Recent Content
Low Code error when running Dynamic App
Hi All, I'm new to the Low Code tools/DA builder. I just created a new DA using the DA Builder, and uploaded to my stack. I also have the Low Code Tools Powerpack v101 installed on my system. I'm seeing the following error when I try to run the DA and it seems like I'm possibly just missing some snippet or module and I was wondering if I'm missing something simple: 54. Running Snippet 3586 55. Error encountered while executing snippet. Error explanation: App: 3847, Snippet: 3586 threw exception: No module named apps.errors (ImportError: No module named apps.errors File "<string>", line 1, in <module>) 56. Snippet 3586 execution failed.Solved10Views1like4CommentsSnippet possible bug w/ mac address encoding
Has anyone run into an issue where a few MAC addresses are being read by the snmp handler `snmp_walk` method as gibberish? Non-MAC address string data is returned on some interfaces that seems to be some form of unicode. This is an example when running the SNMP walk from bash: IP-MIB::ipNetToMediaPhysAddress.2.10.250.123.5 = STRING: 24:2a:4:f0:7a:c7 This is the same OID when read by the python SNMP handler: ('.1.3.6.1.2.1.4.22.1.2.2.10.250.123.5', '$*\x04ðzÇ') I've tested the python2.7 execution environment, and the 3.6 env from the Cisco base pack 214. Thanks! Joe24Views1like2CommentsFilesystem thresholds based on Space (not percentage) available
Trying to create a DA that alerts when filesystem has x GB left rather than percentage left. This is valuable as setting current thresholds to 99% could still mean there is 100's GB still available, which for big filesystems this is not an issue. This information is available through the host resource oid's and I have created a threshold which is visible on the devices the DA is aligned to. However, this is a threshold for ALL filesystems rather than being able to specify for individual filesystems. Anyone with any ideas on how to get the same behavior as the internal filesystem thresholds where we can specify this threshold on individual filesystems?11Views0likes0CommentsSending Sub-ID information into incident integration
When SL1 sends event to, in our case, using SL PF Incindent Sync to ServiceNow, other systems it quite often includes the sub-id information also in that message. Normally that is also used as correlation ID in ServiceNow. Example here what is seen in SN: So some events utilize other sub-id's than those ootb cpu/mem/disk/etc. We would also use that kind of feature in our own event policies to send numeric (or string) information in that field. But we have not yet found a place where we can control that. So how is that information sent to servicenow. What fields in event message are used for that info?17Views0likes2CommentsLoad balance syslog traffic (TCP/TCP-tls)
Anybody had any success with this? Going direct to message collectors works as expected. When we put a load balancer in the middle it does not work. As per SL1 documentation, the traffic is being forwarded from the load balancer with the original source IP. However, the source port is different (no mention about that in the documentation) and this is where I think the problem lies as the backend server is sending the tcp acknowledgements back to the source IP but to a different port (the port the LB has forwarded the traffic on). Makes sense that we also need to passthrough the source port being used, but this is not a configuration that has been used before (other apps being managed by the load balancer are mainly https with x-forwarder) and there is a reluctance to configure without evidence that this is correct. Surprising how little information there is out on the internet about configuring LB (unless my googling is not up to scratch:-) ) Would be good to know how others have the LB configured for syslog for tcp/tcp-tls traffic5Views0likes0CommentsSuppressing Specific BGP peers
There's been a number of times where we have come across customers who have BGP peers that are not in use or sporadically in use, but they do not wish to remove it from their configs. As a result we get perpetual alerts, but we cannot suppress them as the event suppressed would prevent all bgp peers from alerting. Anyone have thoughts on some ways to single out peers that can be ignored on a per device level? Side note: We are using Powerflow and ServiceNow so we can possibly do something in the path as well. ServiceNow could take care of it, but doesn't help with the peers that flap.11Views1like1CommentCyberArk credential provider and CacheRefreshInterval timing issues with SL1 polling frequency
Rotation of password by Cyberark and the timespan defined with "CacheRefreshInterval" is causing issues with the polling interval of SL1 DAs. With CyberArk, the SL1 can source credential data from CyberARK. Respecting security policies, Cybersecurity recommends changing of password to the SL1 IDs. CyberARK can only specify a time frame during which the passwords can be changed. Within the collectors on the Cyberark agent setup CacheRefreshInterval is set up with 1500 secs (25 mins) to refresh the local cache with the Cyberark every 25 mins. As Cyberark can change the password at any minute or secs of time, SL1 still waits for CacheRefreshInterval to refresh the password. As polling frequencies are default set with 5 minutes(with password change happening at the 4th minute), often SL1 still reaches the server with old password and cause account lockouts. Is there a known way to tackle this issue?22Views1like2Comments
About Discussion Forums
A place for dialogue and discovery about our products and services
131Created: 8 months agoLatest Activity: 3 hours ago