AirWave and Network Management

Reply
Occasional Contributor II
Posts: 41
Registered: ‎04-01-2009

Motorola 5131 mismatches

Does any one currently have moto's 5131's deployed and monitoring via AMP?

I currently have a few locations with 5131s installed and adapted to a RFS6000. I have been able to work out my template for the RFS6000's but have been unsucessfull with the APs themselves. here is where I run into issues when the AMP audits the config:

// Network-Firewall configuration
network
firewall
set mode enable
set nat-timeout 10
set syn enable
Actual set srset rule lan lan2 allow
Desired set src enable
Desired set win enable
Desired set ftp enable
Desired set ip enable
Desired set seq enable
Desired set mime enable
Desired set len 8192
Desired set hdr 16
Desired /
Desired network
Desired firewall
Desired access
Desired // LAN to WAN Access Rule
Desired set rule lan wan allow
Desired set rule lan lan2 allow
set rule lan2 wan allow
set rule lan2 lan allow
delete lan all
delete lan2 all
/

Here is what my config is on the AP and the template:

// Network-Firewall configuration
network
firewall
set mode enable
set nat-timeout 10
set syn enable
set src enable
set win enable
set ftp enable
set ip enable
set seq enable
set mime enable
set len 8192
set hdr 16
/
network
firewall
access
// LAN to WAN Access Rule
set rule lan wan allow
set rule lan lan2 allow
set rule lan2 wan allow
set rule lan2 lan allow
delete lan all
delete lan2 all
/


this line seems to be causing an issue set src enable. Is there any logic in airwave that would cause an amp to error out on a a character string with S R and C? Or is there something entirely different going on here?

My AMP version is 6.3.5.
Aruba Employee
Posts: 455
Registered: ‎04-02-2007

Re: Motorola 5131 mismatches

Moved over to the AMP forum...
Andy Logan, ACDX
Director, Strategic Account Solutions
Aruba Networks
Aruba
Posts: 349
Registered: ‎04-14-2009

Desired Lines

All the lines that begin with "Desired" indicate that the line is in the AMP template but not in the device's actual config. Do you want those lines on the device? If you don't, deleting the lines from your template should resolve those mismatches.

Dan
Aruba
Posts: 349
Registered: ‎04-14-2009

I just re-read your email

I see now that those lines are apparently in the template and on the device. Is the order different? Order is very important in our template configuration for 5131s. Or it it possible those lines are in the template more than one time?
Occasional Contributor II
Posts: 41
Registered: ‎04-01-2009

Re: Motorola 5131 mismatches




the order is correct.
what appears to be happening is that the AMP audits the APs config and at:

set src enable

it stops after set sr and skips lines in the AP config and goes right to set rule lan wan allow which results in

set srset rule lan lan2 allow

Aruba
Posts: 349
Registered: ‎04-14-2009

OK, I see that

Can you email me /var/log/telnet_cmds ?
Search Airheads
Showing results for 
Search instead for 
Did you mean: