Anonymous | Login | 2024-11-14 10:08 EST |
Main | My View | View Issues | Change Log | Roadmap |
View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
ID | Project | Category | View Status | Date Submitted | Last Update | |||
0001284 | PacketFence | hardware modules | public | 2011-09-27 11:47 | 2011-11-21 12:05 | |||
Reporter | obilodeau | |||||||
Assigned To | obilodeau | |||||||
Priority | low | Severity | minor | Reproducibility | always | |||
Status | closed | Resolution | fixed | |||||
Platform | OS | OS Version | ||||||
Product Version | ||||||||
Target Version | 3.0.3 | Fixed in Version | 3.0.3 | |||||
Summary | 0001284: SNMPv3 with Cisco Catalyst 2950 | |||||||
Description | IOS running on Cisco 2950 don't support SNMPv3 contexts. These are used by Cisco to query the CAM (mac to port) table of switches in more recent IOSes. This is a Cisco issue not a PacketFence one. What this means is that we don't support 2950's using SNMPv3 in linkup/linkdown and MAC Notification modes. For port-security, we can work without querying the CAM but it doesn't work, we will need to investigate. | |||||||
Tags | No tags attached. | |||||||
fixed in git revision | ||||||||
fixed in mtn revision | f546d64318f6e8f5d441dd895a1e3460c507d748 | |||||||
Attached Files | Cisco-SNMPv3-port-security-fixes.patch [^] (2,429 bytes) 2011-11-01 10:31 [Show Content] | |||||||
Notes | |
(0002298) obilodeau (reporter) 2011-09-27 12:06 |
committed more documentation regarding the SNMPv3 issues in the 2950 module at revno: eb70eb365b97300d33b0019692f9a2984b676349 |
(0002375) obilodeau (reporter) 2011-10-24 10:49 |
Ok, found out more about this issue. Turns out that if you add a v3 context to a query, subsequent queries will fail. Not sure if this affect specifically only the 2950 or all of our v3. Going straight to getVlan works: # perl -d sbin/pfsetvlan $switch = $switchFactory->instantiate('10.0.0.15'); $x = $switch->getVlan(15); x \$x 0 SCALAR(0xaccf2a0) -> 103 Calling a context-setting method first will fail: # perl -d sbin/pfsetvlan $switch = $switchFactory->instantiate('10.0.0.15'); %y = $switch->getMacBridgePortHash(); $x = $switch->getVlan(15); x \$x 0 SCALAR(0xaccf2a0) -> undef To fix I want to read a bit more about Net::SNMP v3 context's and I've got the feeling that i'll need to disable them after using them. |
(0002409) obilodeau (reporter) 2011-10-31 15:28 |
Turns out "The contextName stays with the object until it is changed.". So I want to unset them after doing a query with a context. Turns out there's no easy way to do so in Net::SNMP so I'll poke directly into a 'private method' to do so: ->_context_name(...) Filed an upstream ticket to get a supported hook: Bug #72075 for Net-SNMP: Method to change the contextName https://rt.cpan.org/Public/Bug/Display.html?id=72075 [^] |
(0002410) obilodeau (reporter) 2011-10-31 16:00 |
private method didn't work, poking at the internal hash with ->{_context_name} did work though. I'll do some more testing tomorrow then update the ticket. |
(0002412) obilodeau (reporter) 2011-11-01 10:32 |
Deleted old patch added new patch. Tests in the labs are positive. |
(0002413) obilodeau (reporter) 2011-11-01 10:39 |
Fix committed into 3_0 branch will be part of our next version. |
(0002458) obilodeau (reporter) 2011-11-21 12:04 |
Fixed released in 3.0.3 today. |
Issue History | |||
Date Modified | Username | Field | Change |
2011-09-27 11:47 | obilodeau | New Issue | |
2011-09-27 11:47 | obilodeau | File Added: cisco-2950-snmpv3-port-security-setVlan-fix.patch | |
2011-09-27 11:48 | obilodeau | Status | new => confirmed |
2011-09-27 12:06 | obilodeau | Note Added: 0002298 | |
2011-10-24 10:49 | obilodeau | Note Added: 0002375 | |
2011-10-31 15:28 | obilodeau | Note Added: 0002409 | |
2011-10-31 15:28 | obilodeau | Status | confirmed => assigned |
2011-10-31 15:28 | obilodeau | Assigned To | => obilodeau |
2011-10-31 16:00 | obilodeau | Note Added: 0002410 | |
2011-11-01 10:29 | obilodeau | Description Updated | |
2011-11-01 10:31 | obilodeau | File Deleted: cisco-2950-snmpv3-port-security-setVlan-fix.patch | |
2011-11-01 10:31 | obilodeau | File Added: Cisco-SNMPv3-port-security-fixes.patch | |
2011-11-01 10:32 | obilodeau | Note Added: 0002412 | |
2011-11-01 10:39 | obilodeau | mtn revision | => f546d64318f6e8f5d441dd895a1e3460c507d748 |
2011-11-01 10:39 | obilodeau | Note Added: 0002413 | |
2011-11-01 10:39 | obilodeau | Status | assigned => resolved |
2011-11-01 10:39 | obilodeau | Fixed in Version | => +1 |
2011-11-01 10:39 | obilodeau | Resolution | open => fixed |
2011-11-21 12:04 | obilodeau | Note Added: 0002458 | |
2011-11-21 12:04 | obilodeau | Target Version | +2 => 3.0.3 |
2011-11-21 12:05 | obilodeau | Status | resolved => closed |
2011-11-21 12:05 | obilodeau | Fixed in Version | +1 => 3.0.3 |
Copyright © 2000 - 2012 MantisBT Group |