Hi all, first off I would like to say that I'm rather new to networking and have a basic understanding. I'm currently interning at a company and they have asked me to map their network topology. The company has a handful of subnets. How do I configure Dude to map each of these subnets while mapping the likes of; routers, switches, printers, machines, firewalls etc. I ran the Dude with default settings on a subnet I supplied, it returned all devices but I couldn't see the switches and firewall it just showed a cloud like image with all devices connected to it? How do I enable it to see firewalls and what switches machines use?
Sorry if my question is vague or incomplete, forgive my ignorance. Any help would be much appreciated!
-
-
KingToastxox
just joined
- Posts: 1
- Joined:
Re: Beginner to 'The Dude', need some advice for mapping topology
You'll need to read about the different layers in a network. In particular, the difference between layer 2 and 3. When you want to discover devices in a network, you (or the tool you're using) will use a method of detecting those devices. For example, at layer 3 your tool might send a message to each address in a given range, and see if any devices respond. A device might not respond out of a sense of security (firewall) or because it's not designed to work at the layer you're testing (ethernet hub). I think you'll need at least two methods of discovery to capture both L2 and L3 information, based on what you've said.
Also, there are different types of maps. You can map the physical connections between devices (this cable plugs into that port) but you can also map the logical connections (this subnet connects to that subnet). These two concepts are difficult to express on one page, so people often end up with two maps for just a single network.
Also, there are different types of maps. You can map the physical connections between devices (this cable plugs into that port) but you can also map the logical connections (this subnet connects to that subnet). These two concepts are difficult to express on one page, so people often end up with two maps for just a single network.
Re: Beginner to 'The Dude', need some advice for mapping topology
You need SNMP setup on routers and switches to read their topology and if you are actually doing networking you should be able to SSH into each device and add SNMP or determine the existing SNMP settings. How many switches routers and firewalls are in the network?
BE CAREFUL. The dude could peg the CPU on routers when it reads the settings from them. If the router is connected to the internet and using BGP the dude will download the entire BGP routing table. Care should be taken in setting up SNMP on the internet routers so that BGP will not be sent to SNMP.
To map layer 3 figure out your default gateway, that is a router. Manually add that as a device in the dude, that is your access router, if your network is laid out enterprise style you have core, distribution, and access devices. Use trace route to www.google.com. Each HOP is another router but you are only interested in routers on the inside of your network. You can't and shouldn't attempt to monitor routers that do not belong to your company. That is one route in your network and can make a layer 3 map out of that.
You can log into a router and print the routing table, or if SNMP is working you can look at the router in the dude and see the routing table. You can decipher your network with the routing table but that is not something you could do with out knowing layer 3. "Show IP route" (CISCO) Will show you every route, many of those are point to point and many of those will be access networks. The point to point routes are distribution and the last hop before you get to the internet would be the core.
No one knows how much you know about networking. Do you know what layer 2 and layer 3 are? If not you need to learn that to build maps that make sense. Like the previous poster said most networks deserve two maps one showing physical (layer 2) and one showing routes (layer 3). To map layer 2 you have to log into devices and see what shows up using the tools built into that device. For Cisco you can type "Show CDP Neighbor" that gives you the names of any device running CDP (Cisco Discovery Protocol) and the port it is connected to. If your entire network is made out of Cisco devices you could map layer 2 manually. I would do it manually since you could affect the network by scanning it.
To use the dude to map the networks, Use the top map as a dash, add a submap for each location/subnet on the dash, inside each submap set the auto-discover range to the subnet the map represents. You do not have to use auto-discover and manually building maps is more accurate, but use auto-discover once then delete the stuff you don't care about and manually add links that make up your connections.
i.e. location 1 submap is subnet 6 which is address 192.168.6.0/24. or 192.168.6.0 through 192.168.6.254.
i.e. location 2 submap subnet 7 which is address 192.168.7.0/24. or 192.168.6.0 through 192.168.6.254.
On the dash connect the submaps with links to show how the subnets/locations connect.
Lebowski
BE CAREFUL. The dude could peg the CPU on routers when it reads the settings from them. If the router is connected to the internet and using BGP the dude will download the entire BGP routing table. Care should be taken in setting up SNMP on the internet routers so that BGP will not be sent to SNMP.
To map layer 3 figure out your default gateway, that is a router. Manually add that as a device in the dude, that is your access router, if your network is laid out enterprise style you have core, distribution, and access devices. Use trace route to www.google.com. Each HOP is another router but you are only interested in routers on the inside of your network. You can't and shouldn't attempt to monitor routers that do not belong to your company. That is one route in your network and can make a layer 3 map out of that.
You can log into a router and print the routing table, or if SNMP is working you can look at the router in the dude and see the routing table. You can decipher your network with the routing table but that is not something you could do with out knowing layer 3. "Show IP route" (CISCO) Will show you every route, many of those are point to point and many of those will be access networks. The point to point routes are distribution and the last hop before you get to the internet would be the core.
No one knows how much you know about networking. Do you know what layer 2 and layer 3 are? If not you need to learn that to build maps that make sense. Like the previous poster said most networks deserve two maps one showing physical (layer 2) and one showing routes (layer 3). To map layer 2 you have to log into devices and see what shows up using the tools built into that device. For Cisco you can type "Show CDP Neighbor" that gives you the names of any device running CDP (Cisco Discovery Protocol) and the port it is connected to. If your entire network is made out of Cisco devices you could map layer 2 manually. I would do it manually since you could affect the network by scanning it.
To use the dude to map the networks, Use the top map as a dash, add a submap for each location/subnet on the dash, inside each submap set the auto-discover range to the subnet the map represents. You do not have to use auto-discover and manually building maps is more accurate, but use auto-discover once then delete the stuff you don't care about and manually add links that make up your connections.
i.e. location 1 submap is subnet 6 which is address 192.168.6.0/24. or 192.168.6.0 through 192.168.6.254.
i.e. location 2 submap subnet 7 which is address 192.168.7.0/24. or 192.168.6.0 through 192.168.6.254.
On the dash connect the submaps with links to show how the subnets/locations connect.
Lebowski
Who is online
Users browsing this forum: No registered users and 40 guests