Re : ifindex and not all interfaces and too many interfaces

November 25, 2014, 1:09 pm

≫ Next: Re : ifindex and not all interfaces and too many interfaces

≪ Previous: Re : ifindex and not all interfaces and too many interfaces

$

0

0

Hi

Thank you for writing to us. Please follow the below steps and send us the output.

1) Connect to the URL " http://serverip:(portnumber)/netflow/jspui/runQuery.jsp "

2) Execute the Query

select * from NetFlow_Interface

Thanks & Regards,

Aravind Lenin
Technical Support Engg- Netflow Analyzer

---

Re : ifindex and not all interfaces and too many interfaces

November 25, 2014, 1:52 pm

≫ Next: Re : ifindex and not all interfaces and too many interfaces

≪ Previous: Re : ifindex and not all interfaces and too many interfaces

$

0

0

Here's just the ones without that don't have a state of 3. Why are there two rows with ifindex0 with an interface type of 0 with a state of 0 for one of them and a state of 1 for the other? This is normal? I sent the full output with all states to your support email. I'd like to get the ones with state 3 removed.

select * from NetFlow_Interface where state != 3

interface_id router_id interface_index snmp_description speed link_name state nbar_state poll_state out_speed qos_poll_state sampling_rate media_state interface_type

5000005 50001 7 FastEthernet0/0.4 100000000 FastEthernet0/0.4 0 1 1 100000000 1 1 2 135

5000003 50001 0 IfIndex0 1000000 IfIndex0 0 2 1 1000000 1 1 2 0

5000001 50001 1 Serial0/0/0 1536000 Serial0/0/0 0 1 1 1536000 2 1 2 23

5000002 50001 6 FastEthernet0/0.3 100000000 FastEthernet0/0.3 2 1 1 100000000 1 1 2 135

5000004 50001 5 FastEthernet0/0.2 100000000 FastEthernet0/0.2 2 1 1 100000000 1 1 2 135

5055355 50002 0 IfIndex0 1000000 IfIndex0 1 2 1 1000000 1 1 2 0

Re : ifindex and not all interfaces and too many interfaces

November 25, 2014, 2:42 pm

≫ Next: Re : ifindex and not all interfaces and too many interfaces

≪ Previous: Re : ifindex and not all interfaces and too many interfaces

$

0

0

Hi

This is normal, if device send flow with ifindex0, NetFlow Analyzer will not take those interface in account. These interfaces are dummy interfaces and will not affect reporting NetFlow Analyzer.


Thanks & Regards,

Aravind Lenin
Technical Support Engg- Netflow Analyzer

Re : ifindex and not all interfaces and too many interfaces

November 25, 2014, 2:51 pm

≫ Next: Re : Invalid path /netflow/jspui/dashBoard was requested

≪ Previous: Re : ifindex and not all interfaces and too many interfaces

$

0

0

​Is there a way to "clean up" all the garbage interfaces that have a state of 3?

I sent a full interface query to the support email.

Re : Invalid path /netflow/jspui/dashBoard was requested

November 25, 2014, 7:25 pm

≫ Next: install netflow on centos 6.3

≪ Previous: Re : ifindex and not all interfaces and too many interfaces

$

0

0

Hi,

Thank you for the logs, we were able to start the product by changing the web server port.
Kindly revert in case of any issue.

Regards,
Karthik.k
Netflow analyzer TAC

install netflow on centos 6.3

December 2, 2014, 8:50 am

≫ Next: Free edition - license expired error

≪ Previous: Re : Invalid path /netflow/jspui/dashBoard was requested

$

0

0

Hello ,

 

i've installed ManageEngine_NetFlowAnalyzer_9100_64bit.bin on centos 6.3

 

the service is get stopped by itself after few second.

 

would you please help .

 

Regards,

Hossem

Free edition - license expired error

December 11, 2014, 1:58 am

≫ Next: Re : Free edition - license expired error

≪ Previous: install netflow on centos 6.3

$

0

0

Hello
After logging in to free edition the following message is returned

License expired. Please upgrade license from Central Reporting Server.

We are monitoring 2 interfaces.
Any idea of what has happened?

thank you
Giorgio

Re : Free edition - license expired error

December 11, 2014, 4:52 am

≫ Next: Re : Free edition - license expired error

≪ Previous: Free edition - license expired error

$

0

0

HI,

I think you have installed Distributed edition of NetFlow analyzer which do not have a free edition. If you wish to use free edition, you can install NetFlow Analyzer Essential edition and monitor 2 interfaces for free.

Thanks & Regards,

Senthil.N

---

Re : Free edition - license expired error

December 11, 2014, 5:15 am

≫ Next: Re : Free edition - license expired error

≪ Previous: Re : Free edition - license expired error

$

0

0

Hi,
thank you for your answer.

The current version has been running since May, so I think it's the correct version.
What else can be?

Re : Free edition - license expired error

December 11, 2014, 5:46 am

≫ Next: Re : Free edition - license expired error

≪ Previous: Re : Free edition - license expired error

$

0

0

Hi, 

You can restart the netflow analyzer service and check. Also, let usknow if the disk space in NetFlow installed drive got filled up which caused this issue. 

Regards, 

Senthil.N

Re : Free edition - license expired error

December 11, 2014, 6:17 am

≫ Next: Re : Free edition - license expired error

≪ Previous: Re : Free edition - license expired error

$

0

0

Hello,
disk is not full (actually nearly empty), and also after service restart, I have the same problem.


I had a look to license xml file in lib directory and it looks fine

regards
      Giorgio

Re : Free edition - license expired error

December 11, 2014, 6:57 am

≫ Next: How to know the top visited sites

≪ Previous: Re : Free edition - license expired error

$

0

0

Hi,

Thank you for writing to us. It seems that you have installed the Trial version of NetFlow Analyzer Distributed Edition and once it is expired, you are not able to see any information.

Please uninstall the current version and install the latest version for NetFlow Analyzer standalone version from the below link and check on the issue:

http://www.manageengine.com/products/netflow/2028821/ManageEngine_NetFlowAnalyzer_10200_64bit.exe


Thanks & Regards,

Aravind Lenin
Technical Support Engg- Netflow Analyzer

How to know the top visited sites

December 13, 2014, 2:54 pm

≫ Next: Re : How to know the top visited sites

≪ Previous: Re : Free edition - license expired error

$

0

0

How to know the top visited sites when using Netflow Analyzer.
Is this feature available per site and per user?

Thanks.

Re : How to know the top visited sites

December 14, 2014, 8:15 pm

≫ Next: SSL: Self-Signed Certificate problems...

≪ Previous: How to know the top visited sites

$

0

0

Hi, 

Thank you for visiting our forum site. Your requirement can be met in 2 ways. 

1. In the Interface drill down page, you can manually create a site map for restricted sites and monitor the traffic per site. 
2. If your router supports Cisco's AVC feature, you can view this in AVC (Number of hits). Please have a look below http://demo.netflowanalyzer.com/netflow/jspui/avcReports.jsp?iI=5000026&groupID=-1&graphType=speed&showIN=true&ipgroup=&ipGroupName=&view=global&bussView=&isNBAR=true [username/password : admin/admin]. To know more about cisco AVC in NetFlow analyzer, please visit the below links. https://blogs.manageengine.com/network/netflowanalyzer/2014/01/28/application-visibility-and-control-for-better-bandwidth-analysis-2.html  https://blogs.manageengine.com/network/netflowanalyzer/2014/02/27/analyzing-art-using-netflow-analyzer.html

Regards, 

Senthil.N

SSL: Self-Signed Certificate problems...

December 15, 2014, 1:48 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: Re : How to know the top visited sites

$

0

0

Using NFA Free/Professional Edition.  I've looked on Google and the forums for this.

We use a Microsoft CA and I've got a .PFX file that I copied into the NFAHOME \conf directory.  I modified my server.xml file like the following:

keystoreFile="./conf/nfa.pfx" keystoreType="pkcs12" keystorePass="mypassword"

I have verified with keytool that the certificate as well as the root is in the pfx file.  Everything appears in that when I go to the site the certificate shows properly. However I noticed that the log directory has the serverout_x.log files and they are 10MB each and build up quickly.  I even went back to using the included certificates created from sslGen.bat.  Even then the serverout_x.logs build up fast.  They do this because of the following error.  Is this happening because JAVA needs to find these in the cacerts under the JREHOME\security directory? Note that we also have EventLog Analyzer and configured the same way and the server_#.log files don't have these errors in them

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.Alerts.getSSLException(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.SSLSocketImpl.fatal(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.Handshaker.fatalSE(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.ClientHandshaker.serverCertificate(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.ClientHandshaker.processMessage(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.Handshaker.processLoop(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.Handshaker.process_record(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.SSLSocketImpl.readRecord(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.SSLSocketImpl.performInitialHandshake(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.sun.net.ssl.internal.ssl.SSLSocketImpl.startHandshake(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at sun.net.www.protocol.https.HttpsClient.afterConnect(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at sun.net.www.protocol.https.AbstractDelegateHttpsURLConnection.connect(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at sun.net.www.protocol.https.HttpsURLConnectionImpl.getInputStream(Unknown Source)|

[12:35:12:370]|[12-15-2014]|[SYSOUT]|[INFO]|[24]: at com.adventnet.netflow.dbutils.NFClientUtil.isServerAlreadyRunning(NFClientUtil.java:190)|

---

Re : SSL: Self-Signed Certificate problems...

December 15, 2014, 2:00 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: SSL: Self-Signed Certificate problems...

$

0

0

As a follow up to this.  Is it a problem is there is only 1 alias in the keystore?  Meaning there one alias for the website certificate but the root is just seen as Certificate #2?  There is no additional alias for it.  I'm guessing this is the problem and will get them into separate aliases.  It's strange that EventLogAnalyzer doesn't complain.

Re : SSL: Self-Signed Certificate problems...

December 15, 2014, 2:28 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: Re : SSL: Self-Signed Certificate problems...

$

0

0

Hi ,

Thank you for writing to us. You need to import server.keystore file from the .PFX certificate and then associate it with NetFlow Analyzer server. Please follow the below steps to do the same:

1. Stop the NetFlow Analyzer service.

3. Copy the .PFX file to NetFlow_Home/jre/bin .

4. Navigate to NetFlow_Home/jre/bin in a command prompt and execute the below commands:

keytool -import -keystore -srckeystore (cert_name).pfx -destkeystore server.keystore -srcstoretype pkcs12

please enter the correct password.Once it is executed proper, it will create a server.keystore file under NetFlow_Home/jre/bin

5. Copy the server.keystore file from NetFlow_Home/jre/bin to NetFlow_Home/conf

6. Put the correct keystore password under server.xml under NetFlow_Home/conf and set the keystore File location as ../conf/server.keystore.

7 Start the NetFlow Analyzer service.

Thanks & Regards,

Aravind Lenin
Technical Support Engg- Netflow Analyzer

Re : SSL: Self-Signed Certificate problems...

December 15, 2014, 3:07 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: Re : SSL: Self-Signed Certificate problems...

$

0

0

First I converted with OPENSSL the PKCS to PEM. Then I copy and pasted the root cert section and saved as a separate file. Then imported into a new keystore. Worked fine.  Then I did an export of the cert this time not wiht all certs in the chain. Now I have a PKCS file with just hte private key and site cert. Then I did as you mentioned some time ago. I've done this before. All seemed to work fine. I then changed my server.xml to not have the PKCS type in there and changed the name. Password is the same. My keystore now has two separate entries. One for the site cert and one for the root cert. I still get the same problem.  According to the below link about Tomcat I'm doing it correctly.  It's the same as I found on your web site for AdSelfService Plus

"./conf/nfa.keystore" keystorePass="mypassword" 

https://www.sslshopper.com/tomcat-ssl-installation-instructions.html

https://forums.manageengine.com/topic/adding-3rd-party-ssl-certificate

Re : SSL: Self-Signed Certificate problems...

December 15, 2014, 4:10 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: Re : SSL: Self-Signed Certificate problems...

$

0

0

Hi ,

Thank you for writing to us. As you are having a PFX cert file, you have to import the cert in keystore file named server.keystore in PKCS12 format alone. Once you generate the keystore file copy that to the conf directory in the NetFlow folder and associate it to the server.xml and start the service.

If you have any issue, please send us an email to netflowanalyzer-support@manageengine.com with you PFX file and password, we will generate an keystore and give it to you.

Thanks & Regards,

Aravind Lenin
Technical Support Engg- Netflow Analyzer

Re : SSL: Self-Signed Certificate problems...

December 15, 2014, 4:31 pm

≫ Next: Re : SSL: Self-Signed Certificate problems...

≪ Previous: Re : SSL: Self-Signed Certificate problems...

$

0

0

Yeah thats what I basically did. I went on a hunch that JAVA was looking at cacerts instead of for some reason. So I renamed cacerts and put my keystore file in the directory JAVAHOME\lib\security and renamed it cacerts. Then I restarted. I get the following error now instead. SILVERTIP is a machine name. The following problem is because I made a certificate that does NOT match the servername.

19:25:43:699]|[12-15-2014]|[SYSOUT]|[INFO]|[23]: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No subject alternative DNS name matching silvertip found.|

Definitely it's looking in CACERTS for the TrustedRoot cert.