Select an individual device, and then click the Topo button in the Details pane to view that device within the topological map.ĭevice Group and Device View User Interface ControlsĬlick on the arrow icon in the upper-right corner of the map to open these controls. You can access the device group view of the topological map by selecting a group of devices in the Device View, and then clicking the Topo button in the Summary pane. If you make changes to your infrastructure or add devices to the CMDB, click Sync to see them reflected in the map Save your Layout and View Options to use them in other topographical maps associated with this organization When you make a change to the map settings, click Refresh to see them reflected in the map Set the type of topological map to display, as well as the length of links between devices Set the display options, including severity levels, for the map
Search for specific devices based on name, IP, or Business Service Select the layers, connection types, and number of hops from the host to display in the map Use the slider to increase or decrease the zoom level of the mapįor multi-tenant deployments, filter devices based on the organization they belong to This topology map shows all the devices for the selected organization, and provides controls for editing the topology views that will be available to users from that organization. This screenshot shows the CMDB tab selected, and in the Device View, Topology is selected. The host to switch port connectivity can also be seen in a tabular form by first clicking the switch and then clicking the “Port Mapping Table”. Then by clicking on the “+” of a VLAN, the hosts belonging to that VLAN and also the switch ports they connect to are displayed. Also, the trunk port connectivity is shown in an orange color and a tool tip provides the VLANs over this trunk link. Then by clicking the “+” next to a device, the VLANs on that switch are displayed. The Layer 2 topology is visualized on the FortiSIEM topology diagram by choosing the layer 2 mode.
The trunk port connectivity between switch ports is directly obtained from Step 2b.
Network topology mapper withoug snmp mac#
The MAC forwarding table obtained in Step 2a provides the server to switch port connectivity (after eliminating the trunk port entries obtained in step 2b). Identify all active VLANs on that switchī) Get STP table to identify trunk ports and directly connected trunk port on adjacent switches.Layer 2 discovery is difficult and, more importantly, vendor dependent as vendors have different implementations of the Spanning Tree Protocol (STP).įor Cisco switches, the layer 2 topology is obtained via SNMP (IEEE spanning tree MIB as found in RFC1493 and CISCO-VTP-MIB) as follows: When an enterprise network has Layer 2 switches and hubs, a layer 3 topology misses the connectivity between servers to layer 2 switches and the trunk port connectivity between layer 2/3 switches. Clicking on the “-“ button hides those hosts. Clicking on the “” button displays those hosts in the topology graph. There is a “ ” button next to those networks. Only those networks are drawn that have devices discovered by FortiSIEM (and are in CMDB).A network device is one that belongs to row Network Device tab in the CMDB. Only the network devices are drawn by default.The devices are represented by vendor specific icons and the network nodes are represented by a line and labeled as “Net-/”. Srawing line segments from the network segment nodes to every device node that have an interface with IP address in that network segment.Network segment and devices as node and.loopback (127.0.0.0/8), link local addresses (169.254.0.0/16) are filtered out and the distinct networks segments are identified.Ī layer 3 topology is visualized on the FortiSIEM Topology map by drawing: The layer 3 topology is discovered by obtaining network interface IP address and masks for all devices via SNMP (RFC 1213). Layer 3 connectivity involves IP addresses, while Layer 2 connectivity How is Network Topology Discovered and Visualized?įortiSIEM discovers network topology at two levels, layer 3 and layer 2.
FortiSIEM provides two ways to view the topology of your IT infrastructure, one at the CMDB level that shows all devices, and another at the level of device groups and individual devices.