SM NetworkScanner

From CoolSolutionsWiki

SUSE Manager Main Page

Contents

SUSE Manager Network Scanner

About

SUSE Manager Network Scanner is a software tool for scanning a network and finding hosts in it.

Current status

WARNING! Network Scanner is in a "Bloody Alpha" state. This means, in some cases may not exactly figure out your network layout. Make sure you get latest updates, we're cranking!

Requirements

- Java Runtime 1.6 from the following major vendor: IcedTea, OpenJDK, Oracle Java, IBM Java.

- Python 2.4 or better (for client).

- jpcap (http://jpcap.sourceforge.net/)

- SUSE Linux Enterprise. :-)

- One network port. By default, running on port 5000 and listening only to a localhost.


Installation Instructions

The installation procedure described below is possible only on SUSE Linux family (SLE and openSUSE). Assuming Zypper contains all required repositories, please follow the following steps:

1. Install the SUSE Manager Network Discovery daemon:

  sudo zypper install sm-network-discovery

2. Install client for the above:

  sudo zypper install sm-network-discovery-client


Configuration

Network Scanner does not need SNMP protocol or any special hints from your network other than just an ability to send ICMP packets to ping its targets. This gives an advantage to work on any network layout without any specific configuration and assumptions that some credentials needs to be sent somewhere in order to get required precise starting info. However, it still requires configuration, which essentially has default values except the network device on which daemon is listening on.

To know configuration details:

   man sm-netscan.conf


Usage

Network Scanner consists of two pars: daemon that discovers the network and the client that returns you already captured data.

To start the daemon:

   # rcsm-network-discovery start

To view scanned networks (after some time), please use SUSE Manager Network Discovery client:

   sm-netscan --help

Typically, to see found subnets, issue the following command:

   sm-netscan --subnets

To see the hosts in particular subnets, issue the following command:

   sm-netscan --hosts=<subnet IP>

More details, see the man page for sm-netscan:

   man sm-netscan

Other usage

Network Discovery client can also output the data in XML. To do so, you need to pass "format" parameter (see the man page for more details). It is possible to reuse the output in your own scripts by transforming the output with XSLT template, for example.


FAQ

Q: Do I need to pass IP range in order to get scanner know it?

A: No. The scanner is designed to "just work". All you do is just run it and leave it. It will periodically re-scan existing map and will find your new hosts you've just added recently.


Q: Does it alters my network traffic?

A: No! Scanner is only listening and never touches your precious enterprise packets ever!


Q: Is it secure?

A: Try to hack it and tell us! :) In fact, it is localhost-only system, where client has read-only functionality.


Q: Would be cool to have it inside SUSE Manager UI!

A: We're working on it!


Q: Is it IPv6 compatible?

A: And yes and no. Inside the scanner is all IP version agnostic. Outside of the scanner are IPv4 routers and they will last for the next half of the decade. So while we are moving towards IPv6, it is still lengthy process. As long as you give us better update and demand, we will move faster!