Basic Dial NMS Implementation Guide Internetworking Solutions Guide August 2000 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
C O N T E N T S Preface vii Purpose vii Audience Scope vii vii Conventions viii Related Documentation and Sites Cisco Connection Online xi Documentation CD-ROM xii Documentation Feedback xii Acknowledgements ix xii Overview of Basic SNMP Building Blocks About SNMP 13 13 What are the Basic Components of SNMP? 14 About Basic SNMP Message Types and Commands What are SNMP MIBs? What is SNMPv1? 18 What is SNMPv2? 19 16 About SNMP Management About SNMP Security 20 21 Network Design
Contents Dial MIBs and OIDs Used in the Case Study 37 Task 1Enabling SNMP in a Cisco IOS Device About Enabling SNMP Enabling SNMP 41 41 42 Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About Using UCD-SNMP 45 Installing UCD-SNMP and Downloading Cisco MIBs Exploring SNMP MIBs for Dial Networks About SNMP Commander 46 46 49 Setting Up SNMP Commander 49 Task 3Using MRTG to Monitor and Graph Traffic Loads About MRTG 45 53 53 About Selecting Dial OIDs 54 How to Inspect and Interpret
Contents Using HTTP to Access CLI Commands 86 Task 6Managing IP Addresses by Using DNS About Managing IP Addresses 91 91 Using Cisco Network Registrar CLI Commands 92 Using a Batch File to Make Changes to a DNS Configuration Creating a Primary Forward Zone 96 Creating an IP Tracker Web Page 96 How to Create a Reverse DNS Zone 99 Task 7Using HP OpenView to Create the SNMP Framework About HP OpenView 101 101 Verifying the SNMP Configuration About SNMP Demand Polls 102 105 Performing an S
Contents LE Basic Dial NMS Implementation Guide
Preface Purpose This Internetworking Solutions Guide (ISG) describes how to implement and operate a dial network management system (NMS) that provides management functions for a dial Internet access service (DIAS). Audience This guide is intended for network engineers and operators who implement and operate dial NMS systems.
Preface Conventions This guide describes the following network protocols, functions, and NMS applications: Protocols—SNMP and NTP. Functions—Syslog, modem call records, Cisco IOS command-line interface (CLI), Log File Rotator, Device Navigator, web-based management, and War Dialer. NMS applications—UCD-SNMP, Multi Router Traffic Grapher (MRTG), HP OpenView (HPOV), and CiscoWorks 2000 Resource Manager Essentials (CW2000 RME).
Preface Related Documentation and Sites Note Timesaver Tips Means reader take note. Notes contain helpful suggestions or reference to materials not contained in this manual. Means the described action saves time. You can save time by performing the action described in the paragraph. Means the information might help the reader solve a problem.
Related Documentation and Sites Preface Access Technology Software Center—Provides the firmware for modem upgrades. http://www.cisco.com/kobayashi/sw-center/sw-access.shtml Increasing Security on IP Networks—Addresses network-layer security issues. http://www.cisco.com/univercd/cc/td/doc/cisintwk/ics/cs003.htm Carnegie Mellon CERT® Security Improvement Modules—Provides information about security management. http://www.cert.
Preface Cisco Connection Online Managing Modems (Cisco IOS 12.1)—Describes configuration and troubleshooting tasks for dial access environments. http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/dialts_c/dtsprt2/dcdm odmg.htm Modem Management Commands (Cisco IOS 12.1 and 12.0)—Provides two lists of Cisco IOS modem commands used for configuring and troubleshooting modems. http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/dial_r/drdshom.htm http://www.
Documentation CD-ROM Preface Documentation CD-ROM Cisco documentation and additional literature are available in a CD-ROM package that ships with your product. The Documentation CD-ROM, a member of the Cisco Connection Family, is updated monthly. Therefore, it might be more current than printed documentation. To order additional copies of the Documentation CD-ROM, contact your local sales representative or call customer service.
Overview of Basic SNMP Building Blocks About SNMP The Simple Network Management Protocol (SNMP) is an application-layer protocol that facilitates the exchange of management information between a network management system (NMS), agents, and managed devices. SNMP uses the Transmission Control Protocol/Internet Protocol (TCP/IP) protocol suite. There are three versions of SNMP: SNMP Version 1 (SNMPv1)—The initial implementation of the SNMP protocol, which is described in RFC 1157 (http://www.ietf.
Overview of Basic SNMP Building Blocks What are the Basic Components of SNMP? Table 1 Related SNMP Documentation and Sites Site Description URL SNMP Technology TAC Page—Network design tips, implementation and operation guidelines, which are continually updated by Cisco TAC engineers. http://www.cisco.com/pcgi-bin/Support/PSP/psp_vie w.pl?p=Internetworking:SNMP http://penta.ufrgs.br/gereint/impl.htm The SimpleWeb—Public domain software packages, which are available on the Internet.
Overview of Basic SNMP Building Blocks About Basic SNMP Message Types and Commands Figure 1 illustrates the relationship between the managed devices, the agent, and the NMS. Figure 1 An SNMP-Managed Network Management Entity NMS Agent Agent Management Database Management Database Management Database 35640 Agent Managed Devices About Basic SNMP Message Types and Commands There are three basic SNMP message types: Get—NMS-initiated requests used by an NMS to monitor managed devices.
Overview of Basic SNMP Building Blocks What are SNMP MIBs? Figure 2 SNMP Event Interactions Between the NMS and the Agent Get request Response Get next Response NMS initiated Get next Response Trap (agent initiated) Agent (Cisco IOS device) 26095 NMS What are SNMP MIBs? A Management Information Base (MIB): Presents a collection of information that is organized hierarchically. Is accessed by using a network-management protocol, such as SNMP.
Overview of Basic SNMP Building Blocks The MIB Tree and Its Various Hierarchies ccitt (0) iso (1) iso-ccitt (2) … … standard (0) registrationauthority (1) memberbody (2) identifiedorganization (3) … dod (6) … internet (1) directory (1) mgmt (2) mib-2 (1) … private (4) … enterprise (1) … … … DECnet (1) … … experimental (3) … … … XNS (2) … … … cisco (9) temporary variables (3) Apple Talk (3) security (5) snmpV2 (6) … … Novell (3) … … atInput (1) atLocal (2) atBcastin (3)
Overview of Basic SNMP Building Blocks What is SNMPv1? SNMP must account for and adjust to incompatibilities between managed devices. Different computers use different data-representation techniques, which can compromise the ability of SNMP to exchange information between managed devices. What is SNMPv1? SNMPv1 is the initial implementation of the SNMP protocol and is described in RFC 1157 (http://www.ietf.org/rfc/rfc1157).
Overview of Basic SNMP Building Blocks What is SNMPv2? Application-wide data types—Including these seven types: ` Network addresses—Represent addresses from a protocol family. SNMPv1 supports only 32-bit IP addresses. ` Counters—Nonnegative integers that increase until they reach a maximum value; then, the integers return to zero. In SNMPv1, a 32-bit counter size is specified. ` Gauges—Nonnegative integers that can increase or decrease but retain the maximum value reached.
Overview of Basic SNMP Building Blocks About SNMP Management SNMPv2 and SMI The SMI defines the rules for describing management information by using ASN.1. RFC 1902 (http://www.ietf.org/rfc/rfc1902) describes the SNMPv2 SMI and enhances the SNMPv1 SMI-specific data types by including: Bit strings—Comprise zero or more named bits that specify a value. Network addresses—Represent an address from a protocol family.
Overview of Basic SNMP Building Blocks About SNMP Security About SNMP Security SNMP lacks authentication capabilities, which results in a variety of security threats: Note Masquerading—An unauthorized entity attempting to perform management operations by assuming the identity of an authorized management entity.
About SNMP Security Basic Dial NMS Implementation Guide Overview of Basic SNMP Building Blocks
Network Design for a Dial NMS Case Study Introduction to the Case Study This case study describes: How one Internet service provider (ISP) designs, implements, and operates a dial network management system (NMS) for a dial Internet access service (DIAS). How to implement dial NMS protocols, applications, and other utilities. THEnet is an ISP in Austin, Texas that wants to develop a dial NMS and integrate it with its existing Network Operations Center (NOC).
Network Design for a Dial NMS Case Study Benefits of a Dial NMS All remote modem users share a common pool of modem resources. Users can dial in to either POP. The dial POPs are redundant. If one POP loses service, traffic is re-routed to the other POP. Describing how traffic is re-routed is outside the scope of this case study, and the diagrams in the case study show simplified IP paths only.
Network Design for a Dial NMS Case Study Dial NMS Planning Questionnaire Dial NMS Planning Questionnaire This planning questionnaire describes information that is essential for creating a dial NMS service definition. A questionnaire helps network engineers make accurate design decisions and consider alternative solutions. The network engineers at THEnet answered the design questions as shown in Table 2.
Network Design for a Dial NMS Case Study Dial NMS Planning Questionnaire Table 2 Network Design Questions and Answers (continued) Network Design Questions THEnet Answers Do you provide reports for any service level commitments with Yes your customers? If yes, what management systems will you use? Identify the types of users who require network management reports.
Network Design for a Dial NMS Case Study Dial NMS Service Definition Dial NMS Service Definition A service definition is a statement that describes required services for a network design.
Network Design for a Dial NMS Case Study Dial NMS Service Definition Table 3 Dial NMS Service Definition for THEnet (continued) FCAPS Function Configuration management Service Requirements and Ways to Collect Management Data SNMP—Use CW2000 RME to archive configuration files, manage Cisco IOS images, determine how much memory is installed, and discover which boot ROMs are present. CLI—Inspect and modify Cisco IOS configuration files and images.
Network Design for a Dial NMS Case Study Table 3 Dial NMS Service Definition Dial NMS Service Definition for THEnet (continued) FCAPS Function Performance management Service Requirements and Ways to Collect Management Data SNMP—For the initial installation, use MRTG to monitor key Object Identifications (OIDs) in the device MIBs. In the future, use commercial software applications that collect mass scale management data streams for large numbers of access servers.
Network Design for a Dial NMS Case Study Network Topology Network Topology Based on the dial NMS service definition in Table 3, the network engineers at THEnet defined the network topology for the POPs and NOC.
Network Design for a Dial NMS Case Study Hardware Requirements In this case study, THEnet initially sends syslog data across WAN links to the NOC. The WAN links are designed to support a large network capacity in a metropolitan area. Collecting syslog locally in each POP is a future design consideration.
Network Design for a Dial NMS Case Study Software Requirements These calculations in Table 5 are based on a PRI system integration—not a system signalling 7 (SS7) integration.
Network Design for a Dial NMS Case Study Table 6 Configuration Design Parameters Dial NMS Software and Management System Requirements (continued) Software and Management Systems CiscoSecure Unix, version 2.3(3) War Dialer Purpose Authenticates, authorizes, and accounts for dial access clients in each POP by using RADIUS. Authenticates, authorizes, and accounts for router administrators in the NOC by using TACACS+.
Network Design for a Dial NMS Case Study Configuration Design Parameters Table 7 IP Subnetting Plan for POP #1 and POP #2 Network Name Assigned IP Subnet Description POP #1 172.21.0.0/16 Class B IP subnet assigned to POP #1. POP #2 172.22.0.0/16 Class B IP subnet assigned to POP #2. NOC 172.23.10.0/24 Class C IP subnet assigned to the NOC. Access 172.21.101.0/24 172.21.102.0/24 Primary and secondary class C access Ethernet subnets.
Network Design for a Dial NMS Case Study Implementation and Operation Tasks The information in Table 9 is posted and maintained on web-based management pages. Easy access to this information reduces network downtime.
Implementation and Operation Tasks Basic Dial NMS Implementation Guide !$ Network Design for a Dial NMS Case Study
Dial MIBs and OIDs Used in the Case Study This section describes the MIBs and OIDs used to manage the dial Internet access service in the case study. See the following tables and choose the variables you want to use in your network. Explore the OIDs and determine whether to poll and graph the results on a regular basis. Caution To explore the MIBs and OIDs, use UCD-SNMP. For more information, see the “Task 2— Exploring SNMP Capabilities by Using UCD-SNMP” section on page 45.
Dial MIBs and OIDs Used in the Case Study For more information about other NMS enhancements for dial, see Call Tracker plus ISDN and AAA Enhancements for the Cisco AS5300 and Cisco AS5800 at http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121limit/121x/121xh /121xh_2/dt_cltrk.htm Note To protect a network access server from over polling, use the SNMP get bulk feature. It’s available in SNMP v2 in CISCO-BULK-FILE-MIB.
Dial MIBs and OIDs Used in the Case Study Table 11 Description of CISCO-POP-MGMT-MIB (continued) Description Equivalent Cisco IOS Command OID None available Total packets transmitted on a DS0 cpmOutPackets .1.3.6.1.4.1.9.10.19.1.1.1.1.12 Number of active PPP calls cpmPPPCalls None available .1.3.6.1.4.1.9.10.19.1.1.5 Number of active V120 calls cpmV120Calls None available .1.3.6.1.4.1.9.10.19.1.1.6 Number of active V110 calls cpmV110Calls None available .1.3.6.1.4.1.9.10.19.1.1.
Dial MIBs and OIDs Used in the Case Study Table 12 Description of CISCO-MODEM-MGMT-MIB (continued) Variable Description OID Equivalent Cisco IOS Command List of user CLIDs cpmActiveRemotePhoneNumber show caller ip .1.3.6.1.4.1.9.10.19.1.3.1.1.2 show isdn history List of called DNIS phone numbers cpmActiveLocalPhoneNumber show caller ip .1.3.6.1.4.1.9.10.19.1.3.1.1.13 List of TTY interfaces in use cpmActiveTTYNumber show caller ip .1.3.6.1.4.1.9.10.19.1.3.1.1.
Task 1Enabling SNMP in a Cisco IOS Device About Enabling SNMP In this case study: Each Cisco IOS device is identified by a fixed and stable loopback IP address for network management purposes. The IP address functions as an device ID. One block of loopback IP addresses is used to simplify IP-security filtering at the NOC. This technique protects the NOC from devices that should not access management services, such as TACACS+, RADIUS, syslog, and SNMP.
Task 1Enabling SNMP in a Cisco IOS Device About Enabling SNMP Enabling SNMP To enable SNMP on a Cisco IOS device in the network, follow these steps. Note Step 1 In some software releases, the commands snmp-server engineID local and snmp-server packetsize are enabled by default. To use Loopback0 for device management and set SNMP traps to use that IP address, enter the following commands. This configuration also eliminates the need to change IP addresses if a different interface is used to send traps.
Task 1Enabling SNMP in a Cisco IOS Device Table 13 About Enabling SNMP SNMP Command Descriptions (continued) Command Purpose snmp-server enable traps Enables traps for unsolicited notifications for configuration changes, environmental variables, and critical device conditions. This command enables 14+ other commands for distinct types of SNMP traps. Edit this command list to include only the traps that are used by your network environment. snmp host 172.23.10.
About Enabling SNMP Basic Dial NMS Implementation Guide "" Task 1Enabling SNMP in a Cisco IOS Device
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About Using UCD-SNMP Researching and identifying which functions are available in SNMP are part of building a dial NMS environment. In this case study, UCD-SNMP, an opensource freeware application that allows access to SNMP functions from a command line interface (CLI), is used to explore the capabilities of SNMP. There are many benefits to using UCD-SNMP.
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About Using UCD-SNMP Installing UCD-SNMP and Downloading Cisco MIBs To install UCD-SNMP and download MIBs from the Cisco FTP site, follow these steps. Note You can also download individual MIBs from http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml Step 1 Go to http://ucd-snmp.ucdavis.edu Step 2 Download, compile, and install UCD-SNMP. In this case study, the UCD-SNMP commands are installed in the /usr/local/bin directory.
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About Using UCD-SNMP enterprises.9.2.1.2.0 = "reload" If SNMP-parsing errors are generated, suppress them by appending 2>/dev/null to the end of the command. Standard output is tagged as 1. Error output is tagged as 2. onionring:~$ snmpget travis-nas-01.the.net 5urf5h0p .1.3.6.1.4.1.9.2.1.2.0 2> /dev/null enterprises.9.2.1.2.
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About Using UCD-SNMP Step 6 Poll the interfaces table and redirect the output to a text file by entering the snmptable command and ifTable OID: onionring:~$ snmptable travis-nas-01.the.net 5urf5h0p interfaces.ifTable > /export/home/www/travis-nas-01_ifTable.txt onionring:~$ Note Step 7 Do not forget the space between > and /export Inspect the contents of the interfaces table by entering the cat command.
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About SNMP Commander About SNMP Commander The dial engineers at THEnet created a tool called SNMP Commander that: Provides web-based access to UCD-SNMP CLI commands. Builds web-based OID bookmarks, which enable you to go to OIDs without using a keyboard. Aids the MIB exploration and NMS design tasks. By using SNMP Commander and a web browser, you can: Create URL links for the network staff and help desk.
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP About SNMP Commander Figure 8 SNMP Commander Tool Basic Dial NMS Implementation Guide #
Task 2 Exploring SNMP Capabilities by Using UCD-SNMP Figure 9 About SNMP Commander Polling Results from the table cpmActiveCallSummaryTable Command Basic Dial NMS Implementation Guide #
About SNMP Commander Basic Dial NMS Implementation Guide # Task 2 Exploring SNMP Capabilities by Using UCD-SNMP
Task 3Using MRTG to Monitor and Graph Traffic Loads About MRTG Multi Router Traffic Grapher (MRTG) is a free performance management application for Unix that monitors SNMP statistics from any SNMP capable device on your network and performs the following functions: Captures, stores, and graphically presents SNMP data. By default, a web page with four graphs per MIB object (OID) is created by MRTG. The graphs show the variation of MIB data over time. Runs from the crontab.
Task 3Using MRTG to Monitor and Graph Traffic Loads About Selecting Dial OIDs For each OID referenced in the configuration file, MRTG creates the following graphs: Daily graph—5 minute average data points with approximately 33 hours of data presented. Weekly graph—30 minute average data points with approximately 8 days of data presented. Monthly graph—2 hour average data points with approximately 5 weeks of data presented.
Task 3Using MRTG to Monitor and Graph Traffic Loads Table 14 About Selecting Dial OIDs Circuit Utilization OIDs (continued) Variable Base MIB and OID Description Time in use CISCO-POP-MGMT-MIB The time for each DS0. 1.3.6.1.4.1.9.10.19.1.1.1.1.8 PPP calls CISCO-POP-MGMT-MIB The number of active PPP calls. 1.3.6.1.4.1.9.10.19.1.1.5 DS0 high water mark CISCO-POP-MGMT-MIB 1.3.6.1.4.1.9.10.19.1.1.8 The maximum number of DS0s ever used simultaneously.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data Table 16 User Information OIDs Variable Base MIB and OID Description Active user ID CISCO-MODEM-MGMT-MIB List of users currently connected and authenticated. .1.3.6.1.4.1.9.10.19.1.3.1.1.3 Active call duration User CLID CISCO-MODEM-MGMT-MIB .1.3.6.1.4.1.9.10.19.1.3.1.1.8 Call durations for currently connected and authenticated users. CISCO-MODEM-MGMT-MIB List of user Caller IDs (CLID). .1.3.6.1.4.1.9.10.19.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data The Connection Success Rate (CSR) is an important metric for tracking and measuring the stability of a dial service. The CSR is defined by the number of modems that successfully train up and go in to connected state. In addition to the CSR, you must track and analyze additional areas. For example, SNMP MIBs can be used to measure the success rate for items such as PPP, AAA, and IP negotiation.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data Figure 13 Monthly Graph: DS0s and PPP Sessions in Use MRTG efficiently compresses and archives data to create graphs. For example, you can keep information for an entire year on a server without using much disk space. Figure 14 Yearly Graph: DS0s and PPP Sessions in Use The configuration file used to create these graphs is posted at http://www.cisco.com/univercd/cc/td/doc/cisintwk/intsolns/dialnms/mrtg53.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data Creating and Editing a Configuration File Because dial interfaces normally go up and down as calls connect and disconnect, monitor counters such as: PPP sessions in use DS0s in use Modem calls that have been rejected Depending on how the dial interfaces are used on a access server, different types of counters may not be valuable to monitor, such as byte-packet counters on the interfaces in Table 17.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data Example: ./cfgmaker 5urf5h0p@travis-nas-01 >> travis-nas-01.cfg In the previous example: 5urf5h0p is the SNMP community string. travis-nas-01 is the hostname of the managed device. travis-nas-01.cfg Note Step 4 is the configuration file that MRTG reads each time it starts up. If the domain name server (DNS) is not working, MRTG cannot use a hostname. You must use an IP address instead.
Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data #--------------------------------------------------------------------------------------# purpose: DS0s and Analog #--------------------------------------------------------------------------------------Target[travis-nas-01_DS0ANALOG]: 1.3.6.1.4.1.9.10.19.1.1.4.0&1.3.6.1.4.1.9.10.19.1.1.2.
How to Inspect and Interpret Data Task 3Using MRTG to Monitor and Graph Traffic Loads
HOME |
#--------------------------------------------------------------------------------------------# purpose: cpmISDNCallsClearedAbnormally and cpmModemCallsClearedAbnormally #--------------------------------------------------------------------------------------------Target[travis-nas-01_clearAbnormal]: 1.3.6.1.4.1.9.10.19.1.2.3.0&1.3.6.1.4.1.9.10.19.1.2.4.Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data MaxBytes2[travis-nas-01_vpdn_tunnelanddenied]: 200 Title[travis-nas-01_vpdn_tunnelanddenied]: cvpdnTunnelTotal and cvpdnDeniedUsersTotal PageTop[travis-nas-01_vpdn_tunnelanddenied]:
cvpdnTunnelTotal and cvpdnDeniedUsersTotal
Device: | travis-nas-01 |
PAGE 64 Task 3Using MRTG to Monitor and Graph Traffic Loads How to Inspect and Interpret Data "/tmp/crontabmMaqZd" 14 lines, 610 characters #ident "@(#)root 1.19 98/07/06 SMI" /* SVr4.0 1.1.3.1 */ # # The root crontab should be used to perform accounting data collection. # # The rtc command is run to adjust the real time clock if and when # daylight savings time changes. # 10 3 * * 0,4 /etc/cron. Task 3Using MRTG to Monitor and Graph Traffic Loads Step 3 How to Inspect and Interpret Data Use a web browser to view the MRTG output files in the web page directory. Note If the domain name server (DNS) is not working, a hostname cannot be used by MRTG. Use the IP address instead. How to Inspect and Interpret Data Basic Dial NMS Implementation Guide $$ Task 3Using MRTG to Monitor and Graph Traffic Loads Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Syslog Syslog, Network Time Protocol (NTP), and modem call records work together to isolate and troubleshoot faults in a dial access network. Syslog enables you to: Centrally log and analyze configuration events and system error messages, such as router configuration changes, interface up and down status, modem events, security alerts, environmental conditions, trace backs, and CPU process overloads. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Syslog By using the logging ? command, you can see the log settings for distinct destinations: travis-nas-01(config)#logging ? Hostname or A.B.C. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About NTP About NTP The Network Time Protocol (NTP): Provides a synchronized time base for networked routers, servers, and other devices. Coordinates the time of network events, which helps you understand and troubleshoot the time sequence of network events. For example, call records for specific users can be correlated within one millisecond. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Figure 17 Web-Based MCR Viewer You can view entire log files or portions of logs in the MCR viewer. In addition, you can parse for specific users and other call attributes for a modem call (for example, modulation, error correction, compression, disconnect causes, and retrains). Note Modem call records are available in syslog starting with Cisco IOS Releases 11.3AA and 12.0T. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Enabling NTP on a Cisco IOS Device To enable NTP and related clocking services, follow these steps. Step 1 From the Cisco IOS device, enter the following commands. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Step 6 Verify that the router is receiving NTP packets from the NTP server by entering the following command: travis-nas-01>show ntp association address ref clock st when poll reach delay offset disp *~172.22.255.1 127.127.7.1 8 984 1024 377 60.3 -0.89 0. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults Step 4 About Modem Call Records Edit the ntp.conf file by changing multicastclient to server followed by the IP address of the target NTP server: # # # # # # # # @(#)ntp.client 1.2 96/11/06 SMI /etc/inet/ntp.client An example file that could be copied over to /etc/inet/ntp.conf; it provides a configuration for a host that passively waits for a server to provide NTP packets on the ntp multicast net. server 172.22.255. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Troubleshooting the NTP Client Table 19 NTP Problems and Solutions Problem Solution The ntp.client file or the xntpd daemon cannot be found in the directories shown in the examples. Verify that the workstation is running Solaris v2.6 or a later version of Solaris. Enter the uname -a command to see the version. Versions earlier than Solaris v2. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults Table 20 About Modem Call Records Logging Command Descriptions Command Purpose logging buffered 10000 debugging Sets the internal log buffer to 10000 bytes for debug output. New messages overwrite old messages. You can tune buffered-logging parameters for collecting logs on a NAS when you are at a remote location. For example, turn on debugs and start logging them in the history buffer. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Step 4 (Optional) To disable syslog messages and SNMP traps when dial interfaces go up and down, use the commands no logging event link-status and no snmp trap link-status. Although up and down events are legitimate events on dial interfaces, these events should not cause alarms as LAN and WAN interfaces would. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records #Following is the new line. It adds a logging facility number and direcory path for the #log file (router.log). local0.debug /var/log/router.log Note Step 2 The previous syslog.conf example has been abbreviated to fit this document. The actual file size is much larger than the example. Add the new line to the end of the file. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Inspecting Syslog Messages in t he Log File To inspect syslog messages by using Cisco IOS commands, Unix commands, FTP, and a web browser, follow these steps: Step 1 From the Cisco IOS device, create basic syslog messages by entering these commands: travis-nas-01#configure terminal Enter configuration commands, one per line. Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults About Modem Call Records Table 21 shows the generic URL syntax to use. Be sure to replace the variables with your own information. The FTP server automatically prompts you for a login password. Table 21 URL Syntax Descriptions and Examples Generic URL Syntax Description Example ftp://username@host/directory-path Uses FTP to view ftp://sam@172.23.84.22/var/log/router.l logs from a remote og location. About Modem Call Records Basic Dial NMS Implementation Guide & Task 4Using Syslog, NTP, and Modem Call Records to Isolate and Troubleshoot Faults Task 5Setting Up a Web Portal for the Dial NMS About a Web Portal A web portal for the dial NMS is a combination of CGI scripts and HTML links used to support a dial Internet access service. As the number of devices and applications in a network increase, the operations support team may become inundated with a myriad of management products. To support a dial service, a web portal provides easy access to: Product manuals, design guides, white papers, and troubleshooting guides. Task 5Setting Up a Web Portal for the Dial NMS About a Web Portal Table 22 Utilities Provided by the Web Portal for the Dial NMS (continued) Utility Function Cisco IOS CLI Command Center A web page that provides HTTP access to frequently used Cisco IOS CLI commands. The operations team and help desk can use this utility to troubleshoot connectivity problems. See the “Using HTTP to Access CLI Commands” section on page 86. Task 5Setting Up a Web Portal for the Dial NMS About a Web Portal Building a Device Linker Web Page A device linker web page: Simplifies access to the many device-management interfaces in the network. Provides links to the telnet, console, and HTTP ports of Cisco IOS devices. Figure 19 Device Linker Used to Access Devices Cisco 2511 terminal server Line 1 RS-232 cable Device Linker Telnet access telnet://172.21.10.10 35192 Cisco AS5800 HTTP access to the CLI http://172.21.10. Task 5Setting Up a Web Portal for the Dial NMS About a Web Portal travis-nas-01 | 172.21.10.1 | travis-oob-01:2001 | 5800 | Dial POP #1 | |