Network Management

Reply
Regular Contributor I
Posts: 236
Registered: ‎04-03-2007

Airwave on RHEL?

Hi,

 

Can anyone tell me if there are plans to run Airwave on RHEL? This way perhaps Aruba could provide a repository for regular Airwave updates and individuals can manage the underlying OS.

 

Thanks,

Mike

Aruba
Posts: 1,368
Registered: ‎12-12-2011

Re: Airwave on RHEL?

Today - Airwave is only available as an ISO and OVF image which includes CentOS.  

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
Regular Contributor I
Posts: 236
Registered: ‎04-03-2007

Re: Airwave on RHEL?


SethFiermonti wrote:

Today - Airwave is only available as an ISO and OVF image which includes CentOS.  


Thanks Seth,

 

We're currently Airwave 7.6.4. Do you know if the latest version of Airwave includes an updated version of ntpd that includesa fix for the latest NTP  amplification attacks? We plugged the vulnerability by adding 'disable monitor' to ntp.conf in CentOS but I understand a newer version of ntpd would also resolve the issue.

 

Can you tell me what version of ntpd is included in the latest CentOS distribution?

 

https://isc.sans.org/forums/diary/NTP+reflection+attack/17300

 

Thanks,

Mike

Guru Elite
Posts: 8,188
Registered: ‎09-08-2010

Re: Airwave on RHEL?

Mike you can run "yum update ntp" to update NTP.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Regular Contributor I
Posts: 236
Registered: ‎04-03-2007

Re: Airwave on RHEL?

Thanks Tim. Just updated via yum update. NTP version is now "4.2.2p1-17.el5.centos"

 

Mike

Regular Contributor I
Posts: 236
Registered: ‎04-03-2007

Re: Airwave on RHEL?

For those who are interested here is my config in ntp.conf. Everything except the server commandwas added by me per suggestion from Symantec on dealing with the vulnerability.

 

--------------------------------------------------------------
[root@airwave3 ~]# more /etc/ntp.conf
server <your ntp server IP>

#disable monitoring
disable monitor

# by default act only as a basic NTP client
restrict -4 default nomodify nopeer noquery notrap
restrict -6 default nomodify nopeer noquery notrap
--------------------------------------------------------------

Search Airheads
Showing results for 
Search instead for 
Did you mean: