not handle so many pings.
We have deletted the Firewall object and then tried to rediscover it under
Netview without the VPN IP address range restriction in the Seed File, but
the ping storm still and the IP address are not recognized by Netview ( No
interfaces in the topology databases or in the Object Databases)..

The strangest thing is when i asked for a demand poll i can see the IP
adress  of all the range with the answer :

16:46:56   Interface a.x.240.51 (down since 03/06/02 18:31:15)
16:46:56   Interface a.x.240.50 (down since 03/06/02 18:31:15)
16:46:58     ping timed out
16:46:58     ping timed out


Does someone no how to stop this ping strom or how to tell Netview not to
discover the interface's Firewall with this IP address.

Kind regards/Cordialement.

Maxime TRANNOY
IGS - Network Delivery Support Center
Tel : +33 (0) 492 114 767
mailto:mtrannoy@fr.ibm.com



<Prev in Thread] Current Thread [Next in Thread>

Archive operated by Skills 1st Ltd

See also: The NetView Web