Embed Size (px)
Citation preview
Integrate Extreme Summit
x440 Switches EventTracker v9.x or above
Publication Date: May 21, 2019
1
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Abstract This guide provides instructions to configure Extreme Summit x440 to send the syslog to EventTracker
Enterprise. Once syslog is being configured to send to EventTracker manager, alerts and reports can be
configured into EventTracker.
Scope The configurations detailed in this guide are consistent with EventTracker Enterprise version 9.x and later,
Extreme Summit x440 Switch.
Audience Administrators who are responsible for monitoring Extreme Summit x440 which are running using
EventTracker Manager.
The information contained in this document represents the current view of Netsurion on the issues
discussed as of the date of publication. Because Netsurion must respond to changing market
conditions, it should not be interpreted to be a commitment on the part of Netsurion, and Netsurion
cannot guarantee the accuracy of any information presented after the date of publication.
This document is for informational purposes only. Netsurion MAKES NO WARRANTIES, EXPRESS OR
IMPLIED, AS TO THE INFORMATION IN THIS DOCUMENT.
Complying with all applicable copyright laws is the responsibility of the user. Without limiting the
rights under copyright, this paper may be freely distributed without permission from Netsurion, if
its content is unaltered, nothing is added to the content and credit to Netsurion is provided.
Netsurion may have patents, patent applications, trademarks, copyrights, or other intellectual
property rights covering subject matter in this document. Except as expressly provided in any
written license agreement from Netsurion, the furnishing of this document does not give you any
license to these patents, trademarks, copyrights, or other intellectual property.
The example companies, organizations, products, people and events depicted herein are fictitious.
No association with any real company, organization, product, person or event is intended or should
be inferred.
© 2019 Netsurion. All rights reserved. The names of actual companies and products mentioned
herein may be the trademarks of their respective owners.
2
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Table of Contents Abstract ............................................................................................................................................................. 1
Scope ................................................................................................................................................................. 1
Audience ............................................................................................................................................................ 1
Extreme Summit x440 Switches ............................................................................................................................ 3
Prerequisites ...................................................................................................................................................... 3
Configuring Extreme Summit x440 switches to send Syslog to EventTracker Manager. ..................................... 3
Enable the syslog Service .................................................................................................................................. 3
Extreme Summit x440 Knowledge Pack: ............................................................................................................... 4
Alerts ................................................................................................................................................................. 4
Flex Reports ....................................................................................................................................................... 4
Dashboards ........................................................................................................................................................ 7
Importing Extreme Summit x440 knowledge pack into EventTracker ................................................................. 9
Alerts ................................................................................................................................................................. 9
Template .......................................................................................................................................................... 11
Flex Reports ..................................................................................................................................................... 13
Knowledge Objects .......................................................................................................................................... 16
Dashboards ...................................................................................................................................................... 16
Verifying Extreme Summit x440 knowledge pack in EventTracker .................................................................... 19
Knowledge Object ........................................................................................................................................... 19
Template .......................................................................................................................................................... 19
Flex Reports ..................................................................................................................................................... 20
Alerts ............................................................................................................................................................... 21
3
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Extreme Summit x440 Switches Extreme Summit x440 series switches provide redundant power supplies, summitstack capability,
comprehensive security features and high performance switching and small access switch.
Extreme Summit x440 series switches extend the intelligence and resiliency of the ExtremeXOS network
operating system to the converged access edge, enabling fine grained Quality of Service (QoS), stacking, high
availability features and identity aware security in a compact, cost effective switch.
Prerequisites • EventTracker v9.x should be installed.
• An Extreme Networks EXOS switch running software version 15.4 or greater with network access.
Configuring Extreme Summit x440 switches to send
Syslog to EventTracker Manager.
Enable the syslog Service You can configure Extreme Summit x440 to send logs to a syslog server in addition to Elasticsearch in
Eventtracker.
Environment:
• EXOS
• Summit
• BlackDiamond
Type the Following commands:
Note:
1. To configure syslog use Eventtracker Manager’s IP Address.
enable syslog
configure syslog add <ip_address> vr <virtual-router> local0
configure syslog <ip_address> vr <virtual-router> local0 severity info
enable log target syslog <ip_address>:<port> vr <virtual-router> local0
4
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
2. The default syslog Port is 514.
Additional information-
For extreme management center, specify the format as well, with the command:
In environments where multiple VLANs are configured with an IP address, the source IP of the syslog traffic
can be explicitly set using the following command:
Extreme Summit x440 Knowledge Pack:
Alerts
• Extreme Summit x440 Loop Detected – This alert provides information related to loop detection and
disabled ports.
Flex Reports
• Extreme Summit x440 - Switch Port Status – This report provides information related to switch port
events (up/down) status with link speed and communication channel.
configure log target syslog <ip_address>:<port> format timestamp seconds date mm/dd/yyyy host-
name tag-id tag-name
configure log target syslog <configure-target-ip> from <source-ip-to-use>
5
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 1
Sample Log:
• Extreme Summit x440 - Authentication Failed – This report provides information related to
authentication failed for network login by MAC users.
Mar 15 13:11:59 10.150.104.1 Mar 15 13:11:59 NQ-Oxford-Stack1 nl: Slot-1: Network Login user 3417EBA62670 cleared due to link down event, Mac 34:17:EB:A6:26:70 port 1:30 VLAN(s) \"Data\"
6
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 2
Sample Log:
• Extreme Summit x440 - Login and Logout – This report provides information related to login-logout
activities by users.
Mar 15 05:48:10 10.150.104.2 Mar 15 05:48:10 NQ-Oxford-Stack2 nl: Slot-1: Authentication failed for Network Login 802.1x user Mac F8:B1:56:D3:1C:5B port 1:41
7
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 3
Sample Log:
Dashboards 1. Extreme Summit x440 Login and Logout Activity:
Mar 15 07:05:43 10.150.104.2 Mar 15 07:05:43 NQ-Oxford-Stack2 nl: Slot-1: Network Login user F8B156D31C5B cleared by FDB entry age out, Mac F8:B1:56:D3:1C:5B port 1:41 VLAN(s) \"Data\" Mar 14 04:47:23 10.150.104.6 Mar 14 04:47:23 NQ-Oxford-Stack6 AAA: Slot-1: User SA_NetSight logout from ssh (10.105.1.12)
8
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 4
2. Extreme Summit x440 Authentication Failed:
Figure 5
9
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
3. Extreme Summit x440 Switch Port Status:
Figure 6
Importing Extreme Summit x440 knowledge pack into
EventTracker • Alerts
• Template
• Flex Reports
• Knowledge Objects
• Dashlets
Alerts 1. Launch EventTracker Control Panel.
2. Double click Export-Import Utility.
10
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 7
3. Click the Import tab.
4. Select Alert option.
5. Click on Browse button and select file path.
6. Click on Import.
11
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 8
7. Alerts are now imported successfully.
Figure 9
Template 1. Login to EventTracker console.
2. Click on Admin option in the EventTracker manager page. 3. Select Parsing Rules.
12
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 10
4. Select Template and click on Import t icon.
Figure 11
5. Browse Extreme Summit x440 Template files.
Figure 12
6. Select all Extreme Summit x440 template names.
7. Click on Import button.
13
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 13
8. Template imported successfully.
Figure 14
Flex Reports On EventTracker Control Panel,
1. Click Reports option and select new(.etcrx) from the option.
14
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 15
2. Locate the file named Reports_ Extreme Summit x440.etcrx and select all the checkbox.
15
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 16
3. Click the Import button to import the reports. EventTracker displays a success message.
Figure 17
16
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Knowledge Objects 1. Login to EventTracker console.
2. Click on Knowledge objects under Admin option in the EventTracker manager page.
Figure 18
3. Locate the file named KO_ Extreme Summit x440.etko
Figure 19
4. Now select all the checkbox and then click on ‘Upload’ option.
5. Knowledge objects are now imported successfully.
Figure 20
Dashboards 1. Open EventTracker Enterprise in the browser and log in.
17
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 21
2. Navigate to My Dashboard.
3. Click on Import configuration icon on the top right corner.
4. In the popup window browse the file named Dashboard_ Extreme Summit x440.etwd
Figure 22
5. Now select all the checkbox and then click on Import option.
18
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 23
6. Click ‘customize’ to locate and choose created dashlets.
7. Click Add to add Dashlets to the dashboard.
Figure 24
19
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Verifying Extreme Summit x440 knowledge pack in
EventTracker
Knowledge Object 1. In the EventTracker Enterprise web interface, click the Admin drop-down, and then click Knowledge
Objects.
2. In the Knowledge Object tree, expand Extreme Summit x440 group folder to view the imported Knowledge
objects.
Figure 25
Template 1. In the EventTracker Enterprise web interface, click the Admin drop-down, and then click Parsing Rules.
20
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 26
2. Select Template and find the Extreme Summit x440 group.
3. Click on Extreme Summit x440 Group to view all templates.
Figure 27
Flex Reports 1. In the EventTracker Enterprise web interface, click the Reports icon, and then select Report
Configuration.
21
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 28
2. In Reports Configuration pane, select a Defined option.
3. Click on the Extreme Summit x440 group folder to view the imported Extreme Summit x440.
Figure 29
Alerts 1. In the EventTracker Enterprise web interface, click the Admin icon, and then select Alerts.
22
Extreme Summit x440 Switches ExtremeSummitx440EExtremeSummitx44
0
Figure 30
2. In the Alert search bar, we can search the alert name and view the imported Extreme Summit x440.
Figure 31
