Technical Notes - Network Monitoring Tools

How to Override Group Based Monitoring Settings for Specific Devices

How to Override Group Based Monitoring Settings for Specific Devices

By default, all the monitoring settings for each device are defined in the Monitoring Profile that is assigned to

Monitoring Group where this specific device is a member of.

Starting from 1.67.1 release Nectus adds ability to override group-based monitoring settings for each device.

Step1: Login to the Nectus Portal and go to the specific device on which you need to perform the monitoring settings override.

Right click on the device and select Properties.

Step 2: Select Metrics Tab in the properties modal and apply all the required overrides to the required metrics.

Check button “Local Override” must be selected for all the metrics that must have priority (override) over Group based monitoring settings.

March 22, 2023/by Web Master

Creating New Interface Monitoring Groups and Profiles

Step 1: Login to the Nectus Portal and go to Monitoring -> Network Monitoring Settings -> SNMP Interfaces Monitoring Settings.

Step 2: Monitoring Profile Creation – Go to the SNMP Interface Monitoring Profile Tab by clicking the Add Profile button.

Name the profile, enable the relevant options, and click the OK button.

Now, we can see that the newly created profile is shown in the table.

Step 3: Monitoring Group Creation – Next, let’s go to the SNMP Interface Monitoring Groups tab and create a new interface monitoring group by clicking Add Group.

Step 4: Assigning Interfaces to Monitoring Group – Click on the interface group name to add the appropriate device interfaces information to the group.

We can also filter the interfaces based on operational status, admin status, site and device types and lastly click on Save button.

Step 5: Assigning Monitoring Profile to Monitoring Group – Enable the monitoring and select the previously created monitoring profile from the dropdown.

Step 6: Defining Alert Recipients for Monitoring Group – Now, let’s configure recipients for alerting by clicking the email button.

It allows us to add SMS and email recipients to a list. Further, we can also select the appropriate alert templates to send alert/sms.

Done.

January 14, 2023/by Web Master

Creating New Device Monitoring Groups and Profiles

Network Monitoring, Technical Notes

Network device monitoring in Nectus is controlled by device monitoring groups and associated monitoring profiles.

There are two default monitoring groups: “Default Monitoring Group” and “No Monitoring Group”

By default all devices are automatically assigned to Default Monitoring Group where all basic monitoring metric are enabled.

“No Monitoring Group” is used as a parking place for devices that do not required monitoring.

In some cases additional monitoring groups may be required and this article explains the steps required to create additional monitoring groups.

Step 1: Login to the Nectus Portal and go to Monitoring -> Network Monitoring Settings -> SNMP Devices Monitoring Settings.

Step 2: Monitoring Profile Creation – Go to the SNMP Device Monitoring Profile by clicking the Add Profile button. Name the profile, enable the relevant options, and click the OK button.

Now, we can see that the newly created profile is shown in the table.

Step 3: Monitoring Group Creation – Next, let’s go to the SNMP Device Monitoring Groups tab and create a new device monitoring group.

Step 4: Assigning Devices to Monitoring Group – Click on the device group name to add the appropriate device information to the group and lastly click on Save and Ok buttons.

Step 5: Assigning Monitoring Profile to Monitoring Group – Enable the monitoring and select the previously created monitoring profile from the dropdown.

Step 6: Defining Alert Recipients for Monitoring Group – Now, let’s configure recipients for alerting by clicking the email button. It allows us to add SMS and email recipients to a list.

Done.

January 14, 2023/by Web Master

Nectus SAML Integration

Nectus Installation, Technical Notes

Step 1: Log in to the Nectus Portal and go to Settings > General Settings > SAML Integration.

Step 2: In the SAML Integration Modal, under the General tab, provide the Entity ID, SSO URL and SLO URL, Certificate, Organization URL and API token.

Refer to SAML provider documentation on how to generate Certificate and API key.

Step 3: Under Attribute Mappings, provide the SAML attributes for First Name, Last Name, Email and membership Groups.

This mapping is between SAML attributes and Nectus fields.

Step 4: Click on the “+” button to add the SAML user groups from the SAML Server.

Members of the selected groups will be allowed to login to Nectus.

Step 5: Click on the “+” button to add individual user accounts from the SAML Server.

Selected users will be allowed to login to Nectus.

January 5, 2023/by Web Master

Automating Selection of Interfaces Enabled for Monitoring

Network Monitoring, Technical Notes

Automating Selection of Interfaces Enabled for Monitoring

By default, Nectus does not monitor any Interfaces and you must select which interfaces you want to be monitored.

You can select Interfaces manually by adding it to one of the Interface monitoring groups or you can build auto-population rules

that will automatically select Interfaces based on predefined rules. Rules will be executed once a day (at 2:00AM)

Step 1: Login to the Nectus portal and go to Monitoring -> Network Monitoring Settings -> SNMP Interfaces Monitoring Settings option.

Step 2: Go to the SNMP Interfaces Monitoring Groups tab and click on the Auto Population Rules under the Default Monitoring Group.

Step 3: Click on the Rule to add a new auto-population rule. Once a day, interfaces that conform to the defined rules

will be added to the corresponding monitoring group.

You can add individual rules or you can create group of rules with AND/OR logic.

December 14, 2022/by Web Master

How to Manually Add Device Classification for Unknown Devices

Nectus Installation, Network Discovery, Technical Notes

How to Manually Add Device Classification for Unknown Devices

Step 1:

Nectus maintains internal device classification database where each device is assigned a major platform category and a device model name.

Classification is associated with device SNMP Platform OID: (.1.3.6.1.2.1.1.2.0)

Classification database is updated daily and support for new devices included in every Nectus update. But in some rare cases Nectus might not have classification info for specific device and this device will appear under “Unknow Category” in SNMP device tree.

Nectus GUI allows customer to manually add Unknown device classification information directly into Nectus server database.

Right-click on SNMP Platform ID value and select “Add Product Definition for x.x.x.x.x.x.x” from the SNMP Devices context menu.

Step 2: As the product definition modal opens, provide the sub-category (product) name, and select a category from the drop-down menu. If there is no applicable category name in the drop-down menu, you can define a new category name.

December 6, 2022/by Web Master

Controlling Nectus Database Size Growth with Data Retention Rules

Nectus Installation, Network Monitoring, Technical Notes

Controlling Nectus Database Size with Data Retention Rules

Step 1: Login to Nectus portal and go to Monitoring 🡪 Global Monitoring Settings option.

Step 2: Go to the “Data Retention” tab in the Monitoring Settings modal. It shows retention settings in days for each monitoring metric.

Further, it also shows the current database size and the data daily growth rate.

These two options give you a good idea of how to plan your retention period and storage requirements.

Step 3: Provide the retention period in days with maximum of 3650 days (10 years) and minimum of 1 day.

Step 4: We also have two key options such as Refresh and Cleanup.

Refresh – Will fetch updated size information from the server

Cleanup – Starts removal of monitoring data from the Nectus database according to retention settings.

Note: Normally Cleanup happens automatically every day at 2:00AM.

November 24, 2022/by Web Master

How to Control Logging in Nectus via .ini Files

Nectus Installation, Technical Notes

How to Control Logging in Nectus via .ini Files

If there is a need to reduce amount of disk space Nectus Logs take you can adjust logging verbosity or disable logging completely for each Nectus Service.

Logging settings for each service is controlled by .INI files located in C:\Program Files\Nectus\

Any changes to .INI files do require restart of the corresponding Nectus Service.

To adjust logging settings follow these steps

Step 1: Stop the required Nectus services on the server.

Step 2: Go to “C:\Program Files\Nectus” on the Nectus server.

Step 3: Update the logging configuration in corresponding .ini files located in “C:\Program Files\Nectus” as per the requirement and save them.

Step 4: Start all the Nectus services on the server.

Step 5: To check the current size of log folders, navigate to “C:\Program Files\Nectus\Logs.”

November 17, 2022/by Web Master

How to Monitor Number of Active TCP Sessions on PaloAlto Firewalls

Network Monitoring, Technical Notes

How to Monitor Number of Active TCP Sessions on PaloAlto Firewalls

Quick Start

Step 1: Login to Nectus and go to Monitoring -> Network Monitoring Settings -> Custom SNMP Trackers.

Step 2: Click on the Create button to create a new SNMP Custom Tracker that will be collecting number of active TCP sessions every 5min.

Palo Alto SNMP OID that returns number of active TCP sessions: 1.3.6.1.4.1.25461.2.1.2.3.4.0

Step 3: Enable the tracker, provide the tracker name, SNMP OID, unit name and data type.

Alerting option can be enable with predefined threshold value.

Step 4: If not created in advance, create the SNMP Device View by clicking the + (plus) button.

Provide the view name and select the Palo Alto Firewalls from available device list for monitoring.

Click “Ok” to finish tracker creation.

Step 5: For reporting, Go to the Reports -> “Top” reports -> Top Custom SNMP Trackers

Step 6: Select the appropriate report and tracker name to get the max. and min. values.

Click on the Graph button to get the tracker trend in visual form.

Done.

November 9, 2022/by Web Master

How to Monitor Number of Active UDP Sessions on PaloAlto Firewalls

Network Monitoring, Technical Notes

How to Monitor Number of Active UDP Sessions on PaloAlto Firewalls

Quick Start

Step 1: Login to Nectus and go to Monitoring -> Network Monitoring Settings -> Custom SNMP Trackers.

Step 2: Click on the Create button to create a new SNMP Custom Tracker that will be collecting number of active UDP sessions every 5min.

Palo Alto SNMP OID that returns number of active UDP sessions: 1.3.6.1.4.1.25461.2.1.2.3.5.0

Step 3: Enable the tracker, provide the tracker name, SNMP OID, unit name and data type.

Alerting option can be enable with predefined threshold value.

Step 4: If not created in advance, create the SNMP Device View by clicking the + (plus) button.

Provide the view name and select the Palo Alto Firewalls from available device list for monitoring.

Click “Ok” to finish tracker creation.

Step 5: For reporting, Go to the Reports -> “Top” reports -> Top Custom SNMP Trackers

Step 6: Select the appropriate report and tracker name to get the max. and min. values.

Click on the Graph button to get the tracker trend in visual form.

Done.

November 9, 2022/by Web Master

How to Monitor Number of Active ICMP Sessions on PaloAlto Firewalls

Network Monitoring, Technical Notes

How to Monitor Number of Active ICMP Sessions on PaloAlto Firewalls

Quick Start

Step 1: Login to Nectus and go to Monitoring -> Network Monitoring Settings -> Custom SNMP Trackers.

Step 2: Click on the Create button to create a new SNMP Custom Tracker that will be collecting number of active ICMP sessions every 5min.

Palo Alto SNMP OID that returns number of active ICMP sessions: 1.3.6.1.4.1.25461.2.1.2.3.6.0

Step 3: Enable the tracker, provide the tracker name, SNMP OID, unit name and data type.

Alerting option can be enable with predefined threshold value.

Step 4: If not created in advance, create the SNMP Device View by clicking the + (plus) button. Provide the view name and select the Palo Alto Firewalls from available device list for monitoring.

Click “Ok” to finish tracker creation.

Step 5: For reporting, Go to the Reports -> “Top” reports -> Top Custom SNMP Trackers

Step 6: Select the appropriate report and tracker name to get the max. and min. values. Click on the Graph button to get the tracker trend in visual form.

Done.

November 9, 2022/by Web Master

How to Monitor Number of Palo Alto VPN (Global Protect) Users

Network Monitoring, Technical Notes

How to Monitor Number of Palo Alto VPN (Global Protect) Users

Step 1: Login to Nectus and go to Monitoring -> Network Monitoring Settings -> Custom SNMP Trackers.

Step 2: Click on the Create button to create a new SNMP Custom Tracker that will be collecting number of connected VPN users every 5min.

Palo Alto SNMP OID that returns number of connected users: 1.3.6.1.4.1.25461.2.1.2.5.1.3.0

Step 3: Enable the tracker, provide the tracker name, SNMP OID, unit name and data type.

Alerting option can be enabled with predefined threshold values.

Step 4: If not created in advance, create the SNMP Device View by clicking the + (plus) button.

Provide the view name and select the Palo Alto Firewalls from available device list for monitoring.

Click “Ok” to finish tracker creation.

Step 5: For reporting, Go to the Reports -> “Top” reports -> Top Custom SNMP Trackers

Step 6: Select the appropriate report and tracker name to get the max. and min. values.

Click on the Graph button to get the tracker trend in visual form.

Done.

November 8, 2022/by Web Master

Nectus DB Migration by manually copying DB files to a new server.

Nectus Installation, Technical Notes

Nectus DB Migration by manually copying DB to a new server.

Step 1: Prepare new server by performing clean Nectus installation with the same Nectus version as on old server

Step 2: Stop all Nectus services on the new server

Step 3: Delete all the content from “C:\Program Files\Nectus\Database” folder on new server.

Step 4: Copy complete “C:\Program Files\Nectus\Database” folder from the old Nectus server to the “C:\Program Files\Nectus\Database” folder on the new server

Step 5: Copy file “C:\Program Files\Nectus\Web\Apache24\htdocs\protected\config\database.ini” from old server to the same location on new server.

(Overwrite existing file).

Step 6: In all *.ini files located in “C:\Program Files\Nectus” folder on new server update

DatabasePassword=wL1Kdnl6h$ line with a new password for username “vconsole” which can be found in

“C:\Program Files\Nectus\Web\Apache24\htdocs\protected\config\database.ini” file.

Step 7: Open the Registry Editor and in “HKEY_LOCAL_MACHINE -> SOFTWARE -> Virtual Console LLC -> Nectus”

update passwords for the three database accounts. (New passwords can be found in database.ini file)

Step 8: Start all Nectus Services

Migration Complete.

November 3, 2022/by Web Master

Performing Nectus DB migration to a new server with “DB Migration” tool

Nectus Installation, Technical Notes

Performing Nectus DB migration to a new server with “DB Migration” tool

DB Migration tool is only available to users with Super Admin rights.

Prepare new server with clean Nectus installation with the same Nectus version as on old server.

Step 1: Login to the old Nectus server and go to Settings -> Database -> DB Migration.

Step 2: In the DB Migration window specify IP address of the new server and password for “vconsole” DB account from the new server.

Note: Password for “vconsole” account can be found in the

“C:\Program Files\Nectus\Web\Apache24\htdocs\protected\config\database.ini” file on the new server.

Step 3: Click on the Test Connection. It will perform the credentials and Nectus version checks.

Step 4: Start migration by clicking on “Start DB migration”.

Depending on the database size migration may take several hours.

October 29, 2022/by Web Master

How to Generate Alerts Based on SNMP Traps

SNMP Hints, Technical Notes

Generating Alerts Based on SNMP Traps

Step 1: Login to the Nectus portal, go to the Logs -> SNMP Traps.

Step 2: You will see two Tabs “SNMP Traps” and “SNMP Trap OID Alerts”.

“SNMP Traps” Tab contain list of all the SNMP Traps received by Nectus server from all the network devices.

“SNMP Trap OID Alerts” Tab contains list of pre-configured (default) alert rules for different SNMP traps.

You can search if specific SNMP Trap OID already have an alert rule defined and enable it.

If alert rule already exists, you just need to activate it by clicking on “Enable” button inside the rule.

Step 3: If there is no rule exists, click on “Create” button to create a new alert rule.

Complete all the required alert rule parameters.

Step 4: Click on “Edit Template” to review and adjust the Alert template format

Done.

October 27, 2022/by Web Master

How to Monitor Windows Services with Nectus

Windows Server (WMI) Monitoring

How to Monitor Windows Services with Nectus

Quick Start Guide

Step 1: Login to the Nectus portal, Add the WMI Account for accessing the Windows Servers.

Go to Settings -> General Settings -> WMI Integration.

Click on the Add button in the WMI Integration Modal.

Step 2: Provide Windows Domain/Server information with user credentials and click on the Test button.

Step 3: Now, let’s create a WMI group and add the Windows Server into that group.

Go to WMI Servers and right click to Add a Group.

Step 4: Give a valid name for the WMI Group and enable the monitoring.

Assign a Monitoring Profile to the group.

Step 5: Click Edit profile and go to the “Services” Tab and check the necessary alerting checking boxes.

Step 7: Add the Service information by clicking the Options button.

Here, we added the “Print Spooler” Service to monitor and enable the checkbox to start the Service, if it had stopped.

Add the Service name in the text box by pressing “+” button.

Save settings to monitoring profile.

Step 8: Now, we had successfully applied the Monitoring Profile. Click on “Ok” button.

Step 9: Now, add the Windows Server to the group we created.

Right click on the created group and select the Add New WMI Server option.

Step 10: Provide the IP address, select the appropriate WMI Monitoring Profile Group and WMI Account for access.

Click on the “Test” button to test the server access.

Step 6b: Now we’ll see the newly added server in the below screenshot.

September 8, 2022/by Web Master

How to use Custom Tags in Nectus

Network Devices Configuration Backup, Technical Notes

How to use Custom Tags in Nectus

Step 1: Login to the Nectus portal with a valid credentials. Go to Settings -> General Settings -> Tags.

Step 2: After clicking the Tags option, it will open a Tags modal with five tabs – SNMP Devices, Interfaces, WMI Servers, IP Monitors, Sites.

In this article, we’ll choose the IP Monitors and create 3 tags.

Step 3: After clicking the Create button, we’ll get the Add IP Monitor Custom Tag Modal. Provide name and pick the input type from available three options: Type-In, Single Select, Multi Select.

Step 3a: Type-in option allows the user to type the value of the tag as per their need in text form.

Step 3b: Single Select option allows the user select only one tag value at the time of assignment.

Step 3c: Multi Select option allows the user select one or more value at the time of assignment.

Step 4: Here, for the demo purposes, we had created 3 tags as shown below.

Step 5: Now, let’s define values for custom tags in the existing IP Monitor. Right-click on selected IP and go to the Properties.

Step 6: Select the Tags tab from the Edit IP Monitor modal and fill the Tags Values accordingly.

August 20, 2022/by Web Master

How to monitor the status of Windows Processes

Technical Notes, Windows Server (WMI) Monitoring

How to monitor the status of Windows Processes.

Quick Start Guide

Step 1: Login to the Nectus portal, Add the WMI Account for accessing the Windows Machine. Go to Settings -> General Settings -> WMI Integration.

Click on the Add button in the WMI Integration Modal.

Step 2: Provide Windows Domain/Server information with user credentials and click on the Test button.

Step 2a: With the valid credentials and connectivity, we should get the success message as displayed in the test modal.

Step 3: Now, let’s create a WMI group and add the Windows Server into that group.

Go to WMI Servers and right click to Add a Group.

Step 4: Give a valid name, enable the monitoring to select the appropriate Monitoring and ICMP profiles.

Step 4a: We can also create a new monitoring profile by clicking the “+” icon.

Check the required boxes based on your monitoring requirements.

For any processes alerting, Go to Processes Tab, then select alert option to check the process state.

Step 4b: Add the process information by clicking the options button.

Consecutive Reading options helps monitor whether process is running or not running for defined range [1-256] consecutive times.

It helps to reduce the false alerts.

Add the process name in the text box by pressing “+” button.

Step 5: Now, add the WMI Server information which has to be monitored.

Right click on the created group and select the Add New WMI Server option.

Step 6: Provide a valid name, IP address, select the appropriate WMI Monitoring Profile Group and WMI Account for access.

Click on the Test button to test the server access.

Step 7: Now we had enabled the monitoring for the Windows processes on Nectus.

Whenever the condition satisfies, then alerts get generated. We can view the alerts under Alerts -> Alert log.

We’ll also get the alerts in email form by enabling email alerts option with proper SMTP configuration.

Congrats, now we have successfully created a monitoring profile to monitor the process in a Windows Server.

May 19, 2022/by Web Master

How to use Nectus API Interface

Nectus Installation, Technical Notes

How to use Nectus API Interface

Quick Start Guide

Step 1: Log in to Nectus Portal. On the home page, select General Settings -> Miscellaneous.

Step 2: Next, we have to generate a new client ID and client secret for creating the token. Go to API Accounts and click on Create.

Step 3: Check the Enable box, enter the Client ID & Secret in the text box, and select the necessary access level (Read-Write or Read-Only) for the modules.

Here, we have given the Client ID as API_USER_1 and Client Secret as Nectus123. Click on the Ok button to create it.

Step 4: Each API Account with the Client’s information obtains a unique ID and gets listed.

We also have the Edit button to modify and the Delete button to remove the existing accounts with ID. Click on the Ok button to close the miscellaneous modal.

Step 5: Now, we have to create the API token with the help of the generated Client ID & Client Secret.

Here, we are using the POSTMAN Application for the sake of the demo. Use the below query and headers to get the access token.

API URL: https://<servername>/token/get

Request Type: GET

Headers: Authorization – client_id=API_USER_1 client_secret=Nectus123

Step 6: Click the Send button to obtain the Status Code with 200 Ok with the token details in the response body.

Step 7: Now, we can use the generated access token for all Nectus API’s.

Let’s try with some API Request.

API URL: https://<servername>/IPMonitor/restAPI/getStatusIPv4Monitor

Request Type: GET

Headers: Authorization – token=<generated-access-token>

After clicking the Send button, we obtain the list of IPv4Monitor groups with the associated IP address and status.

Congrats! We have successfully used the Nectus API interface to access the monitoring data points which will ease the third-party integration with other systems.

April 18, 2022/by Web Master

How to Add and Configure IP Monitors

Network Monitoring, Technical Notes

Step 1: Login to Nectus portal. Then, click on IP Monitors.

Step 2: Right Click on IP Monitors and select Add Group to create a new monitoring group.

Step 3: Provide a unique name to the group and check the “Enable monitoring” option.

If monitoring requires custom ICMP monitoring timers then select optional Custom ICMP Monitoring Profile.

Choose the appropriate Polling Agent (Default is Main Polling Agent) and provide optional physical address.

Click on Ok to create a new IP monitor group.

Step 4: Now, the new group gets added under IP Monitors. The square icon indicates the status and since no device is added in the group, it’s shown in grey color.

Step 5: Right click on the IP Monitor Group to add a new IP Monitor into the group.

Step 6: Under the General Info Tab, provide a valid IP, name and optional physical address.

Then, click on Ok button to Add IP Monitor.

Step 7: To test the reachabilty of IP Monitor, we can use Ping this IPv4 Monitor option. It performs a live ICMP ping test to the IP Monitor.

Step 8: It also provides the options to repeat the test and continue ping tests.

Step 9: To get the current device monitoring information, go to View IPv4 Monitor Info.

Step 10: The General Info provides the basic details about the device.

Alerts tab contains all the monitoring alerts. All alerts can be exported in *.csv format for further drill down. Click on eye icon in each row to get more information about the alert.

Step 11: Right click on the device and Graphs to get a plot based on UP/DOWN state, latencies etc.

Step 12: We can share the polled data from Nectus in several ways.

Step 13: We can share the access to graph using Generate Direct Access URL.

Step 14: Further, we can also export all data points in a *.csv form using Export All option.

Step 15: We can select multiple devices using CTRL + Left Click. Right click on any one to get the available options.

Step 16: Select the Graphs option to obtain the consolidated view of the plots for the selected devices.

Step 17: To edit the added devices, right click on the device and choose properties.

Step 18: Bulk import through a *.csv file can be performed and sample file can be downloaded from Import from CSV modal for quick reference.

Step 19: Post the data import completion, skim through the device information, and select them to save into the database for the monitoring.

Step 20: Additionally, we can select Delete IPv4 Monitor to delete the devices from monitoring.

Congrats! We have successfully explored the lifecycle management of devices for ICMP monitoring using IP Monitor.

April 16, 2022/by Web Master