first meeting where we are going _________________________________________ Network caping - Steve Evanchik dorm machine klepto.woodstock.clarkson.edu vs science center machine sokocalo.sc.clarkson.edu on each traceroute www.rit.edu and ping www.rit.edu (shows packet loss on dorm net) on dorm machine - same round trip but dropped packets 1) CAPING unlimited download but outgoing is capped for dorms and public labs the way caping works is router drops packets from you to keep you under the cap caping done for all of dormnet - not per machine caping upstream still interferers with TCP session - slows it down - because acks get dropped Tomorrow CIS wil have information session factual presentation in 10 minutes 2) trouble with applied theory 3) 100 Mbit vs Gigabit on townshouses and woodstock are on 100 Mbit Ethernet everyone else gigabit ethernet priorities private offices/labs public labs ( don't want people doing "ping atttacks" on NASA FBI was already heer for that once dormnet - lowest priority - don't want students hosting NAPSTER or porn servers COSI lab is on dormnet ITL lab? _________________________________________________________________ did a traceroute of Clarkson's outgoing connection through applied theory also dynamic dns is broken if request a host name can't get it posted to the dynamic DNS if you had if a hostname on a lease acquired before it got broken you can keep it - alreayd posted to dynamic DNS server- but no new ones not NApster, Nutella ________________________________________________________________ MRTG Multi Router Traffic Grapher C and Perl, OPen source graph data gathered through SNMP SNMP - ismple network management protocol machine exports certain things called MIBs (Managment Information Base) Ex. MIB for interfaces on this machine or CPU type or amount of memory MRTG uses an SNMP library to talk to various pieces of hardware of course if can't get to something at all hard to see what is wrong only for NT/2000 or Linux, need Perl then need a piece of hardware to monitor - something exporting a MIB to monitor something know its hostname or IP address plus its SNMP port (if non standard) also need to know ID of the resource you want to monitor then need an account/password for the SNMP community on that device a standard read only account is public at command prompt perl cfgmaker public@hill.gw.clarkson.edu --global "Workdir:C:\labbuild\www\mrtg" --output mrtg.cfg public@hill.gw.clarkson.edu = waht I want to monitor Workdir = where everything (graphs etc) gets generated --global - put it the global section of the configuraiton file --output mrtg.conf name of file to put configuraiton in once generate configuration file then run MRTG with the mrtg.cfg "perl mrtg mrtg.cfg" SNMP machines of course don't have to enable SNMP - but default is to have a read-only account public and most people don't disable MRTG can also be used to monitor your own machine stuff but not export it by SNMP can do MRTG and querty your own SNMP port but can also just use MRTG without any SNMP Clarkson's real MRTG generated pages noc.clarkson.edu/ can get campus summary, dorm net, individiual machine see cap go up! _____________________________________________________________ trial of HP Open View - real product is $30K other product like that Tivoli NetView ________________________________________________________________ Let everyone do an ETHEREAL CAPTURE and go around and answer questions _______________________________________________________________ SUGGESTION FOR NETWORK CLUB ACTIVITEIS - coherent arguements about how to upgrade Clarkson;e networks - monitor each switch and router and assemble whole picture with MRTG - explain strange traffic patterns all over campus - network local high schools/businesses - tour machine rooms/network closets - Charles Cameron visit - local NOC - Fluke Network Analyzer and Multimeter __________________________________________ more meetings tentative schedule Tueasdy, 11-5-01 4-6 HW lab, Fluke and Multimeter 6:30 more howtos Tuesday, 12-04-01 4-6 Management lab (MRTG on routers in this lab) HP open view cheops web interface on router 6:30 more howtos