Release Notes

Release Notes

IP Fabric v4.x.x

4.1.0 (15th November 2021)

OVA MD5SUM: 70CF5FCD46262EF621BFC2DCA8895B17
OVA SHA256SUM: DD5F1F0F701974CC8367336DDB7B3877CAAF3BD6DC114BB37C178CD104CA8BA7

WARNING: If you’re migrating from 4.0.2 to 4.1.0 then you have to reload all your snapshots manually

New Vendor Support

  • Added support for Cisco Viptela

Improvements

  • Add hostname to Detail tab in the Device Explorer component

  • Changes in POST /snapshots endpoint - the snapshot "name" and "note" can be set now

  • End of life database has been updated for Juniper, HP, Cisco, and Fortinet. Also, EOL dates for Cisco Meraki were fixed.

  • Fortinet FortiGate - show “Possible device error“ message in the “Discovery issues“ tab in case that all VDOMs can’t be discovered on FortiGate because of wrong permissions

  • Graphs - the Transit cloud has a different icon now

  • Inventory / Interface - add new column "Original Name" - Non-standardized interface name (hidden by default)

  • Inventory / Interface - column IP now shows the physical address of the interface (instead of virtual IP)

  • Paloalto pan-os - tasks/_helpers/security/preProcess - added support for application-filter

  • Significant optimization of DB queries for snapshots where exists hundreds of interfaces for a single device.

  • Snapshot download - the file name now consists from following <snapshotName>-<snapshotTime>-<snapshotKey>.tar

  • Snapshot download - the UI has been improved, added snapshot name and snapshot timestamp

  • Snapshot name in the UI - the order of labels was changed, the timestamp is first and the custom name is below that.

  • SSH connection to PaloAlto - confirmation for Do you accept and acknowledge the statement above ? fixed. It will allow the discovery of PaloAlto with this confirmation. SSH library was upgraded to new version.

Bug Fixes

  • API /graphs/png endpoint - the PNG export didn't work - fixed.

  • Arista EOS - added support for rules with DSCP in command "show ip access-lists"

  • Arista EOS - fixed parsing of "show ip virtual-router" for another output format

  • Arista EOS - fixed parsing of interface ranges in command "show ip access-lists summary"

  • Arista EOS - fixed parsing of logging and snmp information in command "show running-config"

  • CheckPoint Gaia - fixed missing zone firewall data for VSX clusters

  • CheckPoint Gaia - fixed version detection for OS versions

  • CheckPoint Gaia - policy rule was missing if “Install On“ was set to a group object

  • CheckPoint SMS - fixed processing of nested inline rulebase layers

  • Cisco - ASA - added support for FWSM detection (support for “show version” command parsing)

  • Cisco - fixed ACLs parsing in case they contain multiple white characters between keywords

  • Cisco - QoS fixed parsing for nested child service policies

  • Cisco IOS - commands/cisco/vxlan/nvePeers - added support for an additional type of "show nve peers" command output

  • Cisco IOS-XE - Added exclusion for ACL rule "system-cpp-energywise-disc" containing bug (CSCue04444) in "show ip access-list"

  • Cisco IOS-XE - fixed parsing of assigned ACLs from "show ip interface" command in case of different output format

  • Cisco IOS-XE - fixed parsing of recursive routes with MPLS label.

  • Cisco IOS/IOS-XE - routing table - added support for ICMP redirects and filtering out of "possibly down" routes

  • Cisco NX-OS - an icon of Nexus 9000 changed to match the icon of Nexus 7000.

  • Fixed advanced filtering in Snapshot Management / Inventory table (OR condition didn't work)

  • Fixed Interface edge classification for tunnel interfaces.

  • Fixed PNG export for graphs via API request

  • Fortinet FortiGate - fixed empty MAC table

  • HP ArubaCX - added support for another output format of command "show interface"

  • HP ArubaCX - added support for another output format of command "show ip ospf neighbor detail"

  • HP ArubaCX - Added support for task "vrf"

  • HP ArubaCX - Fix parsing for command "show ip route all-vrfs"

  • HP ArubaCX - fixed parsing of platform in command "show system"

  • Path lookup - ACI and firewall routing to duplicate IP addresses fix.

  • Router to switch L2 edges - same mac on multiple interfaces fix

  • Table Management / Changes - the column "#IP Addresses" had always 0 as a value - fixed

  • Versa - standardize duplex values

4.0.2 (11th October 2021)

OVA MD5SUM: 7b23502208cbffe07584e31ccd48f29e
OVA SHA256SUM: 045123c5ccfeeb0f89eb1af8fb6a1dd3de1d91a109f0024a281da2d788db6c40

Features - Protocol and technology support

  • Arista - added ACL support

  • CheckPoint Gaia - added VRRP support

  • Cisco - AAA - new local users table added, located at Technology / Management / AAA / Local users

  • Cisco IOS-XR - added ACL support

  • Cisco IOS-XR - added support for port channels

  • Extreme XOS - Add support for switchport

  • Juniper Junos - added support for OSPFv3

  • Juniper Junos - added VXLAN support

Breaking changes

  • Table Technology->Security->Object Groups was dropped. All object groups are now part of the new security model. API calls to URL /v1/tables/security/acl/object-groups will no longer be working.

  • For tables Technology->Security->Access lists (/v1/tables/security/acl) and Zone Firewall (/v1/tables/security/zone-firewall/policies), all columns except name were dropped (seq, srcAddresses, dstAddresses, inAcl, outAcl, term, action, actionName and matches for ACL table and type, fromZone, toZone, seq, src, dst, appNames and actions for Zone Firewall table) as new security model is represented by a tree. Because of that, it can't be simply fitted into a table format.

  • Snapshot cannot be refreshed from the graph in this release. This function will come back in the following release 4.1.

  • API for pathlookup has changed see API Documetation API Tech Note - IP Fabric 4.x Unicast Path Lookup

Improvements

The visualization part of the application was fully rewritten to boost performance and capabilities.

  • The brand new UI

  • Visualize your topology with a range of built-in layouts (or layout only selected nodes)

  • Intent-based networking has never been easier, the results are shown in the context of visualized devices.

  • Define your own preset, change colour or labels for any protocol

  • Use API to share visualizations with your wider ecosystem

  • Highlight device neighbour relationship

  • Share the view with your team

  • Export to SVG, PNG

  • Enhanced search capabilities

  • Collapse or hide devices

The path lookup simulation was also completely rewritten to packet-based path-lookup simulation.

  • The unicast simulation also supports subnets now

  • Improved ACI topology simulation

  • Added hairpin switching in different VLANs

  • Multicast options for filtering receivers added

  • Improved simulation through transit cloud including tunnelled traffic

  • New packet inspector - understand all forwarding decisions at every layer

  • Reworked security model - visualized in a tree

  • Change path lookup edge colours according to packet header priorities

Other improvements

  • Cisco ASA/FTD - added support for ‘show DNS’ command and use it for translation of FQDNs in objects/ACLs

  • Cisco WLC IOS-XE - Added parsing of wireless client IP address.

  • CheckPoint Gaia - added support for Link Aggregation (Bond interfaces)

  • Allow to use "-" or "." characters in username

  • Device type classification for a router with unused switch module changed. Now is recognized as a router, not a layer 3 switch.

  • Host table - IP host classification improved (OUI vendor check is removed).

  • Table Technology / Interfaces / Transceivers / Statistics - add Delta High-Value column

  • Fortinet FortiGate - added missing Part Numbers to Inventory

  • Add support for "onep-plain" port name to number (15001) translation

  • Table Technology / CDP/LLDP / All Neighbors - show "Device Explorer" component for values in Remote Neighbor column

  • Updated End of life records for Cisco, Arista, Fortinet, Juniper, ProCurve, Extreme

  • End of Life summary table improved - table now shows also records that don't have introduced EoL data yet, data are grouped per vendor and add new column "Replacement"

  • Routing edge improvement for tunnel interfaces with unnumbered IP addresses.

  • Make LDAP group matching case insensitive.

  • Inventory host table - hosts connected to ACI with default gateway on the non-ACI device have now edge switch.

  • Pathlookup - ACI to FW connection added

  • Table Management / Changes - added column "Snapshot name" for better orientation

  • Tables - CSV Export - the format was changed and it's fully compliant with RFC 4180 https://datatracker.ietf.org/doc/html/rfc4180

  • Site separation - added pagination when exists a lot of regex rules

Bug Fixes

  • Fix for snapshot clone process in a stuck state

  • Site separation - preview results now respect transformation settings.

  • Snapshot Management - fixed empty status of the snapshot

  • Table component - "Reset table settings" didn't work - fixed

  • The toggle "Allow using telnet protocol" didn't work - fixed

  • Transceivers statistics table - delta column calculation fix

  • Arista EOS - /commands/arista/_eos/switchport - full cmd syntax used to prevent ambiguous command errors

  • Arista EOS - add support for another format output of the "show poe" command

  • Arista EOS - ARP in some cases was not parsed whole interface name for ARP record

  • Arista EOS - fixed false-positive error regarding VPN/VRF in "show ip interface" command

  • Arista EOS - fixed missing IP phones on some devices

  • Arista EOS - fixed parsing of "show interfaces vxlan 1" for interfaces with description

  • Arista EOS - fixed parsing of “show ip route” command in case VRF Leaks are in it

  • Arista EOS - fixed parsing of different output for command "show mlag detail"

  • Arista EOS - fixed parsing of different output for command "show ntp ass"

  • Arista EOS - Syslog - information is parsed from “show running-config” instead of “show logging”

  • Aruba CX - commands/arubacx/interface - fixed parsing for ip address / mask

  • Aruba switch - standardize port speed units with other vendors

  • Checkpoint Gaia - commands/checkpoint/_gaia/cluster/members/interfacesAll - fixed parsing for different command output

  • CheckPoint Gaia - fixed collecting of nested network / service groups in security policies

  • CheckPoint Gaia - fixed discovery on devices where the command "show management interface" is not available

  • CheckPoint Gaia - fixed parsing of different output for command "show cluster members interfaces all"

  • CheckPoint Gaia - fixed parsing of OSPF InterArea and External routes

  • CheckPoint Gaia (Security Management) - don’t download policy packages without configured installation target

  • Cisco - fix error created by calling ambiguous command (show interface switchport, show interface status err-disabled, show ip interface, show spanning-tree bpdu)

  • Cisco - fixed ambiguous command "sh mpl interf" by "show mpls interfaces"

  • Cisco - fixed parsing of commands “show mac address-table multicast“ and “show mac-address-table multicast“ for cases there are unexpected lines at the beginning of the output

  • Cisco - Fixed parsing of VRF Route-Targets in an IP format

  • Cisco - various platforms - suppress error messages when tunnel present on port.

  • Cisco ACI - fixed parsing of 'inherit' speed value from "show interface" command

  • Cisco ACI, NX-OS - fixed parsing of "show environment" command in case power supply’s column model is empty

  • Cisco HSRP - fixed preemption

  • Cisco IOS - add stacking support for catalyst 2960-s platform

  • Cisco IOS - commands/cisco/mcast/macMulticast - add parsing support for MAC table records with multiple interfaces per row

  • Cisco IOS - commands/cisco/mcast/pimNeighbor - fixed missing PIM version & different output structure on old IOS version

  • Cisco IOS - commands/cisco/vrrp - fixed parsing of preempt parameter

  • Cisco IOS - Fixed parsing for AAA section from running config.

  • Cisco IOS - fixed parsing of "show power inline" command for cases of empty device name

  • Cisco IOS - fixed parsing of ”show version” command in case of faulty master switch

  • Cisco IOS - Fixed parsing of command "sh ip mroute vrf <vrfName>" that would get translated by the DNS server

  • Cisco IOS - fixed parsing of command ”show ip igmp snooping groups” in case port list does not contain any interface for a group

  • Cisco IOS - fixed parsing of the different output for command "show ip flow export command"

  • Cisco IOS - fixed parsing of the different output format of command “show ip mroute count“

  • Cisco IOS - removed false positive error emitting in "show monitor detail" command

  • Cisco IOS - tasks/deviceConfig/current - allow empty configuration when device return it

  • Cisco IOS + IOS-XE - fixed false-positive error detection in command “show dot1x all details“ in case of Tacacs session expiration.

  • Cisco IOS cat9300 - commands/cisco/vxlan/nveVni - fixed parsing for new command output format

  • Cisco IOS-XE - added parsing of another format of "show env all" and "show env status"

  • Cisco IOS-XE - Fixed parsing of command “show interfaces transceiver detail“ for another output format

  • Cisco IOS-XE fixed parsing of "show environment all" command for devices with multiple PSU

  • Cisco IOS-XR - ACL add suport for networks in CIDR format

  • Cisco IOS-XR - fixed parsing for dot1x interfaces configured as authenticator and supplicant

  • Cisco IOS-XR - Removed backup (FRR) routes from routing tables.

  • Cisco IOS-XRv - fixed platform, model and uptime parsing

  • Cisco IOS/IOS-XE - fixed parsing of “CVTA phone port” and “Two-port Mac Relay“ CDP capabilities

  • Cisco ISA - commands/_osVersions/showVersion - fixed parsing of ISA platform

  • Cisco Meraki - API v0 input validation updated for endpoint switch-ports/get-device-switch-port-statuses

  • Cisco Meraki - commands/cisco/_meraki/v0/devices/switch/ports - Unexpected stp guard value: root guard.

  • Cisco Meraki - fixed parsing of Meraki device clients.

  • Cisco Nexus - commands/cisco/mac - Added support for FabricPath MAC entries

  • Cisco Nexus - commands/cisco/switchport - fix parsing for VLAN ID ranges that are split over multiple lines

  • Cisco Nexus - fixed parsing of ”show policy-map system type network-qos” command to support another output format

  • Cisco Nexus - "show environment fex all" cmd - added support of "absent" PSU parsing

  • Cisco Nexus - added parsing of another output format of "show logging server” command

  • Cisco Nexus - fixed parsing of FEX environment information

  • Cisco Nexus - fixed parsing of in/out bytes, multicasts and broadcasts from "show interface" command

  • Cisco Nexus - Fixed parsing of STP port status on STP broken ports.

  • Cisco Nexus, ACI - fixed Device Mode value for FEX devices in Technology/Platforms/Environment

  • Cisco nx9000-aci - commands/cisco/igmp/group - Group IP parsing fix

  • Cisco SG - commands/_osVersions/showVersion - Add OS discovery support for cisco Sg220.

  • Dell Powerconnect - added MTU and MAC for interfaces

  • Dell Powerconnect - fixed parsing of MAC address from “show interfaces“ command

  • Dell Powerconnect - fixed parsing of speed and duplex from “show interfaces status“ command to support also N/A and unknown values

  • Dell Powerconnect n1500 - Fixed parsing for the command "show spanning-tree detail".

  • Duplicate IP table - false-positive unnumbered IP removed

  • Extreme XOS - added support for another output format of "show sharing" command

  • Extreme XOS - “show ports transceiver information detail“ fixed parsing of -infinity value

  • Extreme XOS - fixed parsing of port names for "show stpd <stpdDomain> ports counters" command

  • Extreme Enterasys - tasks/portChannel - port state fix

  • Extreme XOS - Fixed parsing of command 'show ip-security dhcp-snooping vlan' to allow more or none ports in Trusted ports section

  • Extreme XOS - fixed parsing of command “show ports transceiver information detail“ to allow transceivers without any statistics

  • F5 - commands/f5/_big-ip/listNetSelf - add support of ipv6 addresses

  • F5 BigIP - fixed parsing of Cluster members if they dont have Failover Unicast configured.

  • Fortinet FortiGate - commands/fortinet/diagSysNtpStatus - fixed parsing if all configured servers are unresolved

  • Fortinet FortiGate - fixed parsing of "get system status" command for FortiGateRugged platform to allow IPF device discovery

  • Fortinet FortiGate - LLDP link wasn’t established for HA ports

  • Fortinet FortiGate - Routed port classification fix for L2 edges

  • HP Aruba - commands/_osVersions/showVersion - fixed parsing for Aruba Mobility Master and Mobility Controller.

  • HP Aruba - Mobility Master - platform and LLDP parsing fixed

  • HP Aruba 7200 - Fix parsing for APs that dont respond to "show ap debug system-status ap-name <apName> command".

  • HP Aruba CX - fixed memory parsing

  • HP Aruba CX - fixed parsing for "show vsx brief" with state in sync-primary

  • HP Aruba CX - fixed parsing of "show interface" command with different output structure

  • HP Aruba CX - fixed parsing of different output for command "show vsx status"

  • HP Aruba CX - fixed parsing of property LAST in command "show ntp association"

  • HP Aruba S3500-24P - commands/hp/_aruba/inventory - Fixed parsing of serial number for Aruba switch.

  • HP Aruba switch - added parsing of the different output format of ”show tech buffers” command

  • HP Aruba switch - fixed parsing of different output for command "show spanning-tree"

  • HP Aruba switch - fixed STP task mapping for RPVST for cases designated bridge ID is missing.

  • HP ArubaCX - fix parsing of "show ip ospf neighbor detail" command in case priority is missing

  • HP ArubaCX - fix parsing of command 'show ip ospf interface' for cases local IP address is missing

  • HP ArubaCX - fix parsing of command 'show ip ospf interface' from Aruba OS version 10.07 and higher

  • HP ArubaCX - fixed parsing of "show interface mgmt" in case mgmt interface is disabled

  • HP ArubaCX - fixed parsing of "show ip ospf interface all-vrfs" and "show ip ospf neighbor detail" to not change VRF name to lower case

  • HP ArubaCX - fixed uptime parsing (it isn't always provided)

  • HP Comware - added support for another output format of “display arp“ command

  • HP Comware - fixed parsing of "display fan" command for the different output format

  • HP Comware - fixed parsing of "display ip interface" command

  • HP Comware - fixed parsing of "display power" command for the different output format

  • HP Comware - fixed parsing of “display ospf interface verbose“ command to support multiple areas for process ID and removed false positive error emitting in case there is configured process without any area

  • HP Comware - fixed parsing of commands with large output (added cli clearing for Comware 3 format)

  • HP Comware - tasks/l2Interfaces - fixed mapping of interfaces in case trunk doesn't contain any permitted vlans

  • HP Comware 5130 - commands/hp/_comware/currentConfiguration - AAA scheme fixed parsing for test-profile in aaa server configuration

  • Juniper Junes - fixed parsing of different output for command "show configuration | display set”

  • Juniper Junos - added parsing for another output format of command “show lldp neighbor“

  • Juniper Junos - fixed false-positive error emitting in STP task for STP disabled interfaces

  • Juniper Junos - fixed mapping of stacking for cases switch is not present (disconnected)

  • Juniper Junos - fixed parsing of "show chassis environment" command to support different output format of fans

  • Juniper Junos - fixed parsing of "show route" command for discarded routes

  • Juniper Junos - fixed parsing of "show vrrp detail" command in case "version" is missing

  • Juniper Junos - Fixed parsing of LLDP neighbors.

  • Juniper Junos - fixed parsing of the routing table to parse correctly Administrative Distance and Metric

  • Juniper Junos - fixed parsing of secondary address for command "show interfaces statistics detail"

  • Juniper Junos - removed duplicates in the routing table

  • Mikrotik RB1100 - Fixed parsing for command "ip ipsec installed-sa print detail"

  • Mikrotik RouterOS - fixed parsing of IP addresses of actual-interface in command 'ip address print detail'

  • Palo Alto - fixed parsing of different output for command "show routing route"

  • Palo Alto, F5 clusters - Fix for establishing routing protocol edges

  • Paloalto - fixed parsing for the routing table.

  • PaloAlto 5200 - commands/paloalto/showConfigMerged - fix parsing, when vsys has no configuration

  • Pathlookup - STP edge between switch and firewall in a cluster with virtual mac fix

  • Routing table recursive lookup for VXLAN and other forwarding properties fix

  • STP topology fix for port role master

  • Versa VOS - Fixed BGP task mapping for cases total received Pfx is not available.

  • Versa VOS - fixed mapping of API endpoint "/vnms/dashboard/appliance/<appliance>/live?command=ospf/interface/int-extensive"

  • Wrong MAC address classification as a phone for proxy ARP fix.


IP Fabric v3.x.x

3.8.2 (1st July 2021)

OVA MD5SUM: 3E1B73F76140CBE5726129E3133D8022
OVA SHA256SUM: D9D71C6BACE7FA8AC9913FDD9B6F2ACBE743AB31218C0357BB7A271D0D1E6DE6

Features - Protocol and technology support

  • AWS - added data to the table Technology / Routing / VRF

Improvements

  • DNS name resolving, changed the way how we recognize if DNS server is available. Don't try to resolve public IP 8.8.8.8 but check if any nameserver is set
  • Snapshot management / Inventory table - allowed advanced filtering option\
  • Tables help - API endpoint includes full URL including server name
  • Updated EoL records for Aruba CX
  • System / Advanced settings - Option "Saved configuration check" was removed - it can be controlled now from "Discovery Tasks" in advanced settings
  • Vendor API setting is part of snapshot settings now
  • Cisco IOS, IOS-XE and NX-OS - Added support for access-classes and transport methods on VTY lines to “technology/management/aaa/lines” table (as hidden columns Inbound ACL, Outbound ACL, Transport Input, Transport Output, Allow VRF login)
  • Transceivers statistics table - round delta low value to two decimal places

Bug Fixes

  • Arista EOS - fixed parsing of different output for command "show ptp masters”
  • Arista EOS - fixed parsing of different output for command "show ptp local-clock"
  • Aruba CX - Added support for Aruba OS 10.07 routing table output
  • Checkpoint Gaia - fixed API endpoint /show-gateways-and-servers errors - VSX clusters & checkpoint host objects
  • CheckPoint Gaia - fixed parsing of bandwidth information for command “show virtual-system all“
  • Cisco IOS - exclude OSPFv3 "authentication/confidentiality" IPSec tunnels.
  • Cisco IOS - fixed parsing for command "show subscriber session all"
  • Cisco IOS - fixed parsing of command "show ip flow export" in case flow export is disabled
  • Cisco IOS - fixed parsing of different output for command "show interface switchport"
  • Cisco IOS-XE - fixed parsing of platforms containing dashes in model name
  • Cisco IOS-XE - fixed transceiver detection
  • Cisco IOS-XE, NX-OS - fixed parsing of command "show ptp brief" in case of ports in 'INITIALIZING' status
  • Cisco IOS-XR - fixed parsing of different output for command "show isis interface"
  • Cisco IOS, IOS-XE, IOS-XR - fix parsing of command "show ip route" for routes installed years ago. Add parsing for routes pointing to Null0
  • Cisco IOS/IOS-XE - VRRP parsing fixed not to fail on IPv6 groups
  • Cisco SX - fixed platform and model detection
  • Dell PowerConnect - Fixed parsing of show "show mac address-table" command containing multicast addresses
  • Extreme Xos - changed STP Root and Bridge IDs parsing to contain only MAC address part
  • Extreme Xos - Fixed parsing of STP ports with asterisk from command "show stpd <stpDomain> ports detail"
  • Extreme XOS - RIB edges removed for local interfaces
  • Fix of bug "Invalid snapshot format" so snapshot wasn't able to load
  • Fix: Do not download the configuration file multiple times from the same IP address.
  • FRR - don’t show error if BGP/OSPF daemon is not running
  • FRR - fixed parsing of different output for command “show version“
  • HP ArubaSw - fix parsing of capabilities from "show lldp info remote' command"
  • HP ArubaSw - fix parsing of command "show interface brief" in case interface does not have media type
  • HP ArubaSw - improved device model detection
  • HP Comware - Added support for interface status 'STP DOWN'
  • HP Comware - fix parsing of command "show ap bss-table" to allow more values in 'phy' column
  • HP Comware - fixed parsing of 'display interface' command for the different output format
  • Huawei NE 8000 platforms - version detection fixed
  • Juniper Junos - fixed parsing of command 'show spanning-tree statistics interface' to support another output format
  • Juniper Junos - fixed parsing of different output for command "show route active-path"
  • Juniper Junos - fixed vrf leak to the main routing table (inet.0).
  • Juniper Junos - Improve error message when the firewall isn’t able to provide output for cmd "show security ike security-associations detail".
  • Juniper Junos - Improve error message when the firewall isn’t able to provide output for cmd "show security ipsec security-associations detail".
  • Juniper Junos - MPLS forwarding tables collection fix
  • Mikrotik - fixed ipsec parsing for non-tunnel policies
  • Mikrotik - fixed parsing of interfaces which have an only numeric name
  • Palo Alto - Cluster state detection added. Fixes path lookup on duplicate IP on both nodes in the cluster.
  • Paloalto - fixed tunnel proposals were not parsed correctly with long tunnel names
  • STP edges to Juniper SRX firewalls with virtual mac address fix
  • UI - fixed overflow of items from select boxes used in modals dialogs
  • Versa VOS - fixed mapping of API call "/vnms/dashboard/appliance/site-a/live?command=arp/all".
  • Versa VOS - fixed mapping of API call "api/config/devices/device/<appliance>/config/networks/network".
  • Versa VOS - fixed mapping of API call “/vnms/dashboard/appliance/<appliance>/live?command=interfaces?deep"
  • Versa VOS - fixed mapping of interfaces without MAC address.

3.8.1 (7th May 2021)

OVA MD5SUM: 7788D1E2E6A062F8FE3985A8644E9542
OVA SHA256SUM: 4E7FBA8DF01A787D93B8E6D0E3FE8AED68E3C9F6EABB3D162F84E1F99DADDD3D

Improvements

  • F5 BigIP - collect configuration from all partitions, not just from Common as was before.
  • Cisco IOS, IOS-XE, IOS-XR - add metric and passive properties to IS-IS Interfaces table

Bug Fixes

  • SSH connections could have timeouts on login
  • Arista EOS - fixed parsing of 'show system environment all' command in case there are N/A values
  • Cisco ASA - Fixed parsing of snmp location
  • Cisco IOS - fixed parsing for command "show flow exporter"
  • Cisco NX-OS - fixed parsing for command "show flow exporter"
  • Juniper Junos - routing table - fixed parsing of MPLS labels
  • F5 BigIP - new cmd “show sys cluster all-properties“ to add cluster management interfaces to interface list.
  • Paloalto IPSec - fixed parsing of tunnels with long names and multiple proposals

3.8.0 (26th April 2021)

OVA MD5SUM: 2f693acf59d9f31d28507c7edc58234f
OVA SHA256SUM: 2b208eb7584fd5b4708ea56a7f1688f4bf44624c872ef0d6b792576e88f9ff00

New Vendor Support

  • Added support for Aruba CX
  • Added support for Checkpoint Gaia Embedded platform
  • Added support for AWS - Discovery, inventory and routing support for VPC, transit gateway, VPN gateway, nat gateway
  • Added support for Versa VOS - basic discovery process

Features - Protocol and technology support

  • Cisco ACI - Added NTP support
  • Cisco ACI - DTEP collection added
    • Tables located at Technology / SDN / ACI / DTEP
  • Added Multi-Chassis LAG support for Arista EOS and Extreme XOS
    • Tables located at Technology / PortChannel / MLAG
  • Arista EOS - added support for VARP (Virtual-ARP)
    • Table located ar Technology / FHRP / Virtual Gateways
  • Arista EOS - added PoE support
  • Arista EOS - added support for environment information
  • Cisco NX-OS, IOS-XE, Arista EOS - The Precision Time Protocol support added
    • Tables located at Technology / Management / PTP
  • Cisco IOS, IOS-XE: Add support for PPPoE
    • Tables located at Technology / Interfaces / PPPoE

Improvements

  • Table Technology / Platforms / Cisco VSS / Chassis - add column Chassis SN
  • More precise parsing of platform identifier for Cisco Catalyst series
  • VLAN topology calculation improved for mismatched designatedPortId and opposite side portId using xDP
  • Juniper, Palo Alto - add vrf leak support to the routing table.
  • Cisco WLC-AIR - improved pagination handling - backspace is sent to display an additional page of command output
  • Table Inventory / Interfaces - added columns about Transceivers (if exist, SN, PN, Type - 3 of them hidden by default)
  • Table Technology / Security / IPSec / Tunnels - added column "Interface description"
  • Table Technology / Security / IPSec / Gateways - added column "Interface description"
  • Table Technology / Platforms / Stacks / Stack Ports - For stack technologies that use regular ports for the stack, a new column with a list of stack interfaces added.
  • Table Technology / Interfaces / Transceivers / Statistics - added column with delta between Value and Low
  • System / Settings / Advanced / Vendor API settings - each setting can be enabled / disabled
  • When the application will lose connection with the server then is shown "Connection lost" overlay
  • Juniper Junos - filter out VRRP backup virtual IP from the managed IP list
  • Managed duplicate IP table - removed for:
    • Aruba AP - /32 IP on tunnel interfaces taken from another interface
    • Versa - Internal IP
    • IPv4 link local addresses 169.254.0.0/16
    • Loopback addresses 127.0.0.0/8
  • The End Of Live database has been updated for Vendors (Cisco, HP, F5, PaloAlto, Arista, Extreme)

Bug Fixes

  • Fix UI - table filters lost when URL is used after authentication
  • Arista EOS - added parsing of interface load and fixed interface counters parsing
  • Arista EOS - fix the mapping of multi-lane transceiver physical interface names
  • Arista EOS - fixed empty ip address of admin shutdown interfaces
  • Arista EOS - fixed parsing of bandwidth information for command "show ip igmp snooping group"
  • Arista EOS - fixed parsing of different output for command "show interfaces vxlan 1"
  • Arista EOS - fixed parsing of different output for command "show ip igmp snooping groups"
  • Arista EOS - fixed parsing of empty output for command "show ptp local-clock"
  • Arista EOS - remove non-existing Router interfaces from Interface inventory
  • Arista EOS - sometimes show the wrong VRF for admin shutdown interface, fixed.
  • Arista EOS - Spanning tree with MLAG - PeerEthernet ports removed.
  • Avaya/Extreme VOSS - Uptime with years fix
  • CheckPoint Gaia - error about missing router ID was shown even if BGP was disabled
  • Checkpoint Gaia - fixed parsing of different output for command "show cluster members interfaces all"
  • Cisco - fix parsing switchport mode dot1q-tunnel
  • Cisco - Fixed parsing show running-config command - line password with spaces.
  • Cisco - remove non-existing Sup-Eth interfaces from Interface inventory
  • Cisco ACI - fixed parsing of different output for command "show coop internal info ip-db"
  • Cisco ACI, NX-OS - fixed parsing of interface description.
  • Cisco ASA - fix parsing of not configured tunnels
  • Cisco ASA - fixed parsing of different output for command "show crypto ipsec sa"
  • Cisco ASA - fixed parsing of different output for command "show crypto isakmp sa detail"
  • Cisco IOS - Allow PIM RP without groups
  • Cisco IOS - fix duplex and media type for C1700
  • Cisco IOS - fix parsing of command "show ip igmp snooping mrouter" in case there are no ports configured
  • Cisco IOS - fix parsing of large output from "show mac address-table multicast"
  • Cisco IOS - fixed parsing of different output for command "show lldp neighbors detail"
  • Cisco IOS - fixed parsing of output for command "show ip igmp interface"
  • Cisco IOS - HSRP - fixed preemption detection
  • Cisco IOS-XE - BGP - fixed address family detection
  • Cisco IOS-XE - fixed parsing interfaces without outDrops counter
  • Cisco IOS-XE - fixed parsing of different output for command "show ap name <apName> wlan dot11 5ghz/24ghz"
  • Cisco IOS-XE fixed STP interface - VLAN mapping (TwoGigabitEthernet and AppGigabitEthernet)
  • Cisco IOS-XE WLC - Fixed parsing for interfaces with "invalid" as a value for speed
  • Cisco IOS-XE WLC - fixed parsing of different output for command "show wlan summary"
  • Cisco IOS-XR - fixed parsing of different output for command "show mpls forwarding"
  • Cisco IOS, IOS-XE and IOS-XR - Routing table parsing fixed
  • Cisco IOS, IOS-XE, ASA - fixed interface mapping in IPSec task.
  • Cisco IOS, NX-OS - use the full form of commands to avoid ambiguous commands - "show spanning-tree summary", "show spanning-tree detail", "show port-channel summary", "show etherchannel-summary"
  • Cisco IOS/IOS-XE - Fixed LLDP neighbors parsing in case output is split to 2 lines
  • Cisco IOS/IOS-XE - VRF name parsing fixed to disregard ending semicolon (if it is present)
  • Cisco NX-OS - added FEX info to inventory
  • Cisco NX-OS - fixed false-positive error emit in case "show monitor session all" contains information that destination port is in use in other span.
  • Cisco NX-OS - fixed parsing for command "show fex detail" for cases fabric port for control traffic is not provided.
  • Cisco NX-OS - fixed parsing of different output for command "show vrrp detail"
  • Cisco NX-OS - XDP links for LLDP protocol might have not been created in some cases
  • Cisco NX-OS- fixed parsing of show running configuration with some specific banner configured.
  • Cisco SG - fixed interface parsing in ARP table
  • Cisco SG - fixed LLDP neighbors detection in multiline output
  • Cisco SG - fixed parsing of different output for command "show sflow configuration"
  • Cisco SG - fixed parsing of different output for command "show spanning-tree detail"
  • Cisco SG 500 - fixed STP interface - vlan mapping (slash format)
  • Cisco XE - fixed xSR platforms identification
  • Cisco XR - fix parsing for command 'show version' (caused empty hostname)
  • Dell Powerconnect - fixed version detection for switches N2048
  • Extreme VOSS - fixed LLDP neighbor parsing
  • Extreme XOS - added reason for administratively down ports
  • Extreme XOS - Fixed STP parsing for multirow vlans output
  • Extreme XOS - Fixed STP parsing for PVST+ mode
  • Extreme XOS - transceivers task execution enabled
  • Fortinet FortiGate - fixed missing description in Interface Inventory table
  • HP Aruba - fixed parsing of details for AP which come down during discovery
  • HP Arubasw - fixed detection of model
  • HP Arubasw - Fixed error handling for LLDP neighbor with wrong format of Chassis ID
  • HP Arubasw - fixed mac-address collecting on some models
  • HP Arubasw - fixed parsing of different output for command "show interface brief"
  • HP Arubasw - fixed parsing of different output for command "show interfaces transceiver detail"
  • HP Arubasw - fixed parsing of different output for command "show interfaces transceiver"
  • HP Comware - fix parsing ARP table for platform 5130
  • HP Comware - fixed parsing of different output for command "display clock"
  • Huawei VRP - fixed parsing of different output for command "display info-center"
  • Huawei VRP - Fixed ARP parsing in case (SIP/DIP) is shown
  • Huawei VRP - fixed interface clearing time parsing
  • Huawei VRP - Fixed parsing for empty mirroring groups
  • Huawei VRP - fixed parsing of different output for command "display mac-address"
  • Huawei VRP - fixed parsing of different output for command "display vxlan tunnel"
  • Huawei VRP - fixed parsing of empty output for command "display dhcp snooping"
  • Huawei VRP - VXLAN Tunnels - command parsing fix when empty output is received
  • Juniper Junos - Configuration parsing fix for “protect protocols mstp” command
  • Juniper Junos - fixed parsing of different output for command 'show configuration | display set | except "^deactivate"'
  • Juniper Junos - fixed parsing of different output for command "show chassis environment"
  • Juniper Junos - fixed parsing of different output for command "show chassis routing-engine"
  • Juniper Junos - IGMP groups fix mapping of 'never' value for expires for
  • Juniper Junos fix false-positive err-disabled statuses
  • Meraki - L2 interfaces, reason “connecting” added
  • Palo Alto - an interface that wasn’t associated with any VSYS could be missing in the interface inventory
  • Palo Alto - collect list of VRFs from show commands instead of configuration
  • Palo Alto - collect transceivers only for interfaces of the currently processed virtual system
  • Palo Alto - fixed missing routing tables on single vsys firewalls
  • Palo Alto - fixed parsing of command "show vpn gateway" with multiple DH groups
  • Palo Alto - fixed parsing of different output for command “show routing route”
  • Palo Alto - fixed parsing of different output for command “show vpn flow“
  • Palo Alto - fixed vendor bug where the sessions keep open even the connection is correctly closed. Using "exit" cmd for disconnection.
  • Vlan topology calculation - Virtual mac used in switch ID for Cisco Nexus fix

3.7.6 (8th March 2021)

OVA MD5SUM: a47d9983d046f74a34a17f5025cb7bd8
OVA SHA256SUM: c5972d44b012ff3b3411ea3c6666651e9c6c453a50009c0062df99c11ae29e0b

Improvements

  • Add support for Cisco Firepower 9000 series SM-24
  • Add indexes to speed up several DB queries
  • Table Technology / Routing / BGP / Neighbors - added "Local interface" column
  • Palo Alto - show also unconfigured ports in IPF
  • Cisco Meraki - Zx Teleworker Gateways - extended support for interface and routing table discovery (to gather this information Zx teleworker gateways processed pretty much the same as MX firewalls).

Bug Fixes

  • Pathlookup - IGMP snooping fail fix
  • Juniper - IRB L3 interface correct VLAN ID assignement
  • Fortinet FortiGate - zone firewall could be missing in some cases since the unit was considered as a HA slave
  • Palo Alto - first configured vsys could be missing in discovery result
  • Cisco FTD - fixed detection of service objects with names matching ICMP options keywords

3.7.5 (22nd January 2021)

OVA MD5SUM: b4c940832cbd592f2653553d72f11f33
OVA SHA256SUM: c16cbac6040e7d07d04c42142ddbb42acc0547c912d726efa1bd1138a58f5be4

Features - Protocol and technology support

  • Palo Alto - add port channel support

Improvements

  • API Requests rate limiter counts only unresolved requests
  • Cisco ACI routing edges establish improvements.
  • Cisco NX-OS - Added Route-Target information for VRFs in BGP process
  • Fortinet FortiGate - added support for emac-vlan interfaces
  • Huawei - All send commands expanded to the full syntax
  • Table Technology / Interfaces / Transceivers / Inventory - added L1/L2 state columns
  • Frontend - implement request rate limiter

Bug Fixes

  • CheckPoint Gaia - fixed processing of zone firewall services (DCE-RPC, port ranges)
  • Cisco ACI - an unsupported show run command is no longer downloaded
  • Cisco ASA/FTD - L3 interfaces ‘local’ IPs are no longer derived from static ARP entries
  • Cisco IOS - fixed parsing of bandwidth information for command "show policy-map interface"
  • Cisco IOS - fixed parsing of different output for command "show mac-address-table multicast"
  • Cisco IOS - fixed parsing of different output for command "show standby"
  • Cisco IOS - Fixed showRun parsing for sections aaa, SNMP
  • Cisco IOS-XE - command "show wireless client mac-address <mac> detail" - filter out clients without ap.
  • Cisco IOS-XE WLC - improved parsing and overall wireless AP processing capabilities to better handle erroneous command outputs
  • Cisco IOS, IOS-XE - fixed parsing of source interface for AAA servers.
  • Cisco NX-OS - fixed parsing of different output for command "show interface transceiver details"
  • Cisco NX-OS - fixed parsing of different output for command "show spanning-tree mst"
  • Cisco NX-OS, IOS-XE - fixed parsing of different output for command "show version"
  • Cisco NX-OS/ACI - L3 interfaces ‘local’ IPs are no longer derived from static ARP entries
  • Cisco SG - Fixed ambiguous commands
  • Cisco SG - Fixed parsing of interface name (SG 500)
  • Documentation - the report was broken when the text included Unicode characters
  • Establishing BGP neighborship improved based on VLAN
  • Establishing RIB neighborship between ACI and FW improved based on VLAN and neighbor protocol
  • Fortinet FortiGate - fixed missing MAC addresses on all interfaces if the modem was active
  • Fortinet FortiGate - L2 data for some of the interfaces could be missing, L2 state could be wrong in some specific cases
  • Fortinet FortiGate - show only IP addresses from the active (virtual) cluster member
  • HP Aruba switch fix parsing of hostname
  • HP Arubasw - fixed parsing of different output for command "show vlans"
  • HP Arubasw - fixed parsing of different output for command “show lldp info local-device"
  • HP Comware - fixed parsing of different output for command "display arp"
  • HP Comware 1910 - fixed version detection
  • HPE V1910 - Fixed platform detection
  • Juniper Junos - fixed parsing of different output for command "show igmp group"
  • Juniper Junos - IRB L3 interface correct VLAN ID assignment
  • Juniper Junos - STP - VLAN specific information parsing fixed for VSTP
  • Palo Alto - list only L2 interfaces that belong to the processed virtual system
  • Pathlookup - Device connected to ACI LEAF fix
  • Pathlookup - Transit search with tunnel fix (tunnel destination IP is now used)
  • System Administration - allows restarting of Discovery services
  • Technology / Addressing / Managed IP - table "DNS name match hostname" and "DNS (A/CNAME record)" columns did have correctly set failed status.
  • The Discovery process may be stuck when Tacacs is overloaded - fixed

3.7.4 (21st December 2020)

Improvements

  • Topology calculation -  virtual mac calculation optimized
  • Discovery  - Summary of Issues is refreshed every 5mins (from 1min) to prevent DB overload
  • Optimized DB queries for Discovery - Summary of issues

3.7.3 (17th December 2020)

Features - Protocol and technology support

  • Cisco ACI - add support for OSPF
  • CheckPoint Gaia - added support for VSX firewalls and switches

Improvements

  • Checkpoint Gaia - use the default Router ID for BGP if it isn’t explicitly configured
  • HP Aruba - (Technology / Wireless / Radios / Radios-detail) improve wlans mapping when AP is in monitoring mode
  • Palo Alto - add rebuild property to version.
  • Palo Alto - add support of fqdn objects in Zone FW.
  • Pathlookup - Application of ACL and zone firewall for MPLS links.
  • RIB topology - Down interfaces used as a source for unnumbered interfaces filtered from the calculation.

Bug Fixes

  • Arista EOS - fix parsing of IP route table when IP routing is disabled
  • Arista EOS - fixed parsing of different output for command "show ip route vrf <vrfName>"
  • CheckPoint Gaia - fixed mapping of different output for API endpoint "/web_api/show-gateways-and-servers"
  • Cisco ACI - fixed parsing of different output for command "show coop internal info ip-db"
  • Cisco IOS - fixed parsing of different output for command "show mpls forwarding-table detail"
  • Cisco IOS - fixed parsing of different output for command "show vrf detail"
  • Cisco IOS-XR - fixed parsing of different output for command "show mpls forwarding"
  • Cisco IOS-XR - VRF-based routing information parsing fixed
  • Cisco NX-OS - ACL with IPV4 syntax added
  • Cisco NX-OS - fixed parsing of different output for command "show mpls switching"
  • Cisco NX-OS, IOS-XR - fixed parsing of different output for commands "show hsrp", "show hsrp detail", "show vrrp detail"
  • Cisco SG - dot1x related commands parsing fixed
  • F5 BigIP - fix “show sys hardware” failure in version detection
  • Fixed Device type detection - One non-connected route is enough for router
  • Fortinet FortiGate - fixed missing VIP groups in zone firewall
  • Fortinet FortiGate - fixed parsing of different output for command "show firewall service group"
  • HP Arubasw - fixed parsing of different output for command "show trunks"
  • HP Comware - fixed parsing of different output for command "display device manuinfo"
  • Huawei - Fixed ambiguous commands for arp, dhcp snooping, sflow, port-mirroring
  • Huawei - MPLS to RIB transport label mapping - 3 implicit null label removed
  • Juniper Junos - fixed parsing of different output for command "show vlans detail"
  • Juniper Junos - show route active-path command parsing updated and fixed
  • Palo Alto - fixed parsing of different output for command "show config merged"
  • Pathlookup - MPLS - nexthop without IP secondary lookup in VRF added
  • Pathlookup - Multiple NH with different link type fix

3.7.2 (3rd December 2020)

Improvements

  • Cisco - IP disabled or unconfigured interfaces excluded from saving into L3 interfaces table (IPv4, IPv6)
  • API POST /discovery/trigger-config-backup - config backup is possible to execute via API no matter on trigger setting
  • Routing protocols and RIB neighborship establishment improvement for unnumbered IP with help of xDP
  • Speed of topology calculation has been improved for networks with a lot of XDP records

Bugfixes

  • Arista EOS - fixed parsing of different output for command "show ip ospf interface"
  • Arista EOS - fixed parsing when the device returns empty string for command "show ip ospf interface"
  • Arista EOS - fixed parsing when the device returns an empty string for command "show logging"
  • Cisco ACI - Edge switch calculation fix (precedence from endpoint table on a leaf over ARP on other devices)
  • Cisco ACI - Leaf to switch VLAN topology fix for same access VLAN for two different PI VLAN (caused discovery finish calculation fail on the unique index).
  • Cisco ACI - Switch to leaf L2 path VLAN translation from access VLAN to PI VLAN fix
  • Cisco IOS - fixed parsing of different output for command "show crypto ikev2 sa detailed"
  • Cisco IOS - fixed parsing of different output for command "show standby"
  • Cisco SG/NX-OS - power supply & fan information processing fixed
  • F5 BigIP - doesn’t run cmd "list /sys management-ip" on vCMP guests, it doesn’t return any value on this platform.
  • Fortinet FortiGate - fixed parsing of different output for command "show firewall address"
  • Fortinet FortiGate - fixed parsing of different output for command “get system status“
  • Fortinet FortiGate - fixed processing of policies with service ALL in zone firewall
  • Fortinet FortiGate - neighbor relationships fixed on VDOM links
  • HP Aruba - fixed parsing of different output for command "show ap port status ap-name <apName>"
  • Huawei VRP - fixed parsing of different output for command "display sflow"
  • Huawei VRP - fixed parsing of different output for command "display transceiver verbose"
  • Huawei VRP - fixed parsing of different output for command "display vxlan tunnel"
  • Huawei VRP - Mac address table, add bridge domain number to interface if missing
  • Juniper Junos - fixed parsing of different output for command "show configuration | display set | except "^deactivate""
  • Juniper Junos - fixed parsing of different output for command "show configuration security policies | display set”
  • Juniper Junos - fixed parsing of different output for command "show ethernet-switching interface"
  • Juniper Junos - fixed parsing of different output for command "show lldp neighbors interface <int>"
  • Juniper Junos - fixed parsing of different output for command "show security ipsec security-associations detail"
  • Juniper Junos - fixed parsing of different output for command "show security ipsec security-associations detail"
  • Juniper Junos - fixed parsing of different output for command "show vlans detail"
  • Mikrotik RouterOS - fixed parsing of different output for command "/ip neighbor print detail"
  • Palo Alto - transceivers - "show system state filter-pretty sys.s*.p*.phy command" parsing fixed
  • Palo Alto - Zone FW - fix parsing of shared firewall objects on multi vsys systems.
  • UI - Settings / Discovery Tasks - button Test in Firefox submit a form (save action) instead of Test action
  • Pathlookup - Route to switched interface fix to apply only on SVI interfaces.
  • Switch to router VLAN topology calculation - fix for number of MAC addresses limitation
  • Bridge domain VLAN topology calculation - fix for recalculation

3.7.1 (24th November 2020)

Features - Protocol and technology support

  • Palo Alto - add support for Syslog

Improvements

  • The login into the platform was slow - rewritten DB query for GET /snapshot endpoint
  • Rewritten DB query to speedup post-discovery topology calculation
  • Technology / Security / Zone firewal / Interfaces - format data in Zone column (separate multiple zones by space)
  • Cisco IOS-XE - command "show interfaces transceiver detail" - added handling for Cisco bug CSCuw38988 (version 03.07.05E & platform cat3k_caa)
  • Fortinet FortiGate - check whether a VDOM still exists before switching to it
  • HOTFIX - MERAKI API processing is disabled when the snapshot is started from graphs

Bug Fixes

  • Arista - transceivers - parsing fixed and extended
  • Aruba, Palo Alto - Fixed NTP server parsing when specified by FQDN
  • Checkpoint API data wasn't download on add new devices to the snapshot - fixed
  • CheckPoint Gaia - fixed parsing of different output for command "show ospf neighbors detailed"
  • CheckPoint Gaia - run command "show security-gateway memory statistics" (if available) instead of "fw ctl psat" which is deprecated
  • Cisco - IP unnumbered addresses mapped to L3 interfaces
  • Cisco ACI - Too long VRF name over multiple lines parsing fix for "show system internal epm vrf all"
  • Cisco ASA - fixed parsing of different output for command "show crypto ipsec sa"
  • Cisco ASA - fixed parsing of different output for command "show crypto isakmp sa detail"
  • Cisco IOS - fixed parsing of different output for command "show crypto ipsec sa"
  • Cisco IOS - fixed parsing of different output for command "show ip route"
  • Cisco IOS - fixed parsing of different output for command “show vlan brief“
  • Cisco IOS - multicast MAC address table - parsing updated to support IOS based routers
  • Cisco IOS XR - fixed platform and model detection for NCS series
  • Cisco IOS-XR - Bundle-Ethernet interface name standardization (Bundle-Ether, BE in different outputs, now all is BE).
  • Cisco IOS-XR - Device had incorrectly assigned IP addresses from EVPN ARP records
  • Cisco IOS-XR - routing table next hop with vrf leak parsing fix
  • Cisco IOS/XE - fixed parsing of different output for command "show lldp neighbors"
  • Cisco WLC-AIR - allow device discovery even if not possible to determine device platform and model
  • Fortinet FortiGate - fixed parsing of different output for command "diagnose firewall fqdn list"
  • Fortinet FortiGate - fixed parsing of different output for command "diagnose netlink aggregate name <name>"
  • Fortinet FortiGate - fixed parsing of different output for command "diagnose vpn tunnel list"
  • Fortinet FortiGate - fixed parsing of different output for command "show firewall vip"
  • HP Arubasw - fixed parsing of different output for command "show cdp neighbors detail"
  • HP Arubasw - fixed parsing of different output for command "show logging server"
  • Huawei ambiguous commands fix - display mac-address, display interface, display device manufacture
  • Huawei VRP - ARP - Vlan parsing fix when the record is over multiple lines.
  • Huawei VRP - fixed parsing of different output for command "display mpls ldp adjacency verbose"
  • Huawei VRP - fixed parsing of different output for command "display mpls lsp verbose"
  • Huawei VRP - fixed parsing of different output for command "display vxlan tunnel"
  • Huawei VRP - fixed parsing of different output for command "display vxlan vni"
  • Huawei VRP - Task VXLAN - Device without VXLAN configuration error fix
  • Juniper Junos - fixed parsing of different output for command "show chassis environment"
  • Juniper Junos - fixed parsing of different output for command "show chassis routing-engine"
  • Palo Alto - fixed parsing of different output for commands "show vpn *"
  • Palo Alto - fixed parsing of different outputs for command "show config pushed-shared-policy vsys <vsys>"
  • Transceivers statistics table - fixed data for threshold columns
  • Transceivers thresholds and errors tables - show only transceivers with some data

3.7.0 (9th November 2020)

OVA MD5SUM: 0b44008d783224387c9c894a61a33701
OVA SHA256SUM: 8a3805704b6f4b126d960e3953749f936c67e635d94d387d86ddea6ecf4ea8fc

Features - Protocol and technology support

  • Adds IPSec support for the following platforms
    • Cisco IOS, IOS-XE, ASA
    • Juniper Junos
    • PaloAlto
    • Mikrotik
  • Adds detailed IPSec technology tables
    • Tunnels (/technology/security/ipsec/tunnels)
    • Gateways (/technology/security/ipsec/gateways)
  • Adds Zone-Based Firewall support for the following platforms
    • Palo Alto
    • Checkpoint Gaia
  • Adds Transceiver support for the following platforms
    • WARNING: Transceiver information collection is intentionally disabled by default due to frequent bugs associated with reading transceiver status. Please make sure with vendor support about presence of such bugs in your code, or contact our support for best practices.
    • Cisco ACI, ASA, FTD, IOS, IOS-XE, IOS-XR, NX-OS, WLC
    • Arista EOS
    • Extreme XOS
    • Fortinet Fortigate
    • HP Arubasw, Comware
    • Huawei VRP
    • Juniper Junos
    • Paloalto
  • Juniper Junos - Adds support for IGMP snooping
  • Huawei - Adds support for MPLS LDP
  • Huawei - Adds support for MPLS
  • Huawei - Adds support for BGP EVPN
  • Huawei - Adds support for L2 VXLAN
  • Huawei CloudEngine - VBST for version 8 improvement, all STP data are now collected
  • Cisco NX-OS - Adds support for VRRPv3
  • Cisco IOS-XE - Adds collection of stack information for switches with platform cat9k_lite
  • Settings / API Tokens - API Access Tokens allows you to use IPF API easily and secure
  • Settings / Webhooks - Webhooks enable you to send notifications to web applications in response to events in IP Fabric platform.
  • Settings / Advanced / Discovery Tasks - possibility to exclude specific tasks from the discovery process
  • Settings / Advanced / SSH / Telnet - possibility to set custom port for protocol and subnet

Image

  • Added tcpdump package
  • Installation system wizard - Self-signed certificate with one letter country prevented to start all web services. Fixed with the requirement for two-letter country

Improvements

  • Pathlookup - Hairpin routing support added
  • Pathlookup - Do not create host L2 edge to edge switch if the host is connected to FEX
  • Pathlookup - ACI endpoint lookup - fix of the search when COOP on the spine was introduced in 3.6.0
  • Pathlookup - ACI default GW with non-ACI edge switch, VLAN mapping based on access encapsulation VLAN ID
  • Pathlookup - ACI routing on second POD LEAF with endpoint connected fix (VNI from the first POD removed)
  • Pathlookup - ACI LEAF to switch connection fix
  • Pathlookup - L2 vxlan multiple tunnel endpoints fix
  • Pathlookup - ACI host to more LEAFs connected fix
  • Pathlookup - Routing proxy spine with multiple VTEP fix
  • Pathlookup - two labels stack processing on PE (PHP disabled)
  • Pathlookup - VXLAN L2 host connected to VTEP over switched network
  • Pathlookup - implicit null label 3 for Huawei support
  • Access-lists - new port translation from name to number added (DHCP, DNS)
  • Arista VEOS - add model detection for CVX
  • Cisco ACI - virtual vlan L2 interfaces with connection to L2 stp domain added
  • Cisco 6500 & 7600 - IGMP snooping support improvement
  • Cisco Firepower - NTP is now executed on all versions but by default disabled in Discovery tasks settings
  • Selected snapshot is remembered, will be automatically selected in browser new tabs.
  • F5 BigIP - new cmd "|list /sys management-ip" to add management interface to interface list
  • HP Comware - collect media for L2 interfaces
  • Huawei - L2 STP link added between bridge domain and neighbor switch
  • Palo Alto - management port support added (for VSYS system is placed into lowest-numbered VSYS)
  • Table Technology / Platforms / Environment / Power supplies - add column Device Model
  • Table Inventory / Devices - Column "Serial number" is renamed to "Unique serial number" (includes virtualization unique identifier - context/vsys/VDC etc). "Serial number" column now contains real SN reported by the device.
  • Table Technology / Multicast / MRoute table - add "Vendor", "Family" columns (as hidden by default)
  • Table Technology / Multicast / MRoute / OIL Detail - add "Vendor", "Family" columns (as hidden by default)
  • Table Management / Discovery History - the records are updated only for new snapshot, not for snapshot load.
  • Table Technology / Platform / Stacks / Members - uptime fixed to show members uptime instead of master
  • Table Technology / Platform / Stacks / Stacks - new columns Lowest and diff uptime
  • Table Technology / FHRP / Group state - column version added for HSRP and VRRP
  • Table Help - the request payload formatted to valid JSON. Added button for payload & URL copy.
  • OSPF Area always formatted as an IP address
  • API - added route for device config backup triggering
    • POST /v1/discovery/trigger-config-backup (payload is JSON with IP or SN property)

Bug Fixes

  • Arista - fixed parsing of different output for command "show lldp neighbors detail"
  • Arista - fixed parsing of different output for command "show vrf"
  • CheckPoint Gaia - add cluster virtual IP addresses to the interfaces
  • CheckPoint Gaia - fixed parsing of different output for command "show ospf neighbors detailed"
  • Cisco 9800 WLC - Fix parsing when wireless client with "excluded" status is contained in output
  • Cisco 9800 WLC - fixed parsing of different output for command "show wireless interface summary"
  • Cisco ACI - fixed parsing of different outputs for command "show coop internal info ip-db"
  • Cisco ACI - Some show interfaces have 0000.0000.0000 mac, bia is taken instead
  • Cisco ASA - fixed parsing of different output for command "show run"
  • Cisco ASA Firepower - Platform detection improvement for 4000 and 9000 platforms.
  • Cisco Cat9K platforms - fixed parsing of show version output without stackwise
  • Cisco Catalyst 3K & 9K - Total output drops bytes/packets handling (CSCve59640).
  • Cisco IOS - add correct parameters to the command “show storm-control“ on Cat4500 platforms
  • Cisco IOS - fixed parsing of different output for command "show lldp neighbors"
  • Cisco IOS - fixed parsing of different output for command "show run"
  • Cisco IOS - fixed parsing of different output for command "show udld"
  • Cisco IOS - VSS - Current state time not provided for CAT4500 fix (removed as required property)
  • Cisco IOS - VSS - Four supervisor chassis fix
  • Cisco IOS - VSS - VSL link output from both switches fix
  • Cisco IOS 6800 - fixed parsing of different outputs for command "show mac address-table multicast"
  • Cisco IOS XR - fixed parsing of different outputs for command "show ntp associations"
  • Cisco IOS-XE - fixed parsing of different output for command "show run"
  • Cisco NX-OS - CDP capabilities includes phone, so it was wrongly classified as phone.
  • Cisco NX-OS - device model is taken from "show inventory"
  • Cisco NX-OS - fixed parsing of different outputs for command "show ip igmp snooping groups"
  • Cisco NX-OS - OSPF interface fix for unnumbered interface
  • Cisco NX-OS - PIM with unnumbered interfaces fix
  • Cisco NX-OS fixed parsing of different output for command "show cdp internal global-info"
  • Cisco NX-OS fixed parsing of different output for command "show ip bgp vrf all all nei"
  • Cisco NX1000v - don't execute unsupported cmd "show cdp internal global-info"
  • Cisco SG - fixed hostname detection
  • Cisco SG - fixed parsing of different outputs for command "show interface status"
  • Extreme Boss - fixed parsing of different output for command "show arp-table"
  • Extreme Boss - fixed parsing of different output for command "show lldp neighbor-mgmt-addr"
  • Extreme Boss - fixed parsing of different output for command "show lldp neighbor"
  • Extreme Boss - fixed parsing of different output for command "show mac-address-table"
  • Extreme Boss - fixed parsing of different output for command "show port-statistics”
  • Extreme Boss - fixed parsing of different output for command "show running-config"
  • Extreme Boss - fixed parsing of different output for command "show vlan interface info"
  • Extreme Boss - fixed parsing of different outputs for command "show ip"
  • Extreme Boss - fixed parsing of different outputs for command "show mlt"
  • Extreme BOSS - fixed parsing of different outputs for command "show spanning-tree stp <args> port vlans"
  • Extreme BOSS - mac address table parsing fixed (caused discovery stuck). Fix in library common for more vendors, so this was possibly affecting more vendors
  • Extreme Boss - MSTP port role fix for stack
  • Extreme Boss - VLAN interface fix for stack and ports without vlans
  • Extreme Voss - fixed parsing of different output for command "show ip vrf"
  • Fortinet FortiGate - fixed collecting device info
  • Fortinet Fortigate - Mac address mapping to aggregate and VLAN interfaces (fixes path lookup L2 edge between switch and Fortigate)
  • Fortinet Fortigate - Prompt detection for VDOM with more than 11 characters fix
  • Fortinet Fortigate - Zone firewall fixes for load balancing VIP
  • HP Aruba - fixed parsing of different output for command "show ap port status ap-name <apName>"
  • HP Aruba - fixed parsing of different output for command “show lldp neighbor interface <intName> detail“
  • HP Arubasw - fixed model detection on stack switches
  • HP Arubasw - fixed parsing of different output for command "show ap details ap-name <apName>"
  • Huawei VRP - ARP table entries with L2 interfaces mapped to L3 interface to fix path lookup issues
  • Huawei VRP - BGP - Address family in VRF recognition fix
  • Huawei VRP - fixed parsing of different output for command "display lldp neighbor"
  • Huawei VRP - fixed parsing of different output for command "display mac-address"
  • Huawei VRP - fixed parsing of different output for command "display memory"
  • Huawei VRP - Route summary for VPN instances (VRF) fix
  • Juniper Junos - DHCP bindings for private VLANs without VLAN ID
  • Juniper Junos - don’t run discovery on secondary nodes.
  • Juniper Junos - EX3400 sn parsing fix
  • Juniper Junos - fixed parsing of different output for command "show ethernet-switching interfaces"
  • Juniper Junos - fixed parsing of different output for command "show lldp neighbors interface <intName>"
  • Juniper Junos - fixed parsing of different output for command "show vrrp detail"
  • Juniper Junos - IRB interface support in pathlookup
  • Mikrotik RouterOS - fixed showing duplicated L3 interface in case that both IPv4 and IPv6 address is configured
  • Palo Alto - fixed parsing of different outputs for command "show arp management"
  • Palo Alto - fixed parsing of different outputs for command "show interface management"
  • Palo Alto - Routing table collection in virtual systems fixed
  • Power supplies table - Missing SN can be taken from inventory if available
  • UI - Cron component - Sunday as an initial value wasn't selected

3.6.3 (10th September 2020)

Improvements

  • Cisco NX-OS and ACI - show inventory based chassis SN is the preferred device SN (otherwise show version based SN is used)

3.6.2 (9th September 2020)

Bug Fixes

  • Configuration Management - fixed getting config file using a parallel API requests
  • Configuration Management - fixed unexpected API failure when was used advanced filters in API request
  • HP Arubasw - fixed version detection on several platforms.

3.6.1 (17th August 2020)

OVA MD5SUM: B4F8C3DCA72657F8A38205D9B1C66626
OVA SHA256SUM: 0FBC098CEE58B7A1F14C6D7DAB822E47788ED2ADB0074DBCC9F745CE7BBEF557

Improvements

  • Site Separation - Regex rule - Site Name field as select box where user can select already created sites or type a new site name
  • Device Explorer - added Model into device detail tab. Also added model column into all tables where exists "platform" column
  • Table Technology / Management / SNMP / Summary - added columns Vendor, Model
  • Table Technology / Networks / Managed Networks - added VLAN ID column
  • Table Technology / Platforms / Cisco VDC - added Device Explorer detail for column Device
  • Cisco IOS - don’t run unsupported storm-control commands on Cisco C45xx platform
  • Maintenance scheduling - added option WEEK and MONTH to allow scheduling to allow job execution on a weekly / monthly basis.
  • Connectivity Report - added MAC address column
  • F5 BigIP - added parsing for model and platform device properties.
  • Added DB index for speed up of table Technology / IP Telephony / Phones

Bug Fixes

  • LDAP - fixed user email when LDAP returns multiple email addresses for a given username
  • LDAP - fixed user authentication, domain suffix to be case sensitive
  • UI - Search for page - removed duplicate results for the same page
  • Jumphost - fixed different SSH prompt when the connection is established
  • Router to switch L2 STP connection fixed for port channel interfaces
  • Cisco ASA - fix platform detection for FPR models.
  • Cisco IOS-XE - fixed parsing of different outputs for command "show ip igmp snooping mrouter"
  • Cisco IOS, IOS-XE - fixed parsing of different output for command "show udld"
  • Cisco IOS, IOS-XE - VSS information collecting fix
  • Cisco IOS, IOS-XE - ACLs - added support for packet length option
  • Cisco IOS - fixed Storm Control for C65xx platforms in case that storm control limits are not set
  • Cisco IOS - fixed parsing of different outputs for command "show switch virtual redundancy"
  • Cisco NX-OS - fixed version detection for models NX-OSv
  • Cisco NX-OS - MDS switches and Nexus 1k Virtual Services Appliance servers are flagged as “Unsupported devices”
  • Cisco NX-OS - fixed parsing of different outputs for command "show ip igmp interface"
  • Cisco NX-OS - fixed parsing of different outputs for command "show ip igmp snooping groups"
  • Cisco NX-OS - fixed parsing of different outputs for command "show cdp global"
  • Cisco NX-OS - fixed getting Fex Power Supply in fail/shutdown state.
  • Cisco IGMP snooping - parsing fixed for disabled IGMP processes on NX-OS and ACI
  • Fortinet FortiGate - don’t create xDP relation for VDOM links where both ends are in the same VDOM
  • Riverbed Steelhead - in some cases "show version" cmd did not provide model, in that case model is taken from "show info".

3.6.0 (1st August 2020)

OVA MD5SUM: 5E260AAA1E88BF4BD8523F0634FC3B4E
OVA SHA256SUM: 5933E36D0FE6CF8AAD22B8CDCF7EA00A90C0028D6D7CDDF85E005269419A4B34
Hyper-V MD5SUM: 634428E5722A53F87C4E0BD5C16F6285
Hyper-V SHA256SUM: 2556A6EB2C7B2DE7318E8FFF1787E5A63D5E5A54BFA1D72F3B416B60DBB8EF78

New Vendor Support

  • Extreme/Avaya - VSP switch family with VOSS basic discovery support added
  • Extreme/Avaya - ERS switch family with BOSS basic discovery support added
  • FRRouting - Added support for basic discovery

Features - Protocol and technology support

  • Device Explorer - Detailed view for each device
    • When you click on hostname value in every table then you can see data from any other table where the data will be automatically filtered for that device.
  • Added summarized tables about device inventory. New tabs in Inventory / Devices:
    • Vendors - Vendor overview in the whole network
    • Families - Vendor / Family overview in the whole network
    • Platforms - Vendor / Family / Platform overview in the whole network
    • Models - Vendor / Family / Platform / Model overview in the whole network
  • New table Technology => VLANs => L3 Gateways - shows VLANs without L3 gateway
  • New table Technology => Platforms => PoE => Modules - shows PoE information per module
  • Cisco ACI - Multicast support added
  • Cisco ACI - Add support for FEX & environment
  • Cisco IOS, IOS-XE - UDLD support added - interfaces and neighbors tables
    • Technology / OAM / UDLD
  • Cisco IOS, IOS-XE - VSS support added
    • Technology / Platforms / Cisco VSS
  • Cisco IOS, NX-OS, HP Comware - Storm Control support added
    • Technology / Interfaces / Storm Control

System

  • Jumphost - Intermediary Linux server with SSH can be used to forward IPF network discovery traffic. User credentials and SSH key for authentication are supported with multiple jumphosts.

Improvements

  • Site separation - the site separation was rewritten. The multiple rules can be defined, Regex rule can be without matching group.
  • Table Technology / Platforms / Stack / Connections - #Known members column added to filter false positive down states for provisioned switches.
  • Table Technology / Addressing / Managed IP - added column Vlan ID
  • Table Technology / Platforms / Stack / Members - added column Uptime
  • Table Technology / Addressing / Managed duplicate IP - Don't report duplicities for Cisco ACI and for "em%", "bme%", "avs%" interfaces
  • Table Inventory - Hosts: Added interface description into Edges column
  • Settings / OUI - added enable/disable for multi rows selection
  • ARP discovery - New OUI for HP/Aruba switches added
  • Neighbor protocols CDP/LLDP - deduplication of same neighbor improved
  • Intent Verification Rules - added icon for customized rules
  • Settings / Advanced / SNMP - added encryption passphrase into SNMPv3 settings
  • Arista EOS - collect average packet size for multicast routes
  • Cisco ACI - VTEP and VNI added to RIB for tunnel interfaces (to support forwarding to vtep from RIB)
  • Cisco ACI - COOP endpoint database collected on spines
  • Cisco Firepower FTD - L2 connection to switch fix, pathlookup will now show L2 path from/to FTD
  • Cisco NX-OS & ACI - local routes /32 are now parsed
  • Cisco NX-OS - fixed parsing of different output for command "show interface switchport"
  • Cisco Nexus FEX - support extended to better deal with possibly missing SN and model information in show fex detail command outputs
  • Cisco IOS-XE WLC - wireless AP MAC derivation changed to prefer MAC-based access point IDs over Ethernet port MACs to better match AP MACs provided by wireless clients
  • Cisco IOS & NX-OS - IGMP snooping groups modified to include mrouter ports
  • Cisco IOS & Arista - Mrouter port entries are inserted into snooping table when no receiver is present
  • Cisco IOS - BGP - add support for Cisco 7300
  • Cisco Firepower ACLs - added support for ‘trust’ action
  • L2 edge port classification improved - tunnel never can be edge port
  • Cisco Nexus - VPC pairs are now connected not only by domain but also must be CDP neighbors.
  • Neighbor discovery protocols improvements - Entries without IP processed, relationships established based on port id, chassis id etc.
  • Pathlookup - WLC detection improved for virtual IP on the management interface.
  • Multicast pathlookup
    • Source MAC taken from any node if not found on connected node in ARP
    • IGMP Snooping L2 path support added
    • Vlan added to device forwarding summary table
  • Table Technology / Inventory / OS versions
    • Performance improvement
    • F5 included
    • Palo Alto correct calculation fix

Bug Fixes

  • Pathlookup - Cisco FEX now correctly work in comparison between snapshots
  • Pathlookup - Own IP without local ARP entry on default GW fix
  • VLAN information is correctly saved even when STP is missing
  • Arista EOS - changed command for multicast routes counters for firmware version 4.23 and higher
  • Arista EOS - fixed version detection on virtual appliance (vEOS)
  • Arista EOS - remove duplicit route, route summary and arp records in vrf default. Fix missing vrf default in VRF task.
  • Arista EOS - fixed parsing of different outputs for command "show ip interface"
  • Cisco ACI - Endpoint table parsing fix for entries with missing flags
  • Cisco IOS & IOS-XE - show ip mroute vrf was on some platforms shortened and ambiguous.
  • Cisco IOS - fixed parsing of different outputs for command "show ip pim interface"
  • Cisco IOS/IOS-XE - fixed parsing of different outputs for command "show ip pim neighbors", entries without flags
  • Cisco IOS/IOS-XE - fixed parsing of different outputs for command "show ip mroute"
  • Cisco IOS/IOS-XE - fixed parsing of different outputs for command "show interfaces"
  • Cisco IOS C3750 - fixed parsing of provisioned member switches in command “show switch detail“
  • Cisco IOS-XE - "show version" stack member parsing fixed
  • Cisco IOS XR - fixed parsing of different outputs for command "show cef vrf <instance> detail"
  • Cisco Meraki - if the proxy is configured then the connection use that proxy
  • Cisco NX-OS 5000 - fixed parsing of different outputs for command "show nve interface"
  • Cisco NX-OS 5000 - fixed parsing of different outputs for command "show nve vni"
  • Cisco NX-OS - fixed parsing of different outputs for command "show ip pim rp vrf all"
  • Cisco NX-OS - fixed parsing of different outputs for command "show ip igmp snooping"
  • Cisco NX-OS - fixed parsing of different outputs for command "show mac multicast parsing", repeated header in the output
  • Cisco NX-OS - fixed parsing of different outputs for command "show vlan brief"
  • Cisco NX-OS - fixed parsing of different outputs for commands "show ospfv3 neighbor detail"
  • Cisco NX-OS - Fixed wrong command for IGMP snooping groups
  • Cisco SG - fixed parsing of different output for command "show arp"
  • Dell PowerConnect - fixed parsing of different output for command "show interfaces status"
  • Juniper Junos - fixed parsing of different outputs for commands "show multicast route extensive"
  • Juniper Junos - fixed parsing of different output for command "show connections extensive"
  • Juniper Junos - fixed parsing of different output for command "show virtual-chassis"
  • Juniper Junos - fixed parsing of different output for command 'show configuration | display set | except "^deactivate"'
  • Juniper Junos - fixed parsing of different output for command "show lldp neighbors interface <int>"
  • Extreme Enterasys - fixed parsing of different output for command "show spantree stats active sid <id>"
  • Extreme XOS - fixed parsing of different output for command "show edp ports all detail"
  • Extreme XOS - fixed parsing of different output for command "show configuration"
  • Fortinet FortiGate - fixed switching between VDOMs
  • HP Arubasw - fixed parsing of different output for command "show ip"
  • HP Arubasw - fixed parsing of different output for command "show vlans"
  • HP Arubasw - fixed parsing of different output for command "show vlans ports all detail"
  • HP Comware - fixed parsing of different output for command "display arp"
  • HP Comware - fixed parsing of different output for command "display mac-address"
  • HP Comware - fixed parsing of different output for command "display stp region-configuration"
  • HP Comware - fixed parsing of different output for command "display interface"
  • HP Comware - fixed parsing of different output for command "display fan"
  • HP Comware - fixed parsing of different output for command "display ip netstream export"
  • HP Comware - fixed parsing of different output for command "display power"
  • Huawei VRP - fixed parsing of different output for command "display interface"
  • Huawei VRP - fixed parsing of different output for command "display dhcp snooping statistics"
  • Huawei VRP - fixed parsing of different output for command "display eth-trunk"
  • Huawei VRP - fixed parsing of different output for command "display device"
  • Huawei VRP - fixed parsing of different output for command "display current-configuration"
  • PaloAlto - fixed hardware SN for virtual systems

3.5.4 (18th June 2020)

OVA MD5SUM: 7BB3D18A74F6D36D94330416C8A5E856
OVA SHA256SUM: 433B2001170341160275044DB430F1EF3F2ED2E1FA9C4E03A68F2A624B677510

Bug Fixes

  • Cisco Firepower - NTP disabled for version 6.5 and above due to Cisco bug CSCvt01938
  • HP Arubasw - prompt detection fixed - additional chars allow to appear in prompt

3.5.3 (9th June 2020)

OVA MD5SUM: 59D82DDADAD04C5F160D189A55B23B55
OVA SHA256SUM: 3FBA60725BC7261145759AE79DA8E38B54167141F755140D8F67699B5A7F1525

Improvements

  • Cisco IOS-XE - Add patch information into version
  • Cisco IOS-XE - show version parsing updated, stack task enabled for Cat9k and ct5760
  • End to End path - Gateway mac detection improved
  • Routing edges between devices improved - different VRF established if ARP and interface mac is available

Bug Fixes

  • End to End path - Multiple lookups on same node optimization fix
  • Arista EOS - fixed collecting of MAC table
  • Arista EOS - MAC multicast - missing multicast table fix
  • Arista EOS - IGMP snooping groups - flood support added
  • Cisco ASA/FTD - ACL evaluation fixed (for cases with inbound global ACL only)
  • Cisco ASA/FTD - "internal-only” interfaces are not parsed anymore (names like "Internal-Data”, "Internal-Control” or "Virtual” with nameif "_internal_loopback”)
  • Cisco IOS - fixed parsing of different output for command "show ip igmp snooping"
  • Cisco IOS - IGMP snooping - parsing fix for EOL comma, multiple versions, and different headers
  • Cisco IOS - MAC multicast - parsing fix for no ports or no VLAN entries, 6500 new header fix
  • Cisco IOS - fixed parsing of different outputs for commands "show ip pim rp vrf all" and "show ip pim rp mapping"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show wlan summary"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show wireless client mac-address <mac> detail"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show ap name <apName> wlan dot11 5ghz"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show ap name <apName> wlan dot11 24ghz"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show ap cdp neighbors"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different outputs for commands "show ap name <apName> ethernet statistics"
  • Cisco IOS-XE - show version - stack member parsing fixed to deal with missing system sn
  • Cisco NX-OS - fixed parsing of different outputs for commands "show ip pim rp vrf all" and "show ip pim rp mapping"
  • Cisco NX-OS - MAC multicast - different platform heading parsing fix
  • Cisco NX-OS - MAC address table - VTEP IP parsing fixed
  • Cisco Nexus VPC - STP virtual bridge ID mac fix, CDP to establish STP links for virtual bridge ID is required.
  • Fortinet FortiGate - fixed parsing of different output for command "show system zone"

3.5.2 (1st June 2020)

OVA MD5SUM: 2985C13C8185B470F4BD65A05826FCA2
OVA SHA256SUM: 84CF13C1266B0FC690765C2E547C61DF9679DF2B4CEC023CBEB3DEA06F46220F

Features - Protocol and technology support

  • Arista EOS - Added AAA support
  • Juniper Junos - add ISIS IPv6 neighbors support
  • Cisco FTD added support for AAA, ACL, NAT, NTP, Object groups, Routing table, SNMP, Syslog
  • Cisco IOS, IOS-XE, NX-OS & Arista - New IGMP Snooping and mac multicast tables
    • Technology / Multicast / Mac table
    • Technology / Multicast / IGMP Snooping / Vlans Configuration
    • Technology / Multicast / IGMP Snooping / Global Configuration
    • Technology / Multicast / IGMP Snooping / Groups
  • Cisco IOS, IOS-XE, IOS-XR, NX-OS & Arista & Juniper - Add info about PIM Rendezvous Points (RP) and Bootstrap servers
    • Technology / Multicast / RP / Overview
    • Technology / Multicast / RP / BSR
    • Technology / Multicast / RP / Mappings
    • Technology / Multicast / RP / Mappings Groups

Improvements

  • Settings - Advanced - new setting for discovery tasks
    • The discovery process can be limited only to devices that were already discovered in the past.
    • The number of tasks for discovery process can be also limited by "What information is used to identify neighbors"
  • Pathlookup - Multicast over unreachable transit support added.
  • Mikrotik RouterOS - remove syslog messages from command output + fixed processing of tunnel interfaces
  • Table Technology / Management / AAA / Servers - added columns "Destination hostname", "Config name" - (hidden by default)
  • Table Technology / IP Telephony / Phones - added columns "Vendor"
  • Cisco Nexus - Mroute table counters (incoming packets and avg. packet size) added
  • Cisco Nexus - routes with “pending only” parameters are not put into the routing table
  • Cisco FTD - uptime parsing fixed for device in failover cluster (device uptime is used now)
  • Added Voice VLAN parameter from Arista switchports.
  • Cisco ASA/FTD - added support for "show interface detail" command to better parse vlan IDs on interfaces (cmd "show interface" still kept as backup cmd)
  • Host-to-gateway - STP instance added not only based on ROOT ID (can be same for virtual mac) but also STP domain ID.
  • CSV export - export is limited to 2M rows to improve performance. We will introduce a separate Export job in the near future

Bug Fixes

  • Managed duplicate IP false positive removed for
    • VXLAN virtual address
    • VXLAN source loopback address
  • Fixed detection of some entry-level FortiGate models (e.g. 30D)
  • Unable to discover Meraki with automated snapshot
  • Enable discover HP ProCurve in the stack
  • The user with read priviliges could update intent verification rules.
  • Arista EOS - fixed collecting of multicast routing table for all VRFs
  • Arista EOS - fixed parsing of different output for command "show vlan"
  • Arista EOS - fixed parsing of different output for command "show ip ospf neighbor detail"
  • Arista EOS - fixed parsing of different output for command "show port-channel summary"
  • Arista EOS - fixed parsing of different output for command "show interfaces vxlan 1"
  • Arista EOS - collect PIM commands for all configured VRFs
  • Cisco ASA - fixed parsing of different output for command "show context"
  • Cisco NX-OS - fixed parsing of different output for command "show ip igmp group vrf all"
  • Cisco NX-OS 9000 - MTU information is now taken from port configuration instead of QoS policy.
  • Cisco IOS - fixed parsing of different output for command "show ip vrf"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different output for command "show wireless client summary"
  • Cisco Firepower Threat Defense - fixed mapping of mac address table
  • Extreme XOS - get ARP records from all vr
  • HP Comware - fixed parsing of different output for command "display dhcp-snooping packet statistics"
  • HP Comware - fixed parsing of different output for command "display device manuinfo"
  • Huawei VRP - fixed parsing of different output for command "display bgp peer"
  • Huawei VRP - fixed parsing of different output for command "display bgp peer verbose"
  • Juniper Junos - fixed parsing of different output for command "show ldp neighbor extensive instance <vpnName>"
  • Juniper Junos - fixed parsing of different output for command "show spanning-tree bridge detail"
  • Juniper Junos - fixed parsing of various output for command “show interfaces terse"
  • Juniper Junos - fixed parsing of different output for command "show configuration | display set"
  • Juniper Junos - fixed parsing of different output for command "show ethernet-switching interface"
  • Juniper Junos - fixed showing of RPs in multicast routing table
  • Huawei VRP - fixed parsing of different output for command "display ospf peer"
  • Palo Alto - fixed parsing of different output for command "show arp all"
  • Cisco IOS-XE WLC 9800 - fixed parsing of different output for command "show ap summary"

3.5.1 (20th April 2020)

Features - Protocol and technology support

  • New multicast first-hop routers table - all routers which have connected sources ( Technology / Multicast / MRoute / First hop router)

Improvements

  • Improved system update procedure
    • Allow downloading logs from an update process
    • Progress bar for manual package upload
  • At the user's request, we increased CLI session timeout to a maximum of 600s (Warning: a high timeout can significantly prolong the discovery time)
  • Cisco ASA - ACLs and object groups - added support for ‘names’

Bug Fixes

  • Graph protocols - VXLAN VTEP sessions with virtual IP fix
  • Pathlookup - Default GW - prefer devices with host ARP entry
  • Pathlookup - Vxlan multiple router lookup in different VRF fix
  • Pathlookup - Encapsulation into VXLAN first edge RIB tunnel fix
  • Pathlookup - Multicast sources and receivers in snapshot comparison fix
  • Pathlookup - Multicast source connected to multiple routers with same mac is now represented by one source
  • Pathlookup - Multicast source and first-hop routers detection improved
  • Pathlookup - Multicast forwarding - do not send back from to incoming interface included in OIL
  • Multicast sources table - (*, G) false entries removed
  • Mikrotik RouterOS - in some cases getting xDP neighbors could fail (fixed)
  • Arista EOS - parse transceivers information from command "show inventory"
  • Arista EOS - parse transceivers information from command "show port-channel dense"
  • Arista EOS - fixed parsing of different output for command "show ip ospf interface"
  • Arista EOS - fixed parsing of different output for command "show ip route"
  • Arista EOS - fixed parsing of different output for command "show interfaces vxlan 1"
  • Arista EOS - several multicast fixes regarding PIM neighbors & interfaces, IGMP
  • Cisco - showRun - parsing fixed and extended (ASA AAA, IOS NAT)
  • Cisco IOS-XR - fixed parsing of different output for command "show route summary detail"
  • Cisco IOS-XR version 5 - fixed OSPF task mapping, add new commands "show ospf interface", "show ospf vrf all interface"
  • Cisco IOS-XR - several multicast fixes regarding PIM neighbors & interfaces, IGMP
  • Cisco IOS-XE - WLC 9800 - fixed parsing of different output for command "show version"
  • Cisco Firepower Threat Defense - fixed mapping of L2 management interface
  • Cisco NX-OS - fixed parsing of different output for command "show ip bgp vrf all all neighbor"
  • Cisco NX-OS - fixed parsing of different output for command "show nve vni"
  • Cisco NX-OS - several multicast fixes regarding PIM neighbors & interfaces, IGMP
  • Cisco Nexus - correctly detect "Error: AAA authorization failed for command" as Authentication fail error
  • Cisco Meraki - added support for 'failed' interface state, counters load parsing extended
  • Cisco SG - fixed parsing of different output for command "show system"
  • Cisco IOS-XR - fixed parsing of different output for command "show system"
  • Cisco WLC - fixed parsing of different output for command "show ap wlan 802.11a <apName>"
  • Cisco WLC - fixed parsing of different output for command "show ap wlan 802.11b <apName>"
  • Juniper Junos - several multicast fixes regarding PIM neighbors & interfaces, IGMP
  • Juniper Junos - fixed remote IP’s mapping of CCC with long LSP names
  • Juniper Junos - fixed parsing of different output for command "show connections extensive"
  • Palo Alto - fixed missing routing table on some of devices
  • CDP/LLDP - Meraki neighbor parsing fixed

3.5.0 (1st April 2020)

OVA MD5SUM: A129A0FD9359105E9C637ADC332459AE
OVA SHA256SUM: 9A3713121B9072882F8332618594F4BAB566697D52544FEBB737DAD528321203
Hyper-V MD5SUM: 698E5DF7D7A945EE2FABCA4DA1EA845C
Hyper-V SHA256SUM: 29E185591D87B327B50D791F8916C6FC08C399984C5AE392902E9EF6418EA8F3

Features - Protocol and technology support

  • Add support for Cisco Meraki (REST API provides limited set of information)
    • Setup REST API connection at Settings / Advanced / Vendors API
  • Add support for L2VPN technologies: CCC, VPWS and VPLS. (Cisco IOS's, Juniper)
    • Tables in Technology / MPLS / L2 VPN
  • Add support BGP over IPv6 for Cisco XR
  • Add support for Multicast (IGMP, PIM, MROUTE) for Cisco IOS, IOS-XE, IOS-XR, NX-OS, Arista EOS, Juniper Junos
    • Tables in Technology / Multicast

Features - System

  • Techsupport file - added option to make database dump without devices data (only system tables + settings)

Improvements

  • Technology / FHRP tables improved to be VRF aware
  • CSV export - removed first line with "sep=;" and escape all value (stop forcing auto-format in excel
  • Pathlookup
    • MPLS explicit null label support added
    • MPLS swap and push label support added
  • Count of total rows for some table can be a big performance problem, so this feature is disabled for some tables. "unknown" is used instead of total rows.
    • Technology / MPLS / L3 VPN / PE Routes
  • Juniper Junos - Get import/export route targets to VRF from policies

Bug Fixes

  • Configuration management - syslogTrigger option didn't work, fixed
  • Tables - fixed updating of rule for Advanced Filters
  • Techsupport page - fixed issue when techsupport failed, then the UI still displayed that the process is in progress
  • Host to gateway - fixed Host in VRF
  • Arista EOS - keep domain name in hostname
  • Arista EOS - fixed mapping for VXLAN task
  • Arista EOS - fixed parsing of different output for command "show interfaces"
  • Arista EOS - fixed parsing of different output for command "show interfaces vxlan 1"
  • Arista EOS - fixed parsing of different output for command "sho ip bgp neighbor vrf all"
  • Arista EOS - fixed parsing of different output for command "show ip bgp neighbor"
  • Cisco IOS-XE Catalyst 9000 - fixed parsing of stacking information
  • Cisco ASA - fixed parsing of different output for command "show ipv6 interface"
  • Cisco ASA - fixed parsing of different output for command "show run"
  • Cisco ASA - fixed parsing of different output for command "show route", add name alias to IP mapping
  • Cisco ASA - fixed parsing of different output for command "show run all object"
  • Cisco ASA - fixed parsing of different output for command "show ipv6 ospf neighbor detail"
  • Cisco IOS - fixed parsing of different output for command "show vrf detail"
  • Cisco IOS - fixed parsing of different output for command "show ip protocols"
  • Cisco IOS/IOS-XE - fixed parsing of capwap interfaces
  • Cisco ASR9K/10K - show version parsing fix
  • Cisco IOS-XE cat3K - stack member without HW version and empty stack parsing fixes
  • Cisco IOS-XE - fixed parsing of different output for command "show monitor detail"
  • Cisco IOS-XE - fixed parsing of different output for command "show authentication sessions"
  • Cisco IOS-XE - fixed parsing of different output for command "show run"
  • Cisco IOS-XR - fixed parsing of different output for command "show mpls forwarding-table detail"
  • Cisco IOS-XR - fixed parsing of different output for command "show ospfv3 vrf all-inclusive neighbor detail"
  • Cisco IOS-XR - fixed parsing of different output for command "show ospf vrf all-inclusive neighbor detail"
  • Cisco IOS-XR - fixed parsing of different output for command "show mpls forwarding"
  • Cisco IOS-XR - fixed parsing of different output for command "show hsrp"
  • Cisco IOS-XR - fixed parsing of different output for command "show isis neighbor detail"
  • Cisco IOS-XR - fixed parsing of different output for command "show snmp host"
  • Cisco IOS-XR - fixed parsing of different output for command "show run"
  • Cisco IOS-XR - fixed parsing of different output for command "show ospfv3 vrf all-inclusive interface"
  • Cisco NX-OS - fixed parsing of different output for command "show ospfv3 vrf all neighbors detail"
  • Cisco NX-OS - fixed parsing of different output for command "show ipv6 interface vrf all"
  • Cisco NX-OS - fixed parsing of different output for command "show fex detail"
  • Cisco NX-OS - fixed parsing of different output for command "show ospfv3 vrf all"
  • Cisco NX-OS - keep domain name in hostname
  • Cisco NX-OS - try to use 2 different commands for routing table per VRF instance
  • Cisco SG - fixed parsing of different output for command "show system"
  • Cisco SG - fixed parsing of different output for command "show run"
  • Cisco SG - fixed parsing of different output for command "show interface switchport <intName>"
  • Cisco SG - Secure access ports - port auth.state fix
  • Cisco WLC Air - fixed parsing of different output for command "show wlan <wlanId>"
  • Cisco WLC Air - fixed parsing of different output for command "show port detailed-info"
  • Cisco WLC Air - fixed parsing of different output for command "show ap wlan 802.11a <apName>"
  • Cisco WLC Air - fixed parsing of different output for command "show ap wlan 802.11b <apName>"
  • Cisco WLC Air - fixed parsing of different output for command "show lag summary"
  • Checkpoin Gaia - fixed parsing of different output for command "show ospf interfaces detailed"
  • Extreme XOS - fixed mapping for L2 interfaces
  • Extreme XOS - fixed parsing of different output for command "show stpd detail"
  • Fortinet Fortigate - fixed parsing of different output for command "diag netl agg name <aggregate>"
  • F5 BigIP - fixed parsing of different output for command "show cm device"
  • Fortinet FortiOS - fixed parsing BGP neighbors which are in active state for a long time
  • Fortinet FortiGate - Zone FW - FQDN address object couldn’t be found if it was defined with upper case letters
  • HP ArubaSW - fixed parsing of different output for command "show ap lldp neighbors"
  • HP Comware - fixed parsing of different output for command "display stp"
  • HP Comware - fixed parsing of different output for command "display wlan ap all verbose"
  • Huawei VRP - fixed parsing of different output for command "display ospf interface all"
  • Huawei VRP - fixed parsing of different output for command "display eth-trunk"
  • Huawei VRP - fixed parsing of different output for command "display lldp neighbor"
  • Huawei VRP - fixed parsing of different output for command "display snmp-agent community read"
  • Huawei VRP - fixed parsing of different output for command "display snmp-agent community write"
  • Huawei VRP - fixed parsing of different output for command "display ip routing-table vpn-instance <name> statistics"
  • Huawei VRP - fixed parsing of different output for command "display ntp sessions"
  • Huawei VRP - fixed parsing of different output for command "display observe-port"
  • Huawei VRP - fixed parsing of different output for command "display esn"
  • Huawei VRP - fixed parsing of different output for command "display vrrp"
  • Huawei VRP - fixed parsing of different output for command "display mac-address"
  • Huawei VRP - fixed parsing of different output for command "display port-mirroring"
  • Huawei VRP - imporved parsing for command "display ip vpn-instance" to support long names of VRF
  • Huawei VRP - "display device" and "display device manufacture-info" parsing fixed and extended to better support modular chassis
  • Checkpoint Gaia - improved OS version detection, support for new versions outputs.
  • Mikrotik RouterOS - fixed command to get bridge hosts table
  • Juniper Junos - fixed parsing of different output for command "show lacp interfaces"
  • Juniper Junos - fixed parsing of different output for command "show spanning-tree interface detail"
  • Juniper Junos - fixed parsing of different output for command "show configuration security policies | display set"
  • Juniper Junos - fixed getting VRRP group in idle state
  • Juniper Junos - fixed parsing of different output for command "show vrrp detail"
  • Juniper Junos - fixed parsing of different output for command "show interfaces statistics detail"
  • Juniper Junos - fixed parsing of different output for command "show ldp neighbor extensive instance <ipv4VpnName>"
  • Palo Alto - interfaces: n/a duplex and speed are not parsed as unknown but as n/a
  • Quagga - fixed parsing of different output for command "show bgp summary"
  • Quagga - fixed parsing of different output for

3.4.4 (11th March 2020)

OVA MD5SUM: EF151028D7F0DABFC556F87F3696E1C1
OVA SHA256SUM: 40449CAC066CF91A7934514DE870A86B5CDAD09D486C1863F8578259635E471A

Bug Fixes

  • Maintenance job - fixed memory leak in reading snapshots details.

3.4.3 (4th March 2020)

Improvements

  • Removed automatic sanitization for LDAP Settings
  • Added new option to disable LDAP nested groups for AD (speedup login process)
  • Added ldap-search tool into image for troubleshooting purposes

3.4.2 (27th February 2020)

OVA MD5SUM: 2B16E83667672944095CEC1BA6FCE92A
OVA SHA256SUM: 5652274E1678A40ADF03945F95FA174C0F06245CB213DB7CDBF9AD4FFDF65B40
Hyper-V MD5SUM: 43D8EDCDE98F7F176306B1529DDC32EE
Hyper-V SHA256SUM: AF8A6B44963C71E7FE28FB08D4D474FD2B18F93E17265C4F3CE5C6051984E017

Improvements

  • Added NGINX logs into techsupport file

Bug Fixes

  • LDAP Groups - the user groups are always determined using "member" and also using "memberOf" attribute, no matter on LDAP server type.
  • User management - fixed fail to create user with any capital letters
  • FIX API service isn't restarted when DB service isn't alive - only message in UI will be displayed
  • Cisco IOS - fixed parsing of different output for command "show crypto session brief"
  • Juniper - Add protocol isis parameter to cmd for route summary task (protection before downloading full bgp table)
  • Fixed several problems with Backup/Restore

3.4.1 (5th February 2020)

Improvements

  • Quagga Routing Suite - replaced command "show interfaces vrf all" with "show interfaces"
  • Quagga Routing Suite - replaced command "show ip route vrf all" with "show ip route"
  • Quagga Routing Suite - replaced command "show ip route summary vrf all" with "show ip route summary"

Bug Fixes

  • LDAP - fixed sanitization of DN information, improved LDAP logs
  • Arista EOS - fixed parsing of different output for command "show ip route <protocol>"
  • Arista EOS - fixed parsing of different output for command "show ip bgp neighbors"
  • Juniper Junos - fixed parsing of different output for command "show version" - missing hostname in output

3.4.0 (28th January 2020)

OVA MD5SUM: 0eba4cf8e164ce267ce6edd0677f8dda

OVA SHA256SUM: 17d733e041c2726bc0dd74d88573f88525c0a3ba9cfbb65ad4faafe0de4ce7b0

Features - Protocol and technology support

  • Added support for Cisco Converged Access WLCs and “Next-Gen” WLCs 9800
  • Added support for Quagga Routing Suite
  • Added basic support for Virtual Systems on Palo Alto firewalls
  • New VRF tables (Technology => Routing => VRF)
    • Summary - to get a quick overview of configured VRF in your network.
    • Detail - configured VRF per device.
    • interfaces - configured VRF on device and interface.
  • New L3 VPN tables (Technology => MPLS => L3 VPN)
    • PE Routers in network
    • VRF configured on PE routers with summary of routes in VRF
    • Route targets import and export configured in VRF
    • Routes on PE in VRF including originating source PE

Features - System

  • implemented LDAP groups - now is possible set permissions per LDAP domain group.
  • compare feature now working also for STP instances
  • FIX: L3 protocols edges disappeared after transit cloud expansion

Visualization

  • FIX: Positions of FEX's weren't correctly restored for next snapshot (or reloaded snapshot) - all views with FEX's have to be saved again after rearranging positions.
  • Pathlookup - Cisco ACI support added
  • Pathlookup - possibility to track packet path in specific VRF, including VRF auto detection.

Improvements

  • Added column Mac address into Technology => Management => Manage IP
  • Arista - ARP and RIB tables support for non-vrf devices
  • Arista - BGP and ISIS support for non-vrf devices
  • Cisco ASA cluster auto-generated MAC starting with A2 - when IP is learned from ARP, it’s included to discovery.
  • Fortinet Fortigate - added verstion detection for fortigate with Wifi module
  • Snapshot Management - Settings detail can be closed on ESC
  • Juniper Junos - VRRP groups were assigned to wrong subinterface. Now groups are assigned properly.
  • End of Life table improvement - One summary table per unique PID, one detail table showing all PID and their SN
  • Technology / Routing / Summary - BGP, IS-IS, OSPF, OSPFv3 added VRF column
  • CLI Authentication - allow to save duplicit usernames
  • L2 Edge port - xDP protocols on void are removed from decisions process as they can lie with their capabilities (e.g. OPX send it’s router)

Bug Fixes

  • Fixed problem with resolving DNS names - some IP didn't have to be translated.
  • Arista - fixed missing native VRF in OSPF
  • Arista EOS - fixed parsing of different output for command "show interfaces vxlan 1"
  • Arista EOS - fixed parsing of different output for command "show ip ospf neighbor detail"
  • Cisco ACI - Interface vlan mac address parsing fix
  • Cisco ACI - fixed parsing of different output for command "show vlan extended"
  • Cisco ASA routing table - nexthop IP to outgoing interface mapping fixed
  • Cisco IOS - fixed parsing of different output for command "show ip cef detail"
  • Cisco IOS - fixed parsing of different output for command "show mpls forwarding-table detail"
  • Cisco IOS - fixed parsing of different output for command "show spanning-tree mst"
  • Cisco IOS - fixed parsing of different output for command "show power inline"
  • Cisco IOS - fixed parsing of different output for command "show cdp neighbors detail"
  • Cisco IOS XE - fixed parsing of different output for command "show vlan brief"
  • Cisco IOS-XR - fixed parsing of different output for command "show mpls forwarding"
  • Cisco NX-OS - fixed parsing of different output for command "show nve vni"
  • Cisco NX-OS - fixed parsing of different output for command "show system internal l2fwder mac"
  • Cisco NX-OS - fixed parsing of different output for command "show logging server"
  • Cisco NX-OS - fixed parsing of different output for command "show interface switchport"
  • Cisco NX-OS - fixed parsing of different output for command "show environment fex all"
  • Cisco SG350 - fixed version detection
  • Cisco SG - fixed parsing of different output for command "show interface switchport"
  • Extreme Enterasys - fixed parsing of different output for command "show system"
  • Extreme Enterasys - fixed parsing of different output for command "show neighbors"
  • Extreme Enterasys - fixed parsing of different output for command "show lacp"
  • Extreme Enterasys - fixed parsing of different output for command "show port status"
  • Extreme Enterasys - fixed parsing of different output for command "show ip route"
  • Extreme Enterasys - fixed parsing of different output for command "show port counters"
  • Extreme Enterasys - improved version detection
  • F5 BigIP - fixed parsing of different output for command "show sys hardware"
  • Fortigate - fixed missing VIP address objects in FortiGate policies
  • Fortinet Fortigate - fixed parsing of different output for command "get router info ospf interface"
  • Fortinet Fortigate - fixed parsing of different output for command "get router info vrrp"
  • Fortinet Fortigate - fixed parsing of different output for command "show firewall policy"
  • HP ArubaSW - fixed parsing of different output for command "show trunks"
  • HP ArubaSW - fixed parsing of different output for command "show ip"
  • HP ArubaSW - fixed parsing of different output for command "show spanning-tree instance <instance>"
  • HP ArubaSW - fixed parsing of different output for command "show interface all"
  • HP ArubaSW - fixed parsing of different output for command "show interface brief"
  • HP ArubaSW - fixed parsing of different output for command "show vlans ports all detail"
  • HP Comware - fixed parsing of different output for command "display mac-authentication"
  • HP Comware - fixed parsing of different output for command "display isis peer ver <processId>"
  • HP Comware - fixed parsing of different output for command "display clock"
  • HP Comware - fixed parsing of different output for command "display mirroring-group all"
  • HP Comware - fixed parsing of different output for command "display link-aggregation verbose"
  • Juniper Junos - fixed parsing of different output for command "show route active-path"
  • Juniper Junos - fixed parsing of different output for command "show interfaces terse"
  • Juniper Junos - fixed parsing of different output for command "show configuration forwarding-options sampling"
  • Juniper Junos - fixed parsing of different output for command "show configuration interfaces | match sampling | display set"
  • Juniper Junos - fixed parsing of different output for command 'show configuration | display set | except "^deactivate"'
  • Juniper Junos - fixed parsing of different output for command "show route active-path"
  • Juniper - SNMP & Logging parsing fix when deactivated part was in config
  • Juniper - fixed getting ACL from device configuration
  • Juniper Junos - fixed route summary calculations, now corresponds correctly to number of routes in routing table
  • Juniper Junos - BGP summary parsing fix

3.3.3 (10th December 2019)

OVA MD5SUM: 3849bcf518ac89ea987f70af48ed88fa

OVA SHA256SUM: cf360ee8379b73591a1c7790004e11aa49f02f1da5bdaa101a933d251a71f3b5

Visualization

  • Comparison of routing protocols in the graph was fixed - added links were not displayed
  • FIX: OSPFv3 edges weren't displayed

Improvements

  • Snapshot Management - Inventory tab - added column platform
  • Cisco ACI - RIB recursive lookup fix
  • Cisco IOS/XR - RIB to MPLS forwarding for global table improved
  • Cisco MPLS forwarding table parsing updated to better support per VRF aggregate labels

Bug Fixes

  • Discovery didn't work without any configured "enable" password
  • Snapshot locking / unlocking fix
  • Cisco IOS - BDI interface is standardized to BD so all outputs provides same interface name
  • FIX - Discovery process can be stuck (with enabled DNS resolving)
  • Cisco ACI - fixed parsing of different output for command "show vlan extended"
  • Cisco NX-OS - fixed ambiguous command for show routing table
  • Configuration Management worker - if serial number of the device included "/" character then the config file wasn't saved

3.3.2 (28th November 2019)

OVA MD5SUM: 351f8829c6a6d8106519958b60cc3074

OVA SHA256SUM: 422a095b590301074049b489722be1a03729d00401d4d4e73de483c2b12fe82e

Features - Protocol and technology support

  • PortChannel - added support HP ArubaSW
  • New table Management => Discovery History
    • This table shows all discovered devices in history (no matter which snapshot is selected).

Visualization

Improvements

  • Settings - Advanced - System - Clear DB: Don't delete main inventory data table on keep settings option.
  • Pathlookup - Default GW selection - prefer arp entry over virtual address.
  • Pathlookup - Destination site behind transit cloud recognition improvement
  • HP Comware WLC - removed WLAN-DBSS interfaces
  • Snapshot Connectivity report - allow rediscover IP addresses what were excluded or weren't included before
  • Settings / Authentication / credentials list for CLI - added field to exclude specific CIDR ranges
  • Settings / Authentication / credentials list for enable commands - added include / exclude specific CIDR ranges, username

Bug Fixes

  • Management / Changes - the changes could be wrong after ADD or REFRESH actions in that snapshot
  • Diagrams - if the site was opened from network overview diagram then "single point of failure" or "Nonredundant links" didn't work
  • System - Backup - backup to FTP/FTPS server didn't work without directory specification
  • Add devices into snapshot - if the IP addresses were already tried before then it weren't inserted as a new tasks
  • Cisco NX-OS - fixed parsing of different output for command "show interface status err-disable"
  • HP ArubaSW - improved prompt detection
  • HP ArubaSW - MSTP fixed to use only enabled vlans on ports
  • HP ArubaSW - fixed parsing of different output for command "show cdp neighbors detail"
  • HP ArubaSW - fixed parsing of different output for command "show lldp info remote-device <intName>"
  • HP ArubaSW - fixed parsing of different output for command "show lldp info remote-device detail"
  • HP ArubaSW - L2 interfaces - not all interfaces were correctly parsed
  • Juniper Junos - fixed parsing of different output for command "show interfaces statistics detail"

3.3.1 (18th November 2019)

OVA MD5SUM: 962ebf98db27d514ec993a7e8d2c0735

OVA SHA256SUM: 18e5df2c5ab44756d790b47ced322a138a62dc075c81c4fbe4ffcfe786909e17

Features - Protocol and technology support

  • New table Technology => CDP/LLDP => Endpoints neighbors
    • This table shows all endpoints found by XDP protocols.

Improvements

  • TechSupport & Snapshot Download is generated via API jobs and the result (link for download) will be in Jobs menu now.
    • Those links will be there until user confirm it with X button (user can safely reload the page)
  • Allow to save credentials with empty username (for telnet purposes)
  • Discovery remember used protocol now and this protocol is preferred for next discovery (improved speed of discovery)
  • Improved "Save historical data" job which is run after discovery - precalculation of data is much faster now
    • WARNING - all snapshots should be reloaded otherwise you will get false changes in Management / Changes tables.
  • Maintenance page is displayed also during job "Clean DB" - during this time API don't responding to any request returns HTTP status 503
  • Device hostname should be never empty - if command for getting hostname will fail, then we're getting hostname from CLI prompt
  • HP Aruba switches - MSTP mode detection improvement
  • WLC HP Comware - Wireless service interfaces WLAN-DBSS removed from discovery
  • WLC Aruba - Wireless service interfaces Aruba removed from discovery
  • Site Separation using regex - new button for result preview (optimization for big networks)
  • Discovery - processing of small snapshots will be much faster now

Bug Fixes

  • Fix for corrupted CLI log files
  • HP Aruba - hotfix for enable mode (sending enter for Username: prompt)
  • CDP/LLDP - Parsing fix of some AP and IP Phone reported interface. Improved aggregation of multiple CDP & LLDP entries from same device
  • Manual site separation - didn't work correctly for already loaded snapshot
  • Diagrams - fixed Cisco nx7000 wrong icon
  • Fixed cases where UI shown "[object response]" instead of errors
  • Settings - Advanced - System - Clear DB: The jobs weren't correctly rescheduled
  • Arista EOS - fixed Switchport on L2 interfaces
  • Arista EOS - fixed parsing of different output for command "show ntp ass"
  • Arista EOS - fixed parsing of different output for command "show ip dhcp snooping counters debug"
  • Cisco IOS & NX-OS - fixed parsing of different output for command "show ip dhcp snooping binding"
  • Cisco IOS & NX-OS - fixed parsing of different output for command "show ip dhcp snooping statistics"
  • Cisco IOS & NX-OS - “show vlan brief” support for long names and spaces in names added
  • Cisco IOS use "show vlan-switch brief" command (instead of show vlan which gives ambiguous command).
  • Cisco IOS / IOS-XR / IOS-XR - fixed ISIS system type L1/L2
  • Enterasys fixed device prompt detection
  • Enterasys minor fixes regarding CDP & LLDP bindings
  • F5 Big-IP - fixed parsing of different output for command "show cm device"
  • HP ArubaSW - fixed parsing of different output for command "show dhcp-snooping"
  • HP ArubaSW - fixed parsing of different output for command "show spanning-tree detail"
  • HP Comware WLC - client AP mac detection improved so it’s correctly tied to AP
  • Juniper Junos - fixed parsing of different outpur for command "show vlans detail"
  • Mikrotik - fixed parsing of different output for command "/interface print detail"
  • Mikrotik - fixed parsing of different output for command "/ip route print detail"
  • Mikrotik - fixed parsing of different output for command "/system ntp client print"

3.3.0 (4th November 2019)

OVA MD5SUM: 5fe5fbba70252dcc60ed76a33ebb9eed

OVA SHA256SUM: 2dc27c1de2d3bb664359e9906cec80bf685bff0e6cb25c68f0933dfe29867f1c

Features - Protocol and technology support

  • Added support for Mikrotik routers (please read known issue https://ipfabric.atlassian.net/wiki/spaces/ND/pages/735248385/Mikrotik)
  • Added basic support for Enterasys vendor
  • Every snapshot has own settings which can be extended from global settings.
  • SSID Summary table for wireless (Technology / Wireless / Radios/BSSID / SSID Summary)
  • Vlan database collection with new vlan detail and summary tables
    • Technology -> Vlans -> Device Summary - Number of VLANs configured per device
    • Technology -> Vlans -> Device Detail - Detail for specific vlan and device
    • Technology -> Vlans -> Network Summary - List of all vlans configured in network. Grouped by VLAN ID
    • Technology -> Vlans -> Site Summary - List of all vlans configured on the site
  • Collecting information about DHCP snooping
    • Technology -> Security -> DHCP Snooping

Visualization

  • Diagrams - display results from intent verification rules
  • Diagrams - Host to gateway & Pathlookup form - the last used values are remembered
  • Diagrams - Protocols can be expanded / collapsed on double click
  • Performance improvements - loading of graph should be faster
  • Comparing was improved to display changes for edges pointing into transit cloud + changes for interconnected sites edges (If the site have more than 400 ummanaged neighbors then it can't be compared)
  • If transit cloud have more than 100 devices then it can't be expanded.

Improvements

  • Improved network credential management - you can set expiration for credentials, more subnet for individual credential, update password.
  • Cisco ASA - object-groups added support for system pre-defined objects
  • Cisco Nexus - transceivers added to inventory.
  • Settings / Advanced / System - Clear DB - now you can choose if you want to keep settings or restore initial settings.
  • Settings / Advanced / SSH/Telnet - added new option to disable discovery using telnet protocol
  • Settings / Advanced / Maintenance - a new job which is necessary to run on daily to keep the system healthy (The job can be run also manually)
  • Reserverd IPv4 prefixes are automatically excluded from discovery (0.0.0.0/8, 127.0.0.0/8, 224.0.0.0/4, 240.0.0.0/4)
  • Pathlookup - Gateway selection algorithm will consider only /8 and smaller networks.
  • Diagrams - don't navigate into overall network view when leaving or entering pathlookup or host2gateway mode

Bug Fixes

  • Configuration management didn't work correctly from 3.2.0 - the changes in settings wasn't applied without a service restart
  • CLI - pagination text wasn't correctly cleared from CLI output (bug introduced in 3.2.1)
  • Diagrams - options "Show edge" wasn't correctly restored for loaded view
  • Diagrams - The saved views with long names couldn't be deleted
  • Diagrams - Saved view (including ViewBuilder) keep the position of transit cloud
  • Discovery could stuck on stop action when scanner was enabled.
  • LDAP Authentication - new ldap admin didn't have set privileges correctly
  • LDAP Authentication - case sensitivity issue Fixed
  • Certification Authorities - fixed verification if uploaded file is correct certificate
  • Snapshot uploading - the second attempt to upload a snapshot leads to deleting a snapshot from the hard drive.
  • Downloaded snapshot what was later uploaded had a problem that the refresh or add new devices didn't work. Used CLI credentials were sanitized on download, the user is prompted to set new credentials now.
  • Inventory - Interfaces table: IP column, preferring virtual IP as first (previously virtual IP was not shown).
  • Arista EOS - fixed parsing of different output for command "show sflow"
  • Arista EOS - fixed parsing of different output for command "show ntp ass"
  • Arista EOS - fixed parsing of different output for command "show ip arp vrf <vrfName>"
  • Arista EOS - fixed parsing of different output for command "show ip ospf nei det"
  • Arista EOS - fixed parsing of different output for command "show ip ospf interface"
  • F5 - Hostname for both devices in cluster was same. Now it's fixed, each member has correct hostname.
  • F5 Big-IP - fixed parsing of different output for command 'run util bash -c "ntpq -np"'
  • HP Aruba WLC - duplicit client output fixed - it caused that no access point was saved (unique index duplicity)
  • HP Aruba switch - fixed parsing of different output for command "show mac-address"
  • Cisco ASA - fixed parsing of different output for command "show bgp summary"
  • Cisco ASA - fixed parsing of different output for command "show run"
  • Cisco IOS - startup config can be empty fix
  • Cisco IOS - fixed parsing of different output for command "show isis neighbor detail"
  • Cisco IOS - fixed parsing of different output for command "show dot1x all details"
  • Cisco IOS - fixed parsing of different output for command "show interface"
  • Cisco IOS-XR - fixed parsing of different output for command "show inventory all"
  • Cisco IOS-XR - fixed parsing of different output for command "show run"
  • Cisco IOS-XR NCS - inventory, hostname and SN fixes
  • Cisco NX-OS - fixed parsing of different output for command "show logging server"
  • Cisco NX-OS - fixed parsing of different output for command "show inventory"
  • Cisco NX-OS - fixed parsing of different output for command "show interface"
  • Cisco NX-OS - fixed parsing of different output for command "show monitor session all"
  • Cisco NX-OS - RIB HSRP entry removed from RIB edges
  • Dell FTOS - fixed parsing of different output for command "show ip interface"
  • Dell FTOS - fixed parsing of different output for command "show interface"
  • Dell FTOS - fixed parsing of different output for command "show ntp associations"
  • Dell Powerconnect - fixed parsing of different output for command "show interfaces status"
  • Dell Powerconnect - When "show system" hostname is empty, hostname is taken from prompt
  • F5 Big-IP - fixed parsing of different output for command "show sys tmm-info raw"
  • F5 Big-IP - fixed parsing of different output for command "list net trunk all-properties"
  • F5 Big-IP - fixed parsing of different output for command "list sys snmp all-properties"
  • F5 Big-IP - Recursive RIB interface lookup fix
  • F5 Big-IP - IP on L3 interfaces fix
  • F5 Big-IP - Duplicit IP in cluster as RIB nexthop fix (active node IP used)
  • HP Comware - fixed parsing of different output for command " display ip routing-table verbose"
  • Juniper Junos - fixed parsing of different output for command "show ldp neighbor extensive instance <vpnName>"
  • PaloAlto- fixed parsing of different output for command "show system resources"

API Changes

  • Following endpoints have changed 'vlan' column to 'vlanId', next new column added 'vlanName'
    • /tables/spanning-tree/ports
    • /tables/spanning-tree/instances
    • /tables/spanning-tree/topology
    • /tables/spanning-tree/neighbors
    • /tables/spanning-tree/vlans

3.2.1 (19th September 2019)

OVA MD5SUM: 362052f0fc1cecb4c9fefcb0c0cd76e2

OVA SHA256SUM: 237754a2d2594c7ee096c6d90f00a7833bb8f6159e40bb9b5f303b5674d30ce6

Improvements

  • Cisco ACL - added support for more complex rules combining several service object-groups
  • HP Arubasw - LLDP information gathering extended to support switches not supporting “show lldp info remote-device detail” command

Bug Fixes

  • FIXED: Discovery process can be stuck
  • Pathlookup - Object groups on firewalls in path fix
  • Cisco IOS/IOS-XE - netflow version mapping fix
  • Cisco Nexus - Power supply fans are moved from Fans to Power supplies fans tab
  • Extreme XOS- fixed parsing of different output for command "show isis neighbors detail"
  • Juniper EX4300 - fixed parsing for "show version"
  • F5 Big-IP - fixed parsing of different output for command 'run util bash -c "ntpq -np"'
  • F5 Big-IP - fixed parsing of different output for command "run util bash -c uptime"
  • F5 Big-IP - fixed parsing of different output for command "list sys snmp all-properties"
  • Fortinet - NTP task fixed for case when NTP is disabled and command “diagnose sys ntp status“ is not available
  • HP Aruba switch - fixed parsing of different output for command "show system"
  • HP Comware - Interface with lag down state parsing fix
  • HP Comware - fixed parsing of different output for command "display fan"
  • FIXED: Riverbed: Uptime does not consider days, parameter is read incorrectly
  • System - Disk expansion was not working properly in some cases
  • Juniper – Firewall Filters (ACLs) – QoS related actions like loss-priority, forwarding-class or policer are considered to be traffic allowing actions (i.e. permit actions). Actual traffic rate vs. policing max rate is not taken into account anyhow.


3.2.0 (10th September 2019)

OVA MD5SUM: 822ae7794b420242aa0d9db6dd2d62df

OVA SHA256SUM: 03073bc8ecedfac612354a1fbf1695e08808a75366cc433f5fc4d78641c02c60

Warning already loaded snapshot may not work correctly, they should be unloaded and loaded again.

Features - Protocol and technology support

  • Arista EOS - added support for PortChannel task
  • Cisco ACI - added support for discovering
    • New tables in Technology => SDN => ACI
  • Cisco IOS - Added Flexible flow support
  • Dell FTOS (ver 8 & 9 only) - add support for discovering
  • Dell PowerConnect - add support for discovering
  • Fortinet Fortigate - Added MAC address tables support on transparent VDOMs and software switches
  • HP Aruba switch stacking support added

Visualization

  • Compare feature - allows compare topology changes between snapshots
  • Refresh data directly from the graph:
    • New snapshot from devices in the view - allows you to create a network snapshot containing only devices in the view to quickly refresh data for troubleshooting, path lookup, or other purposes.
    • Refresh devices in the view - refreshes and overwrites collected information in the current snapshot for devices in the view.
    • Add devices into this snapshot - allows adding new devices into current snapshot in the same way as from snapshot management but directly from the diagram.
  • Site separation implemented in graphs - use drag&drop to move devices into new site (use CTRL/SHIFT to select multiple)
  • ViewBuilder
    • Added "expand" icon to add all devices what are connected to parent device
    • Added "collapse" icon to remove all devices what are connected to parent device
    • Multiple devices can be also selected with CTRL or SHIFT holding and those devices can be then added or removed from ViewBuilder view.

Improvements

  • Snapshot management - new snapshot allows to create snapshot with customized global settings
  • Snapshot management - Connectivity report - user can select specific IP addresses to rediscover them (only IP with status "stopped", "error")
  • Size of loaded or unloaded snapshot was decreased
  • Settings - Authentication - Notes can be set per credentials record
  • F5 BGP - devices with Virtual Clustered Multiprocessing (vCMP) should be correctly discovered (fixing error - Device already in queue)
  • HPE WLC - Exclude command 'display irf topology' - it may cause high CPU
  • Host table - removed Juniper’s localhost addresses
  • Zone FW policy processing updated to support multi-zone interfaces

Bug Fixes

  • Snapshot older than 3.1.0 couldn't be loaded
  • Visualization - IS-IS edges wasn't correctly restored for saved views, including ViewBuilder
  • Arista EOS - fixed parsing of different output for command "show vrf"
  • Arista EOS - fixed parsing of different output for command "show ip bgp neighbors vrf all"
  • Arista EOS - fixed parsing of different output for command "show ip roout vrf <vrfName>"
  • Arista EOS - fixed parsing of different output for command "show vxlan address-table"
  • Cisco ASA - fixed parsing of different output for command "show ipv6 interface"
  • Cisco ASA - fixed parsing of different output for command "show route"
  • Cisco ASA - fixed parsing of different output for command "show context"
  • Cisco IOS 2960 NTP sources parsing fix
  • Cisco IOS - fixed parsing of different output for command "show snmp host"
  • Cisco IOS - fixed parsing of different output for command "show ipv6 interface"
  • Cisco IOS - fixed parsing of different output for command "show object-group"
  • Cisco IOS - do not run “show flow interface” command on devices where is no exporter (ambiguous cmd fix).
  • Cisco IOS-XE & IOS-XR MPLS forwarding table parsing fixes
  • Cisco IOS-XE - fixed parsing of different output for command "show ip cef vrf <instance> detail"
  • Cisco NX-OS - fixed parsing of different output for command "show run"
  • Cisco NX-OS - fixed parsing of different output for command "show object-group"
  • Cisco NX-OS - fixed Nexus 5000 interface MTU was wrong due to Cisco bug.
  • Cisco WLC - fixed parsing of different output for command "show run-config commands"
  • Cisco - fixed parsing of different output for command "show snmp user"
  • Checkpoit GAIA - fixed parsing of different output for command "show ospf neighbors detailed"
  • Checkpoit GAIA - fixed parsing of different output for command "fw ctl pstat"
  • Juniper - Corrected BGP neighbor uptime if the uptime is less than 60 minutess
  • Juniper Junos - fixed parsing of different output for command "show vrrp detail"
  • Juniper Junos - fixed parsing of different output for command "show ethernet-switching interfaces"
  • F5 Big-IP - fixed parsing of different output for command "show net trunk all-properties" (unsupported counters units)
  • F5 Big-IP - fixed parsing of different output for command 'run util bash -c "ntpq -np"'
  • F5 Big-IP - fixed parsing of different output for command "show sys hardware"
  • F5 Big-IP fixed get uptime from TMSH
  • Fortinet Fortigate - fixed parsing of different output for command "diagnose sys ntp status" (IPv6 ntp sources)
  • Fortinet Fortigate - fixed parsing of different output for command "show firewall policy"
  • Fortinet Fortigate - fixed parsing of different output for command "show system interface"
  • HP Aruba switch - fixed parsing of different output for command "show tech buffers"
  • HP Aruba switch 2920 modules parsing fix
  • HP Aruba switch inventory parsing fix
  • HP Aruba switch - MST instance interface parsing updated to better detect disabled ports
  • HP Aruba - standalone access points are not supported, will be reported as "Can't detect version" - AP can be discovered only via controllers now
  • Huawei Vrp - fixed parsing of different output for command "display lldp neighbor"
  • Huawei Vrp - fixed parsing of different output for command "display stp"
  • Huawei Vrp - fixed parsing of different output for command "display ntp sessions"
  • Huawei Vrp - fixed parsing of different output for command "display vrrp"
  • Paloalto - fixed parsing of different output for command "show interface <intName>"
  • Paloalto - fixed parsing of different output for command "show routing proto ospf interface"
  • Riverbed - fixed collecting information about memory & device platform
  • STP on portchannel to Cisco VSS fix
  • STP to transit for known neighbors fix
  • STP inconsistency - port vlan mismatch for router to switch connection fix
  • STP inconsistency - Ports with multiple neighbors, fix for Cisco VPC and switch to router connections.
  • STP inconsistency - CDP/STP port mismatch for router to switch connection fix
  • Bad device icon in graph - router with NVI interface is recognized as a router even without #routes > 1
  • RIB recursive lookup - fix for local IP on own interface in RIB when used for recursive lookup
  • Pathlookup - Router to switch connection, multiple next hop with different MAC on one interface fix

Changes

  • Syslog functionality has been reduced for triggering configuration changes only. IP Fabric no longer stores incoming syslog messages due to misalignment with product direction.

API Changes

  • Datatype changed for column vlanId from string to number in following endpoints
    • /tables/addressing/arp
    • /tables/interfaces/inconsistencies/details
  • Datatype changed for column vlan from string to number in following endpoints
    • /tables/addressing/mac
    • /tables/addressing/hosts
    • /tables/reports/capacity/hosts
    • /tables/reports/performance/users
    • /tables/spanning-tree/neighbors
    • /tables/spanning-tree/instances
    • /tables/spanning-tree/ports
    • /tables/spanning-tree/topology
    • /tables/spanning-tree/vlans
  • Routes changes
    • POST /start/discovery was replaced with:
      • POST /snapshots for starting a new discovery / creating a new snapshot
      • POST /snapshots/:key/devices for adding a new device
      • DELETE /snapshots/:key/devices for removing a device

3.1.2 (22nd July 2019)

OVA MD5SUM: 99e9f0518be8cc3a6bc662df89a91617

OVA SHA256SUM: c32f726930ffd80d9433888510315c8ed1d5509a3f70b2f98f34b3cab472ef50

Please be patient during the upgrade to IPF version 3.1.2, it may take longer than expected due to the migration of its ArangoDB from 3.3.19 to version 3.4.7.


Improvements

  • BGP - Added support for 4-byte ASN
  • User Interface Security - TLSv1.2 is now the only allowed HTTPS protocol
  • Network Assurance Dashboard loading speedup
  • Cisco WLC - Syslog related information is now parsed from “show run-config commands” instead of “show logging” which provided a lot of unnecessary data
  • Fortinet FortiGate - added support for any-any zone firewall policies
  • Juniper memory information is now taken from “show chassis routing“ command instead of “show system memory“
  • F5 BigIp Improved prompt detection
  • Settings - Advanced - SSH/Telnet - Maximum number of parallel sessions can be limited to a single session (Warning: Discovery speed will be extremely slow)
  • Settings - Advanced - SNMP - Added support for multiple SNMP pollers in

Bug Fixes

  • Tables - CSV export - some columns may not have been exported correctly
  • UI - the tooltips sometimes left visible artifacts
  • UI - Inventory / Host table - could crash when it was stored with old settings
  • UI - Fixed selection of an item in the menu - Diagrams / Site Diagrams - Menu Inventory/sites was selected instead of Site Diagrams
  • Building network topology - could fail on deadlock in DB
  • Cisco ASA – ACL to L3 interface mapping fixed
  • Cisco ASA - fixed parsing of different output for command "show route"
  • Juniper – L2 interfaces and STP related information parsing fixed and updated. Command ‘show ethernet-switching interfaces detail’ is no longer used and was substituted by other commands including ‘show ethernet-switching interfaces’.
  • Juniper - discovery failed when root was used as username
  • Juniper VLAN parsing fixed to include even vlans with names starting and ending with double underscores.
  • Juniper - some platform did not correctly set IP as virtual
  • Juniper Junos - fixed parsing of different output for command "show vlans detail"
  • Arista EOS - fixed parsing of different output for command "show lldp neighbors detail"
  • Arista EOS - fixed parsing of different output for command "show interfaces switchport"
  • Extreme XOS - fixed parsing of different output for command "show ospf interface detail enabled"
  • Extreme XOS - fixed parsing of different output for command "show edp ports all detail"
  • Fortinet FortiGate - fixed parsing of different output for command "get router info bgp neighbors"
  • Fortinet FortiGate - fixed parsing of different output for command "diag sys ntp status"
  • Fortinet FortiGate - fixed parsing of different output for command "diag hard dev nic <intName>"
  • Huawei - fixed parsing of different output for command "display bgp <addressFamily> <vpnInstance> peer verbose'"
  • Paloalto - fixed parsing of different output for command "show ntp"
  • Palo Alto - L2 connection to switches fix
  • Palo Alto - routing table parsing fix
  • Palo Alto - L3 connection on cluster fix

3.1.1 (28th June 2019)

OVA MD5SUM: 1c8a3b4de12d9a2a3c15ceea4005080e

OVA SHA256SUM: 138b25ae8b4b1b1f29b6e01a2e15d619a0eddfd610fcbaa042a22a9a8b80f0e0

Bug Fixes

  • Snapshot Management - fixed cloning of snapshot
  • F5 BigIP - improved OS version detection

3.1.0 (27th June 2019)

Features - Protocol and technology support

  • Cisco Firepower Threat Defense - Added basic support
  • Fortinet FortiGate - added support for vDOMs (please follow our KB article)
  • Fortinet FortiGate - added support for Zone Firewall
  • Added PortChannel support for Fortinet/FortiGate (802.11ad only)
  • Added support for OSPF v3 (Cisco).
    • Technology -> Routing -> OSPF v3
  • Added basic support of firewall policies on FortiGate firewalls (UTM security profiles, load balancing, NAT and user auth objects are not supported in this release)

Visualization

  • View Builder - enables to define custom views
  • Added OSPFv3 protocol
  • Improved object manipulation in the diagrams
  • Improved non-redundancy and single point of failure checks in the diagrams
  • Manual site separation replaced the previous method of site separation.

Improvements

  • Snapshot management
    • Discovery page was merged with snapshot management
    • Services logs are now included in the snapshot data file.
    • Added ability to remove devices from the snapshot
  • Added Manual site separation (for now only from table) Inventory => Sites => Manual Separation
  • Host table speed up - the table is pre-calculated in the topology build process
  • The API documentation is now directly in UI
    • Each table has API documentation accessible through the "?" button
  • Improved site separation by regex
    • After regex separation is completed, all devices in the unknown site (not matched by regex) are moved to the site where they are directly connected, if such a connection exists.
  • Backup and restore have been rewritten from scratch. IP Fabric backup now supports incremental backup, local backup to separate datastore, DB restores, snapshot restore and full restore.

    Backup has changed!

    Please reconfigure your backup in Settings -> Advanced -> System. Restoring backup from versions earlier than 3.1.0 into version 3.1.0 must be done with the assistance of the support team. Alternatively, the earlier backup can be restored to a version 3.0.7 or older, and then the version can be upgraded to 3.1.0.

  • Added support for IP Fabric appliance monitoring via SNMP (CPU, RAM, storage, network)
  • Advanced Filtering
    • Added new operators "is empty" and "is not empty" to able to filter for empty values
    • Array datatypes is able to specify filtering rules for a specific item in the array or for all items in the array.
  • Path lookup - Protocol menu can now display available protocols according to the path
  • Path lookup - MPLS link type is now based on the presence of label stack
  • Path lookup - routing to connected devices (e.g. for WLC) is improved
  • Discovery - Multiple CLI credentials - system now remember what credentials works and these credentials will be prioritized for next attempt to connect to individual devices.
  • TechSupport file
    • DB dump can be executed only for selected snapshot
  • Technology -> Routing -> IS-IS - added VRF column
  • Technology > Networks > Gateway redundancy - added VRF column
  • Cisco ASA - improved hostname for clusters & contexts
  • Cisco WLC - improved hostname for clusters
  • NTP - Cisco WLC sync unknown state added. NTP summary table now considers the unknown state as reachable and is not reported as a violation

Bug Fixes

  • Host to gateway graph - missing RIB L3 edge to gateway added
  • Host to the gateway - Host was not visible when connected to Cisco FEX
  • Path lookup - Connected routes VRF leak to BGP fixes (don't create RIB edge to transit, a route to connected network with a leak).
  • AP with GLPB gateway - RIB to all forwarders
  • Path lookup - ACL & Zone FW icons weren't displayed on the path
  • Discovery - Summary of Issues - Authentication errors - false/positive reports for this error could be displayed when was used multiple credentials
  • Discovery - Tasker process - fixed include/exclude list, sometime could be discovered IP addresses what wasn't in included or was in excluded list.
  • Juniper Junos - fixed parsing of different output for command "show interfaces statistics detail"
  • Arista EOS - fixed mapping for Task STP - when STP is disabled on the device
  • Arista EOS - fixed parsing of different output for command "show mac address-table"
  • Arista EOS - fixed parsing of different output for command "show lldp neighbors detail"
  • Arista EOS - fixed parsing of different output for command "show ip interfaces"
  • Arista EOS - fixed parsing of different output for command "show ip ospf interface"
  • Arista EOS - fixed parsing of different output for command "show ntp ass"
  • Arista EOS - fixed parsing of different output for command "show vrf"
  • Cisco ASA - fixed parsing of different output for command "show route"
  • Cisco IOS-XE - fixed parsing of different output for command "show isis neighbor detail"
  • Cisco IOS - fixed parsing of different output for command "show environment all"
  • Cisco IOS - fixed parsing of different output for command "show run"
  • Cisco NX-OS - fixed parsing of different output for command "show spa detail"
  • Cisco NX-OS - fixed parsing of different output for command "show flow export"
  • Cisco WLC - fixed mapping for Task WLC Access points lists
  • Cisco WLC - fixed parsing of different output for command "show wlan <wlanId>"
  • Cisco WLC - fixed parsing of different output for command "show ap stats ethernet summary"
  • Cisco WLC - fixed parsing of NTP
  • Extreme XOS - fixed parsing of different output for command "show stpd"
  • Extreme XOS - fixed parsing of different output for command "show log configuration"
  • HP Aruba - fixed parsing of different output for command "show ap debug system-status ap-name <apName>"
  • HP Aruba - fixed parsing of different output for command "show system"
  • HP Aruba - fixed parsing of different output for command "show ap bss-table"
  • HP Comware - fixed parsing of different output for command "display ip interface"
  • Checkpoint Gaia - fixed parsing of different output for command "show ospf neighbors detailed"
  • HP ArubaSW - fixed parsing of different output for command "show spanning-tree debug-counters instance <mstpInstanceId> ports all"
  • F5 BigIP - fixed parsing of different output for command "show cm device"
  • Fortinet FortiGate - fixed parsing of different output for command "diag hard dev nic <intName>"
  • Fortinet FortiGate - fixed parsing of different output for command "get system arp"
  • Juniper Junos - fixed parsing of different output for command "show spanning-tree interface detail"
  • Juniper Junos - fixed parsing of different output for command "show configuration interfaces | match sampling | display set"
  • Juniper Junos - fixed parsing of different output for command "show lacp interfaces"
  • Juniper Junos - fixed parsing of different output for command "show ethernet-switching interface detail"
  • Juniper Junos - fixed parsing of different output for command "show configuration | display set"
  • Juniper Junos - fixed parsing of different output for command "show sflow"
  • Juniper Junos - fixed parsing of different output for command "show lldp neighbors interface <intName>"
  • Juniper Junos - fixed parsing of different output for command "show interfaces statistics detail"
  • Juniper Junos - fixed parsing of different output for command "show configuration forwarding-options sampling"
  • Juniper Junos - fixed parsing of different output for command "show configuration firewall"
  • Site Low-level design report - table Interfaces in the HALF duplex was wrongly reported

3.0.7 (30th April 2019)

Features - Protocol and technology support

  • Extreme/Xos - EDP support added

Improvements

  • MPLS Cisco IOS, XR - VPN aggregate label support added
  • Routing table - VRF leak information added to next hop column
  • Connected routes leaked to other routing protocols are now removed from RIB edges (caused path lookup false routing to transit)
  • Path lookup - Support for VPN aggregate labels added
  • Path lookup - Support for multiple default gw (GLBP)
  • Path lookup - Possible ACL fail on switches with Cisco FEX fixed
  • Host to Gateway - If IP is a network device, show this device only
  • Path lookup - MPLS transit support added. For incoming MPLS interface from transit lookup in MPLS table based on prefix is checked.
  • Cisco IOS-XE - MPLS was not collected for 15.4 version, added

Bug Fixes

  • Manual site separation fixed, it didn't work in certain diagrams.
  • MPLS Cisco IOS - Nexthop mapping fix when only VPN label is present
  • Cisco Blade FEX modules - parsing of FEX related environment information fixed
  • Cisco MPLS forwarding with multiple next-hop including route and label fixed parsing
  • Juniper Junos - fixed parsing issue for command "show vlans detail" - VPLS VLANs aren't supported
  • Juniper Junos - fixed parsing for command "show sflow" when SFlow isn't configured
  • Juniper Junos - fixed parsing of different output for command "show vrrp detail"
  • Juniper Junos - fixed parsing of different output for command "show virtual-chassis device-topology"
  • Juniper Junos - fixed parsing of different output for command "show virtual-chassis vc-port all-members"
  • Juniper Junos - fixed parsing of different output for command "show spanning-tree interface detail"
  • Juniper Junos - fixed parsing of different output for command "show spanning-tree statistics interface"
  • Juniper Junos - fixed parsing of different output for command "show route active-path"
  • Fixed RIB edges with duplicate GLBP addresses for devices without ARP table (AP) or without
  • Checkpoint Gaia - fixed parsing of different output for command "show ospf interfaces detailed"
  • Cisco ASA - fixed parsing of different output for command "show bgp summary"
  • Cisco 6500/7600 routing table parsing fix - some entries were split into a new line in CLI output.
  • Cisco WLC - fixed parsing of different output for command "show port detailed-info"
  • Cisco WLC - fixed parsing of different output for command "show ap config general <apName>"
  • Cisco IOS - fixed parsing of different output for command "show dot1x all details"

3.0.6 (10th April 2019)

Features - Protocol and technology support

  • HP/Aruba switch - STP support added

Improvements

  • UI - Added "Reload required" notification - when the system is updated the UI has to be reloaded. (A manual reload is still required at the moment, use CTRL+SHIFT+R)
  • System and application logs are now available in CLI (/var/log)
  • HP/Aruba switch - improved LLDP protocol parsing & mapping

Bug Fixes

  • FIX Critical BUG - when VM doesn't have a DNS server set, the discovery process can get stuck and a new discovery process can't be started.
  • Hosts table - Host DNS name column was always empty
  • Cisco IOS - fixed parsing of different output for command "show vrrp brief"
  • Cisco NX-OS - fixed parsing of different output for command "show monitor session all"
  • Cisco NX-OS - fixed parsing of different output for command "show flow export"
  • HP/Aruba switch - fixed parsing of different output for command "show lldp info remote-device detail"
  • Path lookup - flooding fix for virtual mac
  • fixed color report results refreshing when multiple snapshots are loaded
  • fixed various color reports patching scenarios (removing a rule, changing a color column)

3.0.5 (2nd April 2019)

Features - Protocol and technology support

  • Added BGP support for Checkpoint Gaia, Cisco ASA, Extreme XOS, Fortinet Fortigate, F5 Big-IP, Huawei VRP, Palo Alto
  • Added ISIS support for Arista EOS, Cisco IOS / IOS-XE / IOS-XR, Extreme XOS, HP Comware, Huawei VRP
  • Added STP support for Extreme XOS
  • Added Routing table support for Cisco WLC

Visualization

  • Path lookup for Wireless clients has been added for Cisco WLC.
  • Path lookup now supports Riverbed in path transparent mode with CDP/LLDP enabled.
  • Protocols menu - added new option "Hide unconnected devices", enabled by default.
  • Position of transit cloud is now correctly stored for loaded view.
  • Path lookup speed has been improved for large networks.
  • Path lookup - Protocol menu - all protocols that are in the path are visible by default.
  • Site separation - RIB edges for default gateway are now displayed automatically.

Discovery

  • Protocol relationship on with the same IP in multiple VRFs is now supported if VRF on both sides matches the name.

Improvements

  • Added version detection for HP1910 and 1950, including switch into CLI mode
  • Improved snapshot loading speed (depending on the number of available CPUs)
  • Spanning tree edge to router links are no longer created based on MAC for multiple destination ports.
  • AP on switch port is now recognized as edge port (based on incoming CDP message).
  • Cisco terminal server router now recognized as a router (based on serial sync/async interfaces), which was previously recognized as host.

Bug Fixes

  • Cisco WLC - fixed parsing of various output for command "show system interfaces"
  • HP Aruba - fixed parsing of various output for command "show inventory"
  • HP Aruba - fixed parsing of various output for command "show ap lldp neighbors"
  • HP Aruba switch - fixed parsing of various output for command "show tech buffers"
  • HP Aruba switch - fixed parsing of various output for command "show ip"
  • HP Aruba switch - fixed parsing of various output for command "show system"
  • HP Aruba switch - fixed parsing of various output for command "show vlans"
  • HP Aruba switch - fixed parsing of various output for command "show interface all"
  • Cisco - fixed parsing of various output for command "show run"
  • Cisco XR - fixed parsing of various output for command "show eigrp vrf all interfaces detail"
  • Arista EOS - fixed parsing of various output for command "show bgp neigh vrf all"
  • Extreme XOS - fixed parsing of various output for command "show ip-fix"
  • Juniper Junos - fixed parsing of various output for command "show spanning-tree interface detail"

Known issues

  • Graphs - Link groups which have more than 25 links (edges) can no longer be un-grouped due to performance impact on the client.

3.0.4 (12th March 2019)

Features - Visualization

  • Host to the gateway - displays only the path by default
  • Path lookup - displays only the path by default
  • Hub messaging is disabled by default
  • LDP & MPLS protocols are now part of the L3 group
  • Window details - external links are removed from tables

Discovery

  • all changes from the latest release v2.4.0 are included now

Improvements

  • Site reports
    • STP domains graph has only STP protocol now
    • Routing domains graph has only L3 protocols
    • Overall site graph - access points were removed
  • Tables - sort by color was removed
  • Tables - filtering using simple filters isn't triggered automatically when you typing, you have to confirm filtering by hitting Enter
  • Tables - filtering is disabled if data loading is still in progress
  • DB indexes optimizations
  • Added support for 802.1x interface monitor mode detection for Cisco IOS/IOS-XE (auth. open)
  • Cisco CDP and LLDP neighbors with the same hostname and IP that are connected through the same local interface are considered to be the same regardless of their interface name
  • Port is now recognized as edge port when network device mac address (without any protocol relations) is associated
  • Cisco Nexus & 6500 - Virtual mac addresses spanning tree edges fix (CDP between switches is required).
  • Device type - Device is recognized as a switch if has mac table and VLANs (previously STP mode was enough)
  • STP domain - Devices without STP edges are not considered as part of STP domain (even when they have some STP mode set).

Bug Fixes

  • Fixed number of total rows in tables
  • Fixed Duplicate IP Table - Don't report GLBP virtual addresses
  • Discovery topology build may fail when WLC device data was refreshed
  • Wireless clients table didn't display data for the selected snapshot
  • Cloned snapshot didn't have wireless clients
  • Changes - Managed IP table was empty
  • Cisco NX fixed parsing of different output for command "show interface fex-fabric"

3.0.3 (22nd February 2019)

Improvements

  • Snapshot with 0 devices aren't automatically deleted (revert)
  • Fixed issue when server has set a proxy then API server can't be reached
  • DB indexes optimizations
  • Discovery - Refresh data for specific devices - access points was removed from table
  • Discovery - Refresh data for specific devices - overide device output in snapshot
  • Discovery - Fixed - Cannot be started when proxy is configured.
  • Initial network configuration wizard - Fixed - NTP configuration hangs.

3.0.2 (19th February 2019)

Improvements

  • API service can fails, because Redis service wasn't started
  • Snaphosts with 0 devices are automatically deleted
  • Automatically remove latest snapshot, when scheduled discovery start fails on not enough disk space
  • Fixed services status in status page
  • Tech Support file - you are able to choose if a snapshot will be included
  • Maximum BW limit changed to 10Mbps

3.0.1 (12th Fabruary 2019)

Improvements

  • Fixed an error in Site Separation by regex
  • Tech Support file now contains CLI logs

3.0.0 Release Candidate 1 (6th Fabruary 2019)

  • A complete overview of network history through individual network "Snapshots"
  • Visualization and analysis for any point in time
  • Discovery page now enables to add devices to a snapshot, refresh devices in a snapshot, or to create a new snapshot.
  • Snapshot management tab enables to download/upload, activate/deactivate, clone or delete snapshots.

The Release Candidate is currently in active development.
The RC1 version is designed to collect feedback about functionality for practical situations, such as making changes, tracking history, creating reference snapshots, and more.
Please post any ideas for improvement to https://ideas.ipfabric.io and in case of any problems contact our support team, either via the https://support.ipfabric.io portal or through support@ipfabric.io.


NIMPEE v2.x.x

2.4.0 (27th February 2019)

Features - Protocol and technology support

  • Collecting SNMP configuration for all vendor/families
    • Technology => Management => SNMP
  • Collecting Netflow / IPFIX, sFlow configuration for all vendor/families
    • Technology => Management => Flow
  • Added VXLAN support for Cisco IOS-XE, NX-OS, Arista EOS
    • Technology => VXLAN
  • Added BGP support for Arista EOS
  • Added NTP support for Arista EOS, ArubaSW, Huawei, F5
  • Added OSPF support for Arista EOS, Check Point Gaia, Cisco ASA, Extreme XOS, Fortinet Fortigate, Huawei VRP, PaloAlto
  • Added Routing table summary for Arista EOS, Extreme XOS, Huawei VRP, Checkpoint, Cisco ASA
  • Added VRRP support for Fortinet FortiGate
  • Configuration Management - added support for Fortinet Fortigate, Extreme XOS
  • Added overview of local and remote logging targets configured on network devices
    • Technology => Management => Logging
  • BGP address family support (new tables with all session families).
    • Technology => Routing => BGP => Address Families (table is also available after click from graph on BGP edge)

Features - Visualization

  • Significant speedup of graph for big networks
  • Added VXLAN as L3 protocol
  • Host to GW - "show only active devices" option added, it will display only devices in the path
  • Path lookup - Asymmetry check is evaluated based on the layer instead of a protocol.
  • Graph RIB edges - L2 switches have default GW route disabled by default. Can be enabled in RIB protocol settings
  • Unmanaged devices can now be added and displayed, even if connected edges are not visible.

Discovery

  • Shaper was limited to 10Mb

Improvements

  • Discovery page - statistic about how many devices were discovered is without AP now
  • Added support for Cisco Mobility Express WLC detection
  • Site separation by regex - you can specify the transformation of hostnames before regex separation is used. It solves a situation when is used mix uppercase/lowercase hostnames in the network.
  • Arista vEOS version detection improvement
  • Juniper ISIS - added support for any other level than 1 or 2
  • Juniper Loopback interfaces lo0.16384, lo0.16385, lo0.32768 are internal auxiliary loopbacks and are not included in discovery.
  • Fortinet Fortigate - improved version detection for devices running with FortiOS6
  • Fortinet Fortigate - improved prompt detection in case that prompt ends with $
  • Cisco IOS/XE/XR - Updated next-hop evaluation for CEF/MPLS records
  • Cisco SG300 - Added support for different show version output
  • Huawei - added NTP support on Huawei VRP 8.x
  • Huawei - xDP interface names correctly standardized
  • Huawei - Routing table sanitation (127.0.0.0 and 0.0.0.0 next-hop removed)
  • HP Aruba AP, F5 - added missing memory information
  • HP Aruba switch/Procurve - OS detection - added support for 2600/2300/2500 platforms
  • HP Aruba switch/Procurve - Localhost routes removed from the routing table
  • Routing stability table - Added connected routes

Bug Fixes

  • Virtual gateways count in tables fixed.
  • Path lookup - Edge switch must be in the same site as default gw (fixes wrong edge switch selection because of virtual mac addresses)
  • Router to switch L2 connection - Fix for routers with virtual mac addresses
  • Cisco IOS - MPLS forwarding table fixed parsing - output for one record can be broke to more lines
  • Cisco IOS, IOS-XE w/o routing table - default gw entry adds interface now
  • Cisco IOS - fixed parsing "show environment all" command
  • Cisco IOS - ACL - role based trustsec entries are ignored until trustsec support will be added.
  • Cisco IOS-XR duplicate hsrp virtual addresses fixed
  • Cisco NX - improved parsing "show environment fex all" when it returns "FEX is not present"
  • Cisco ASA - routing table fixed parsing
  • Cisco XR - improved parsing for "show mpls ldp vrf <instance> neighbor detail" command
  • Cisco IOS-XE OSPF interfaces fixed parsing for the unnumbered tunnel interface
  • Cisco MPLS LDP - updated parsing for LDP neighbor with no source interface
  • Cisco QOS policy-map interface - improved parsing for different command output
  • Cisco IOS-XE 3560 - show version stack inventory parsing fix.
  • Cisco SG - fixed parsing of different output for STP detail command
  • Extreme XOS - MTU wasn't parsed on extreme xos 22.5.1.7
  • Path lookup - FEX on access fixed
  • Arista vEOS - missing SN is replaced by system mac address
  • Arista vEOS - interface unconfigured speed parsing fix
  • Arista vEOS - arp N/A timer parsing fix
  • Arista vEOS - interfaces MTU parsing fix
  • Arista vEOS - parsing fix when NTP is disabled
  • Extreme XOS - memory information fixed parsing
  • Checkpoint Gaja - fixed parsing of different output for command fw ctl pstat"
  • Fortinet Fortigate - fixed ambiguous command to get info about the routing table
  • Fortinet Fortigate - fixed parsing for different output about memory information on FortiOS6
  • HP Aruba switch - fixed NTP associations
  • HP Aruba switch - Reported CDP devices without capabilities fix
  • HP Aruba switch - Non-complete interface record parsing fix
  • HP Aruba switch - show tech buffers command parsing fix
  • HP Aruba v8 fixed parsing to get details about AP
  • HP Comware fixed parsing of different output for device interfaces
  • HP Comware fixed parsing of different output for linkAggregationVerbose command
  • Huawei VRP - fixed ambiguous command for observer port command
  • Juniper - SRX firewall/router mode detection, the default is firewall when no relevant output is available
  • Tables - FIX filtering in columns where is able to switch property for filtering ie. Nat - Rules
  • Tables - Filter rules were inserted randomly after the seventh rule
  • Tables - some tables had wrong values for export into CSV (Object Object)

2.3.1 (7th December)

Improvements

  • Path lookup - improved calculation for the default gateway
  • Cisco ASA serial number detection updated to better support virtualized devices
  • Cisco NX - improved parsing for FEX information
  • Cisco IOS/IOS-XE - improved parsing for "show monitor detail" command
  • Cisco NX - improved parsing for "show monitor session all" command

Bug Fixes

  • Cisco NX 7K - fixed parsing of version, VDC wasn't recognized
  • Juniper Junos - fixed parsing pf memory information

2.3.0 (5th December)

Features - Protocol and technology support

  • Added FHRP support for HP Aruba/ArubaSw, Huawei VRP, Arista EOS, Cisco XR
  • Added support for FEX modules connected to Cisco Nexus 7000 series switches
  • Added support for environmental information for Cisco Nexus FEX modules
  • Added support for MPLS & LDP protocol for Cisco IOS/IOS-XE/IOS-XR/NX, Juniper
    • New tables in Technology => MPLS
  • Added support for Port Mirroring for Cisco IOS/IOS-XE/NX/SG, Juniper Junos, HP Comware, Huawei VRP
    • New table in Technology => Management => Port Mirroring
  • Added support for NAT for Cisco IOS/IOS-XE/ASA
    • New tables in Technology => Addressing => NAT

Features - Visualization

  • Default view - each user can define own default view instead of displaying overall network topology
  • Added MPLS support in path lookup & LDP protocol for edges
  • Enhanced orientation in diagrams - when is graph opened through the link on hostname column then the graph will be zoomed in to the device.
  • Site interconnections are now displayed separately from generic transit
  • The site can be renamed directly from a graph (only for uses with write privilege)
  • Window details dialogs are now open in a direction where is more space, better UX.
  • Protocol CEF was renamed to RIB and CDP to xDP
  • Unmanaged neighbors and Transit edge are now the same types of neighbors. They can be grouped using prefix length setting under Options > Site edge

Features - Discovery

  • New Settings - OUI, where can be enabled/disabled vendors what will be used in discovery from ARP protocol.
  • Cisco SG300 family - added support for SF switch line

Improvements

  • Inventory/devices added columns Total memory, Used memory, Memory Utilization %
  • Enable to searching in ACL/Zone policies using IP or network

Bug Fixes

  • Switch to router L2 connections - Mismatch duplicated connections created on the router with same mac address on all ports. Fixed when xDP exists between switch and router.
  • Graph - all graph icons are preloaded into cache now, this fixing situation when was generated Site Low-Level design report and graphs were without icons.
  • Report Site Low-Level graph could be generated as corrupted docx (not escape data in XML)
  • The app could crash in IE - Inventory/Sites when Site report was downloaded and then was tried to load Site Diagram then the App crashed - fixed (It's highly recommended to use Chrome, instead IE. Chrome has much better performance)
  • Cisco NX - LLDP - capabilities 'not advertised' were not parsed correctly, some server entries without destination port were added incorrectly.
  • Cisco NX - fixed parsing of "show fex detail" command
  • Cisco NX 5000 - power supply failure from environment fix
  • Cisco NX ACL options - generic support for 'divert' option added
  • Cisco EIGRP - Ambiguous command fixed on ASR9000
  • Cisco EIGRP - Fixed parsing when enabled but no neighbors detected
  • Cisco BGP - DMPVPN no families fix
  • Cisco IOS-XR OSPF parsing fix when an interface is down
  • Cisco IOS-XE OSPF neighbor parsing fix (output may differ per version)
  • Cisco IOS/IOS-XE: RIP - NVI interfaces are ignored now
  • Cisco IOS/IOS-XE - Routing table - added support for default gateway detection e.g. on L2 switches
  • Cisco AAA - extended support for AAA-related options and setting
  • Cisco service object-groups - added support for ICMPv6 params parsing
  • HP Comware - Ethernet 100Mbps interface parsing fix
  • HP Comware - Routing table inactive next-hop removed
  • F5 BigIP - VLAN interfaces state is now used from 'list net self' command only
  • xDP - if capability contains IGMP, then the neighbor is recognized as a network device
  • User edge port and user mac address recognition improved with OUI network vendor.
  • Scheduling of System Backup could fail and the process wasn't executed at all
  • System backup - FTP directory was transformed to lowercase it could be a problem when the directory on FTP server was in uppercase.
  • Dashboard - fixed Snapshot History widget for MAC's
  • Dlink and Enterasys wrongly recognized as Aruba switch. Version parsing fixed.
  • Routing table - recursive lookup for vrf leak fix
  • Graphs - Host to gateway and path lookup default gateway selection fix (the mask is considered in calculation now)
  • 802.1x interface authentication port control mode is now parsed from show run if it is not available in show dot1x command output
  • Updated RIP neighborship mapping for Junos routers

2.2.9 (31st October 2018)

Features - Analytics

  • Path verification - you can now save a path for continuous verification
    • Saved paths are stored in Technology \ Routing \ Path verifications
  • Path analysis - added support for Symmetry verification
  • Path analysis - added support for L2 flooding
  • Path analysis - added overview tab listing all matching filters and forwarding
  • History - new widget in Dashboard displays the number of discovered devices and changes for each snapshot.

Features - Protocol and technology support

  • Added vendor support for Arista EOS
  • Added vendor support for HP Aruba switch / ProCurve
  • Added vendor support for Huawei VRP
  • Added vendor support for F5 BIG IP
  • Detailed information about IS-IS protocol (support for Juniper Junos)
    • New table Technology \ Routing \ IS-IS \ Neighbors
    • New table Technology \ Routing \ IS-IS \ Interfaces

Features - Visualization

  • Network overview - protocols settings are now persistent
  • Added MTU tab into window detail for OSPF, EIGRP, and RIP protocols
  • Added IS-IS routing protocol visualization
  • Improved wired hosts usability
  • Specific routing protocol sessions to transit cloud are now shown when "Site edge" is turned on.
  • New option added "Show edge devices only" which shows devices connecting to edge
  • Improved overall graph performance

Features - Discovery

  • Discovery - Added DNS Name column to Error Report (DNS Resolve has to be enabled in Settings).

Improvements and Bug Fixes

  • Site separation - R&S option site name swapping fix
  • Routing table - fixed recursive NH interface lookup
  • Graph - position of transit cloud in the network overview is now saved
  • Graph Path lookup - Forwarding L2 switch to an unknown neighbor
  • Router with only one route and ATM interface was recognized as 'host'
  • Path lookup - Default GW forwarding fix
  • BGP neighbors uptime column is now properly formatted
  • Cisco IOS OSPF neighbors parsing fix
  • Cisco IOS/IOS-XE/IOS-XR BGP neighbors parsing fix
  • Cisco IOS-XE Auth session parsing fix (different header and no session output for interface cmd)
  • Cisco IOS-XE 3850 - version parsing fix
  • Cisco Catalyst 9300 - version parsing fix
  • Cisco IOS-XE VRRP parsing fix
  • Cisco IOS fixed ACL parsing
  • Cisco IOS BGP dynamic neighbor address parsing fix
  • Cisco Updated local IP address information for EIGRP neighbors for unnumbered interfaces.
  • Cisco - IPv4 Unicast address group for BGP neighbors accepts only IPv4 records.
  • Juniper Junos - correctly detects SRX device in packet mode as router device type
  • HP Comware BGP neighbor idle parsing fix
  • HP Comware platform a-msr30 wasn't discovered
  • HP Aruba - fixed version detection, enable command now trying all combination from enabling password list
  • Riverbed CMC - version parsing fix
  • Riverbed updated telnet access information.
  • Juniper BGP neighbor session time parsing fix
  • Scheduled snapshots do not work, wasn't rescheduled on error
  • Discovery - enable password list wasn't sorted by priority
  • Mac table - NX-OS vPC peer link support added

2.2.8 (10th September 2018)

Features - Analytics

  • Detailed information about all Unmanaged Neighbors
    • New table Technology \ Interfaces \ Connectivity Matrix \ Unmanaged Neighbors Summary
    • New table Technology \ Interfaces \ Connectivity Matrix \ Unmanaged Neighbors Detail

Features - Protocol and technology support

  • BGP protocol support for HP Comware
  • Detailed information about EIGRP protocol (support for Cisco IOS, IOS-XE, IOS-XR, NX-OS)
    • New table Technology \ Routing \ EIGRP \ Neighbors
    • New table Technology \ Routing \ EIGRP \ Interfaces
  • Detailed information about RIP protocol (support for Cisco IOS, IOS-XE, IOS-XR, NX-OS, HP Comware, Juniper Junos)
    • New table Technology \ Routing \ RIP \ Neighbors
    • New table Technology \ Routing \ RIP \ Interfaces

Features - Visualization

  • The NEW design of edges between the nodes, you can switch between "Curved" and "Straight" (new) type in Protocols menu
  • Added EIGRP routing protocol
  • Added RIP routing protocol
  • OSPF & BGP & EIGRP & RIP protocols added into overall network overview
  • MTU Check - edges are colorized according to colorization rules in table Technology / Interfaces / MTU. If there is no colorization rule then the color will follow these rules
    • green - MTU is the same on both sides
    • red - MTU is not the same on both sides
    • gray - one if the MTU values are empty.
  • Path lookup - Zone Firewall matching rules table
  • Path lookup - each forwarding decision can be highlighted in a graph for a selected node. See forwarding tab
  • Path lookup - the devices where the packet is stopped because security rules (ACL, Zone FW) are now red.
  • Unmanaged neighbors - also displaying unmanaged neighbors from routing protocols
  • Additional information can be added for labels, for example, Interface Media, Interface IP, Subnet, STP path cost, AS for BGP/EIGRP, etc.
  • "Non-redundant devices" option has been renamed to "Single points of failure"

Features - System

  • NIMPEE setup wizard added
  • NIMPEE UI will inform you when not enough space on disk remaining
  • Added SFTP as a destination for backups
  • System Update - Added "upload offline upgrade package" button even if Callhome server is reachable

Features - Discovery

  • Riverbed Steelhead - in some cases CLI output had an escape sequence what broke a device prompt detection.
  • Discovery - Connectivity Report - added column DNS Name - the resolved name of the IP address (DNS Resolve has to be enabled in Settings).

Improvements and Bug Fixes

  • Tables - new advanced filter operator "has the color", so you can filtering on column what has some color and add next filter rule for the same column to get a specific result.
  • Site Separation - the process could fail when using a regex for separation, and one of the sites was previously renamed.
  • STP - inconsistencies Multiple STP & Vlans without STP: false positives fix
  • Juniper Junos - Hostname representing chassis cluster is now derived from the active node.
  • CDP/LLDP devices with phone capabilities were recognized as a network device.
  • Host to the gateway - FW as default GW added
  • Port-channel with member port XDP is not now edged port
  • Fixed mapping of results for BGP tasks
  • End to End path lookup - connected host mac address is now taken from gateway ARP.
  • STP - inconsistencies Multiple STP & Vlans without STP false positive fix
  • FIXED DNS resolving of Discovered inventory
  • Scheduled backup with destination FTP failed, the credentials weren't decrypted
  • Fixed NTP information - Correct parsing of GNSS reference, stratum < 16 as check for reach-ability
  • Cisco Nexus 7000 admin vdc NTP copy to other vdc (system clock is controlled only from one vdc)
  • Cisco IOS - fixed reported parsing bugs for command "show ip access-list"
  • Cisco IOS - fixed reported parsing bugs for command "show bgp all neighbor"
  • Cisco IOS - fixed reported parsing bugs for command "show bgp all summary"
  • Cisco IOS - parsing fix dynamic cluster-HSRP/NAT acl rules
  • Cisco IOS - fixed reported parsing bugs for command "show ip ospf neighbor detail"
  • Cisco IOS - auth session parsing fix when no output is available
  • Cisco WLC - fixed processing of pagination
  • Cisco WLC - fixed reported parsing bugs for command "show ap config 802.11a summary"
  • Cisco WLC - fixed reported parsing bugs for command "show ap config 802.11b summary"
  • Cisco WLC - fixed reported parsing bugs for command "show ap wlan 802.11a <apName>"
  • Cisco WLC - fixed reported parsing bugs for command "show ap wlan 802.11b <apName>"
  • Cisco WLC - fixed reported parsing bugs for command "show ap inventory <apName>"
  • Cisco WLC - fixed reported parsing bugs for command "show network summary"
  • Cisco NX-OS - fixed reported parsing bugs for command "show interface status err-disabled"
  • Cisco NX-OS - fixed reported parsing bugs for command "show ip ospf interface vrf all"
  • Cisco NX-OS - fixed reported parsing bugs for command "show access-list summary" (IPv6 entries).
  • Cisco NX-OS - fixed reported parsing bugs for command "show ip ospf interface vrf all"
  • Cisco IOS-XE (Catalyst) - fixed parsing of "show version" when stack switch has "Unknown" uptime
  • Cisco fixed parsing of command 'show ospf neighbor detail'. OSPF areas can be represented by either number or CIDR
  • Cisco ASA parsing fix for routing table - age and interface for dynamic routing protocols
  • Cisco IOS - LLDP/CDP neighbor interface for phone fix
  • HP Aruba - fixed reported parsing bugs for command "show ap bss-table"
  • HP Comware - fixed reported parsing bugs for command "display ospf peer verbose"

2.2.7 (31st July 2018)

Features - Analytics

  • Technology / Security / Secure ports - 802.1x / Users - added information about authorized user. Columns Username, User MAC, User method, User state

Features - Protocol and technology support

  • Detailed information about BGP protocol (support for Cisco IOS, IOS-XE, IOS-XR, NX-OS, Juniper Junos)
    • New table Technology \ Routing \ BGP \ Neighbors
  • Collecting information about MTU on interfaces
    • Added MTU column into Inventory\Interfaces
    • New table Technology \ Interfaces \ MTU
    • Added MTU consistency check into Diagrams
  • Collecting information about NTP
    • New tables Management \ NTP
  • Collecting information about Wireless Radios on Wireless Access Points
    • New table Technology \ Wireless \ Radios/BSSID
  • Cisco IOS-XR collecting information about OSPF protocol

Features - Visualization

  • Host to gateway lookup is part of Network graph now and display the path over the network location
  • Added option to display/hide Wireless Access Points - AP is disabled by default
  • Align & Distribute menu which helps to quickly arrange multiple selected nodes
  • New options "MTU checks" to check MTU consistency
  • Path lookup - ACL implicit rules added to a matching table, show details button added
  • End to end path lookup possibility to specify TCP Flags in packet
  • Added BGP routing protocol
  • Added OSPF routing protocol

Features - System

Features - Discovery

  • Extreme XOS - in some cases CLI output had an escape sequence what broke device prompt detection.

Improvements and Bug Fixes

  • Tables
    • added button what prepare a link for sharing of current table view
    • Table header can be seen as fixed (sticky) when scrolling
    • new advanced filter operator - not equal to a column
  • Management / Changes - Speed up of the table for snapshot selection
  • Juniper Junos Description for interfaces is now available in NIMPEE.
  • Juniper Junos added MAC address for logical interfaces.
  • Juniper Junos Fixed parsing of routing table with MPLS records
  • Juniper Junos show ethernet-switching interfaces changed to an interface for compatibility with newer platforms
  • Juniper Junos Updated routing engine schema for EX3400
  • Cisco - Secured Access ports - fixed parsing for ports with MAB only clients, changed command for IOS c2960c405
  • Cisco WLC - fixed getting of hostname for HA cluster
  • Cisco object-group parsing fix - support for new protocol names added
  • Cisco IOS - fixed ambiguous command & parsing for Power & Fan environment
  • Cisco IOS - fixed authentication session interface command for version higher than 15.2
  • Cisco IOS - fixed mapping of state for HSRP output
  • Cisco ASA - fixed parsing of a routing table
  • Cisco ASA - fixed parsing of "show version" command, missing SN for the particular switch in stacking information
  • Cisco ASA - ACL is now read from configuration (using regular commands was too expensive)
  • Cisco NX-OS - the fixed end to end path lookup for routes with default VRF
  • Cisco NX-OS - fixed system version parsing
  • Cisco NX-OS - fixed parsing of 'show access-list summary' command
  • Extreme switch SN - if not present chassis or switch in inventory, then SN is taken from the first available slot
  • FIX: If the server was restarted during the discovery process then the discovery process was stuck after server restart.

2.2.6 (2nd July 2018)

Features - Analytics

  • Greatly improved support of security rules interpretation for Juniper, Cisco, and HP Comware
  • Added default & global policies for Zone-based firewalls

Features - Protocol and technology support

  • Added collection of ARP and MAC tables for HP Aruba
  • Added collection of routing information for Cisco XR
  • Added object-groups support for Cisco and HP Comware

Features - Visualization

  • E2E Path & Site separation no longer reset the view upon close
  • Width of the grouped links in the diagram is increased logarithmically according to the count
  • Details in window components - The component can be moved outside of the screen and it will be minimized when it’s released outside of the screen
  • Graphs - Hub meshing is now restricted to Tunnel and VLAN interfaces

Features - System

  • Updated EoX reports for Cisco & Juniper
  • Customer credentials are no longer needed for updates over the Internet

Features - Discovery

  • Connectivity report - added a new report for Ambiguous or Incomplete command error
  • Cisco WLC - added support for WLC unit type detection in HA
  • Full BGP routing table handling - an Added setting which enables to skip downloading of BGP routes if the router has more BGP routes than the threshold

Improvements and Bug Fixes

  • Cisco WLC APs without configured IP address will now appear in discovery with IP of 0.0.0.0
  • Cisco NX-OS fixed parsing of environment variables
  • Cisco SG300 switch port trunk VLAN parsing fix
  • Cisco ASA - fixed parsing of SN when Chassis information is not available
  • Fixed parsing for OSPF neighbors, neighbor ID can be device name.
  • HP Aruba allows connecting AP to internal switch (fixing AP location)
  • HP Comware 850 WLC - AP interface name and VRF fix
  • HP Comware 7 fixed processing of L2 interfaces
  • HP Comware - display license command is sent only for virtual platforms to get the SN
  • Juniper Junos fixed ethernetSwitchningInterfaceDetail parsing error when untagged VLAN is unavailable
  • Juniper Junos Command Route - updated parsing of access-internal routes
  • Juniper Junos Updated mapping for routing table (multi discard flag).
  • Juniper Junos fixed mapping for task SecureAccessPort
  • Extreme XOS - fixed parsing of OS version
  • Riverbed L3 interfaces fixed task mapping
  • Fixed processing of CLI pagination for corner cases and improved detection
  • Fixed CLI output download, which was not available in some cases
  • Fixed Configuration Management scheduling component which didn’t remember the selected date(s) for Every week option
  • Tasker - fixed memory overflow bug when finishing jobs (Topology build could fail in big network with multiple Full BGP routers)
  • Updater would fail upon discovered of multi-homed AP with clients
  • Diagrams - Grouped protocols had a wrong arrows direction
  • Diagrams - Fixed shifted protocol labels in PNG Export
  • Table Inventory / Hosts added PoE column (hidden by default)


2.2.5 (12th Jun 2018)

Features - Analytics

  • Added STP pseudo-link between routers and switches not to rely on CDP/LLDP
  • HSRP, VRRP, and GLBP are now under FHRP menu.
  • Added preemption and protocol information to FHRP table.

Features - Protocol and technology support

  • Added vendor support for Extreme XOS
  • Added wireless support for HP830/850
  • Added support for CISCO GLBP & VRRP
  • Added support for Cisco ASA contexts
  • Added voice gateway device type
  • Added support for Cisco Nexus environmental parameters

Features - Visualization

  • E2E Path lookup is part of Network graph now and displays the path over the network locations
  • The tooltips are replaced with drag & drop windows which enable to display more valuable information directly in the graph

Features - System

  • NIMPEE VM can now be restarted or shut down from System Administration interface
  • System Administration - added option for restarting API
  • New support portal - http://support.ipfabric.io/

Features - Discovery

  • Significantly improved discovery error detection and reporting
  • Detailed communication logs are now available in Connectivity Report / Error reports & in each table with Hostname detail (only for user with Settings privileges)
  • XDP (Discovery Protocols) now consider only neighbors with capabilities “router” or (“switch” or “bridge” but excluding “phone” or “host”)

Improvements and Bug Fixes

  • Juniper/Junos ARP records weren’t used as discovery targets
  • Juniper/Junos Zone FW is now collected from configuration (fixing 100% CPU BUG)
  • Configuration management no longer attempts to download configuration of Wireless APs
  • Forms with password field shouldn’t prefill a passwords
  • LDAP authentication now supports multiple LDAP servers for a domain
  • Firewalls are now included in the routing domain calculation
  • STP between switch and router for site calculation and graphs
  • Site recalculation - delete STP topology before start
  • Voice GW 224 device type
  • Added Vendor column to /inventory/hosts table
  • Improved Cisco VRRP support
  • Translated Cisco NX-OS routing protocol into a standard name
  • DOWNLOAD configuration file in /technology/management/saved-config-consistency can’t be sanitized.
  • Moved Table /reports/end-of-life-milestones to /inventory/end-of-life-milestones
  • Local IP now inserted into ARP table for a platform which doesn’t show local ARP entries
  • AP without CDP/LLDP is now connected to switch with pseudo-STP link
  • Removed duplicate tables that served as dedicated checks, since now each table can have any number of checks using table colors (reports)./dashboard/risk/device-stability (now a color in /inventory/devices)/dashboard/risk/eox (duplicate of /inventory/end-of-life-milestones)/dashboard/risk/err-disabled (duplicate of /technology/interfaces/errdisabled)/dashboard/risk/outbound-balancing (duplicate of /technology/port-channels/outbound-balancing-table)/dashboard/risk/routing-stability (duplicate of /technology/routing/route-stability)/dashboard/risk/stp-stability (now a color in /technology/spanning-tree/stp-instances)/technology/addressing/host-ip (duplicate of /inventory/hosts)/technology/management/config-register (now a color in /inventory/devices)/technology/management/os-version-consistency (duplicate of /inventory/os-versions)/technology/management/unexpected-reloads (now a color in /inventory/devices)

  • Fixed Cisco ASA parsing of empty localL4connections
  • Fixed parsing of 802.1X details for Cisco IOS-XE
  • Fixed parsing of auth sess int <int> detail command for Cisco IOS-XE
  • Fixed parsing of 802.1X client list and sessionId for Cisco IOS
  • Fixed parsing of ARP entries for HP/Comware
  • Fixed processing port security command for HP/Comware when it isn’t configured
  • Fixed updater failing on validation of Zone FW rules
  • Fixed discovery of Juniper/Junos from ARP entries
  • Fixed routing table flags parsing for Juniper/Junos
  • Fixed parsing of non-active routes for Juniper/Junos
  • Fixed ARP parsing of incomplete entries for Palo Alto
  • Fixed parsing of Cisco policy-maps under certain conditions
  • Fixed parsing of Cisco interfaces and IP interfaces under certain conditions
  • Fixed parsing of Juniper/Junos configuration firewall command
  • Disabled sanitization of configuration files for Saved Configuration Consistency checks


2.2.4 (14th May 2018)

Migration to this version can take a long time, depending on the amount of history collected.

Features - Analytics

  • End to End path lookups now enable to lookup any IP or Hostname directly from the source or destination field
  • End to End path lookup now support L4 protocols and ports
  • End to End path lookup now supports Zone Firewall rules
  • Improved routing next hop analysis in the cumulative routing table
  • Improved 802.1x analysis
  • Added DNS resolution to hosts
  • Added voice VLAN for VoIP phones

Features - Protocol and technology support

  • Added support for Juniper SRX clusters (platforms)
  • Added support for Firewall Zones (security)
  • Added support for STP Guards (spanning tree)

Features - Visualization

  • Small sites (less than 5 devices) are now grouped into redundant and non-redundant groups.
  • Individual STP instances can now be hidden through Objects diagram menu
  • L2/L3 boundary is now enhanced through MAC lookup between router and switch using VLAN, ARP, and MAC (now still marked as stp)

Features - System

  • Added LDAP support for user authentication (supported Open LDAP, Microsoft AD)

Features - Discovery

  • Discovery connectivity report now contains vendor column for connection attempts from ARP entries
  • Discovery from XDP protocols now considers only neighbor with capabilities “router”, “switch”, or “bridge”
  • SSH/TELNET authentication credentials can now be limited to a specific subnet

Improvements and Bug Fixes

  • Significant performance boost for a historical snapshot comparison
  • Fixed Cisco 6500 OS version detection for certain variants
  • Fixed parsing of LLDP capabilities for Cisco SG
  • Fixed inventory parsing of certain Catalyst 4500 Sup8 IOS-XE variants


2.2.3 (10th April 2018)

Features

  • Tacacs Authentication failure retries settings - SettingsAdvancedSSH-Telnet
  • The sites can be separated from the diagram (requires site detection using Routing & Switching)
  • Site names automatically derived from hostnames when sites detected using Routing & Switching
  • Discovery service windows have download log button
  • Speed improvements for Spanning Tree and QoS information
  • Tables now allow filtering using regex using =~ operator in addition to advanced filters
  • Diagrams - automatic meshing for sites with over 200 meshable edges
  • Diagrams - Spanning Tree tooltips for the failure domain now consider VLANs active on a link

System Features

  • Crypto image option (encrypted disk)
  • OS security updates
  • Service health check and auto healing for failed application services (arangodb, nimpeeAPI, nimpeeUpdate, syslogUpdater, syslogWorker)
  • Short DNS name in web certificate CSR can be removed

BugFixes

  • Routing domains are now separated by sites
  • Switches with one default route are not calculated into the routing domain
  • Port-channel members with stp are not considered network edge
  • Phone and AP ports are considered network edge
  • EOL reports for Juniper had incorrect data
  • IP Phones are now detected using MAC in addition to LLDP/CDP
  • Discovery pages now always display Connectivity Report button
  • Tables - fixed CSV export for colored cells
  • Juniper & HP routing protocol types translation to a standard format
  • Calculate affected users - fixed root computation
  • Cisco - crypto session command - parsing fix
  • Cisco SG300 - ARP, L2 interface, and Loopback collection fix
  • PaloAlto - environment Power & Fan validation fix
  • Juniper - added support for multiple neighbors on a single interface
  • Tech support decryption was failing when file size was less than 1MB

2.2.2 (26th March 2018)

Features

  • Dashboard - Table colors - the order of assigned color rules can be arranged (use drag&drop)
  • Added more predefined verification checks & updated Dashboard view
  • Diagrams - more information in the tooltip for STP edges
  • Tables - Colorize rules - fade out the background for results with value ‘0’

BugFixes

  • Predefined Advanced Filters was deleted by next Discovery start
  • Filtering any tables for the selected site
  • Diagrams - export png for end2end path lookup and host2gateway didn’t work
  • Diagrams - the tooltips for ACL/QoS were not showing
  • Fixed an error when manually uploading an update package
  • Fixed API endpoints for TechnologyPlatformsVDC & TechnologyPlatformsVPC
  • Wireless access point impact is calculated now only from errors and drops on wired interfaces
  • Cisco SG300 spanning-tree is now correctly parsed and saved
  • Fortigate hostname saved when no authorization is allowed

2.2.1 (21st March 2018)

BugFixes

  • Report - Site Low-Level report - some cases had bug during generation
  • Report - Network Analysis report showed duplicate percentage under radar charts
  • Fortinet hostname not visible
  • Mac self entries not considered as a switch
  • TechSupport file - download doesn’t work
  • TechSupport file doesn’t contain discovery and CLI logs
  • TechSupport file doesn’t contain the most recent archived CLI logs
  • TechSupport file doesn’t contain nimpee system logs

2.2.0 (19th March 2018)

Features

  • Colorizing tables using custom filters rules
  • The dashboard is fully customizable
  • Site separation now allows OR conditions in regex
  • Site recalculation can be now performed without a new discovery process
  • Discovery seed - IP networks can now be added as seed (currently limited to /24)
  • Diagrams - performance optimizations
  • Diagrams - Network - added mask separation option for transit networks
  • Diagrams - new UI for protocol menu
  • Diagrams - moved link grouping and layer grouping options to protocol menu
  • Diagrams - Network - multiple items can now be selected using CTRL key

System Features

  • Added system interface accessible using system account
  • Integrated backup & restore (currently local or FTP target)
  • NIMPEE can now be updated over the Internet or by uploading an update package

Vendor Support

  • FortiGate
  • Palo Alto
  • Juniper - Junos OS
  • Cisco wireless - added support for new wireless access point AIR-AP2802I
  • HP 830 Unified Wired-WLAN platform - (Interface parsing, without wireless features)

BugFixes

  • Diagrams - Network - nodes without edges now remains visible in the graph
  • Diagrams - Network - sites can now be added/removed in parallel
  • Check Point - Added support for ‘expert’ mode
  • Cisco ASA - routing table parsing issue fixed
  • Cisco - Wireless added support for clients in ‘start’ state
  • Cisco C1900 Routing table parsing issue fixed
  • Cisco Environment parsing fix on some IOS platforms
  • HP Comware - fixed parsing STP in MSTP mode

2.1.2 (19th January 2018)

Features

  • New audit check Technology - Spanning Tree - Inconsistencies - Neighbors ports VLAN mismatch
  • New audit check Technology - Spanning Tree - Inconsistencies - Ports with multiple neighbors
  • New audit check Technology - Spanning Tree - Inconsistencies - STP/CDP ports mismatch
  • New audit check Technology - Spanning Tree - Inconsistencies - Multiple STP between two devices
  • New audit check Technology - Interfaces - Duplex Half duplex table replaced with Duplex mismatch table.
  • New technology table Technology - Security - 802.1x - Devices displays grouped data about 802.1x per device.
  • New technology table Technology - Platforms - Stacks displays grouped data about stacks per device.
  • Improved overview Technology - Platforms - Stacks - Members new connectionsCount column, popup with information for hostname, link to open site diagram.
  • Improved overview Technology - Platforms - Stacks - Connections new membersCount column, popup with information for hostname and interface.
  • Added support for relayed Syslog messages
  • Improved diagram performance
  • Improved diagrams Diagrams - Network - added “ignore filters” option to allow displaying of a single device with no known connections
  • Improved diagrams Diagrams - Network - added show utilization option
  • Improved diagrams Diagrams - Network - updated site presentation
  • Improved diagrams Diagrams - Network - tunnels between sites are now displayed in the network overview
  • Improved diagrams Diagrams - Network - added caching for redrawing which removes device jumping when redrawing
  • Improved Web UI - Enabled searching in quick sites filtering (top left corner)
  • Improved diagrams UI - enabled searching in the list of sites, routing domains, and switching domains
  • Settings - Authentication - disable browser popup to save passwords
  • Sites calculation type “Routing & Switching domain” change to sticky. Now using an intersection of previously found serials numbers with new ones. Previously renamed sites before this release will be discarded without a migration script.

BugFixes

  • CLI parsing - Fixed false prompt detection when was used “>” char in the interface description
  • CLI parsing - Cisco NXOS - fixed parsing of the routing table for local routes
  • CLI parsing - fixed WLC platform AIR-C25xx
  • Updater service - heap out of memory fixed
  • port with CDP AP considered as an edge
  • Remove phone capability in CDP/LLDP send from some Nexus platforms
  • Configuration Management - Fixed false positives, which erroneously showed changes in configuration, when in fact none have occurred. (Line break n vs rn)
  • Diagrams - Fixed label boxes disappeared after hiding
  • Diagrams - Fixed search
  • Diagrams - Fixed link overlapping in the network view
  • Diagrams - Network - removed impact option
  • Diagrams - labels in the export image are always visible
  • Table Technology - Interfaces - Switchport Edge column displayed wrong values
  • Table Reports - Site Low-Level Design column siteName was wrong after the site renaming
  • Site Low-Level Design - Report: siteName was wrong after the site renaming
  • Site Low-Level Design - Report: if user arranges a site diagram then the diagram in a report also rendered according to this positions.
  • Web UI - Fixed generation of TechSupport file, which could fail with a large data set
  • Web UI - Some messages of informative character was displayed as critical messages (red color).
  • Routing domains calculation fix - protocols forming domains were not correctly filtered

2.1.1 (5th January 2018)

Features

  • The component for scheduling snapshots and configuration management
  • Technology - Management - Saved config consistency display diff directly in the table, instead of on a new page
  • Technology - Interfaces - Switchport added columns Access Mode Vlan, Voice Vlan
  • Technology - Wireless - Access points added column Mac, Impact
  • The columns labels & help is now used in the search.
  • HP Aruba - more detailed error & drop counters

BugFixes

  • HP Aruba - fixed parsing of wireless clients
  • The discovery process stuck when DNS resolve was enabled.
  • Telnet client - fixed negotiation for IOS XR
  • Cisco IOS-XE 3.04.06 fixed parsing of environment/stuck command
  • Cisco IOS-XR fixed parsing of age for arp command
  • Cisco IOS 870 fixed parsing of crypto session command
  • Cisco IOS-XE fixed parsing of OSPF neighbor command
  • Cisco IOS 2500, IOS-XE cat4500e fixed parsing of OSPF interfaces command
  • Cisco IOS - fixed parsing of switchport command, trunk allowed VLAN list
  • Cisco IOS 2950 - fixed parsing of a serial number
  • HMM protocol removed from CEF

2.1.0 (15th December 2017)

Platforms

  • Checkpoint Gaia
  • HP Aruba (Wireless)

Features

  • NX-OS Routing summary support
  • Technology - Addressing - Managed IP added columns VRF, DNS name, DNS matched, DNS reverse (check if DNS record correspond with a hostname of the device, including DNS reverse lookup))
  • Technology - Management - Saved config consistency (check if a device have unsaved configuration)
  • Technology - Security - IPSec
  • Technology - Security - DMVPN
  • Technology - Platforms - Environment (Power Supplies & Fans)
  • Technology - Interfaces - Switchport
  • Technology - Spanning Tree - Neighbors
  • Technology - Routing - OSPF - Neighbors & Interfaces
  • Technology - Security - 802.1x
  • Technology - Wireless - Clients add new column SSID
  • Technology - Wireless - Access points add new columns Average Signal Strength, Average Signal to Noise Ratio (Clients with a weak signal, Access points with problematic clients)
  • Settings - Advanced - SSH/Telnet (customer can define retries limit for failures)

BugFixes

  • SSH & Telnet clients - fixed false prompts detection (Cisco ASA timeouted on <—More—>)
  • Cisco WLC - show client summary command timeout fix (reply “y” on display more entries? y/n)
  • Cisco WLC - show port detailed info fixed parsing
  • Cisco show spanning-tree detail STP instances with no interfaces removed
  • IP Phones - fixed LLDP & CDP different destination interfaces
  • L2 edge port & user mac address detection improvement
  • NX-OS OTV interface supported
  • IE11 better performance

2.0.0 (9th November 2017)

Platforms

  • Riverbed Steelhead
  • HP Comware 5 and Comware 7

System BugFixes

  • Fex parsing when description includes non-alphanumeric characters
  • OS Versions VDC fix (the only chassis are included)
  • STP parsing logic fix
  • Duplicate IP not reported for /30-32 networks
  • Fixed telnet negotiation

Features

  • Combined Discovery & Analysis
  • Network Change Management
  • New diagrams
  • New central API
  • Added IP telephony
  • Added QoS
  • Added PoE
  • Added StackWise
  • Added routing protocols summary table
  • Added Interfaces - Transceivers
  • Added Interfaces Rate (inbound, outbound, bidirectional) tables
  • Added Spanning Tree - Inconsistencies table
  • Added Wireless controllers, access points, clients tables
  • Added End of life reports for 3COM, HP Enterprise, ProCurve, Riverbed + Cisco reports updated
  • Better TACACS controls
  • FEX-FABRIC port-channel type
  • Export encrypted tech support file
  • Jumphost support
  • Connectivity matrix based on protocol direction
  • Access List - new filter for source & destination port (searching in port range, filter values can be separated by “,”)
  • Tables improvements (Automatic calculation of rows per page, Table rows size, Sticky first column, better pagination design)
  • User management including roles
  • Option to create a CSR (Certificate Signing Request)
  • CLI authentication records importance can be changed by drag & drop, the upper record will be used first.
  • Search - user can simply find the related page using search
  • User with settings privileges can clear DB


Version 1.0.6

System BugFixes

  • Added firewall rule for Syslog 514/UDP​
  • Debugging tool fixes
  • Added DB parameter tuning (THP disabled)

Version 1.0.5

Platforms

  • Cisco SG300

Features

  • ACL table - intelligent port filter
  • Site report - inventory description column added

Fixes

  • IOS route leaking parsing
  • VPC info was not collected
  • Risk graph EoX and reload now based on traffic impact
  • NX-OS ACL matches statement fix
  • /32 routes to discovery
  • NX-OS error-disabled parsing
  • Bridge-groups stp parsing
  • C890 WLAN interface parsing

Version 1.0.4

System Features

  • added update script
  • Added automatic HTTPS redirect

System BugFixes

  • Debugging tools fixes

Version 1.0.3

Features

  • Added calculation of affected users on L3 paths
  • Dashboard capacity and performance tables improvement
  • Routing graph mesh to cloud

Fixes

  • Affected users calculation in partially discovered network fix

System Features

  • Improved MOTD for “nimpee” troubleshooting user
  • HTTPS access.
  • HTTPS certificate wizard is now part of the initial configuration
  • Image hardening
  • network configuration wizard automatically pre-fill current values (for example current hostname or domain name)
  • Remote support SSL VPN

System BugFixes

  • Simplified bandwidth management
  • Added ability to rerun initial boot wizard
  • User configured BW limit is still in place after the reboot
  • DNS is now properly configured in case of static IP address
  • NTP configuration was not properly applied

Version 1.0.2

Fixes

  • Continuous analysis log overflow fix
  • Improved systemd process control

Version 1.0.1

Features

  • Periodic run of Analysis
  • L3 affected users on L2 path
  • L3 Uplink calculation

Protocol support

  • Mac address collection now supports static entries

UI improvements

  • Mac table now includes edge port flag, VLAN and source (dynamic/static) columns

Fixes

  • Risk radar chart calculation for routing stability fix
  • Cache for analyzing API routes
  • L2 affected users network mac addresses removed

Version 1.0.0

UI improvements

  • IP-aware lookups
  • Lookup IP via VLSM prefix
  • Lookup Route via single IP
  • Faster tables, table filtering
  • Case insensitive search
  • Regex filtering support
  • Rearranged menu as L1/L2/L3 items

Diagrams

  • Routing domain diagrams
  • End to End Path lookup diagram
    • added vrf support
    • added RPF
    • added neighboring domains

Analytics

  • Site uplink calculation
  • Table sorting by severity (color)
  • Added human readability
  • Transfer rates: added Mcast/bcast/packets and overall loss impact to transfer rates

Protocols and technology support

  • Routing
    • Routing domain overview
  • ACL
    • Added ACL support
    • Added IP ACL interface table
    • Added Reflexive ACL support
  • FEX support
    • Users connected to FEX are displayed on the diagrams
  • vPC support
  • ARP
    • Added ARP state table
    • Added ARP VRF Support
    • Added Proxy ARP Support
  • MAC
    • Added MAC state table
  • Added CDP/LLDP neighborship tables

Management and technical visibility

  • Added connectivity matrix
  • Added syslog target
    • Lookup and filter by message, mnemonic, system time, sequence number
  • Added Configuration management
    • Sanitization of configurations
    • Configuration comparison
  • Improved Low-Level Design document export
    • Added connectivity matrix, OS versions, CDP/LLDP neighbors

Enterprise features

  • Added integrated support
  • Configurable site boundary detection
  • Configurable operational scope
  • Added first boot wizard
  • Added Automated error reporting
  • Added Licensing