[Xymon] [External] powershell client data file excessive Port info enhancement request

Beck, Zak zak.beck at accenture.com
Mon Aug 13 13:43:18 CEST 2018


Hi

Yes, sounds very feasible and worthwhile. I’ll look to add this in the next week or two.

Thanks

Zak

From: Xymon <xymon-bounces at xymon.com> On Behalf Of Timothy Williams
Sent: Monday, 6 August 2018 15:56
To: xymon at xymon.com
Subject: [External] [Xymon] powershell client data file excessive Port info enhancement request

We are in the process of migrating 300+ servers from BBWin client to powershell client. All works well, except our anti-virus servers create a huge data file that gets truncated, causing FILES, SVCS, WHO to go Purple. We have set the MAXMSG_STATUS AND MAXMSG_CLIENT Xymon server parameters to 1024, but the AV servers still blow past that. The PORTS function reports all of the TCP ESTABLISHED and TIME_WAIT connections for every AV client on servers and desktops. We only need to know that the AV server is proper LISTENING. Using Slimmode and excluding the Ports section doesn't work as we do need to know the listening ports.

I have modified the Xymonclient.ps1 script as follows to limit the data in the function XymonPorts
"[ports]" netstat -an
to:
    "[ports]"
    netstat -an | findstr LISTENING

Rather than manually editing each new version of script released, I would rather have a client-local.cfg entry that would turn this on per group similar to what you have for IFSTAT. Less desirable would be a statement in Xymonclient_config.XML, or as a mode in Slimmode.
Does this sound like a doable enhancement?

Timothy L. Williams

Operating Systems Analyst
Virginia Commonwealth University Computer Center

________________________________

This message is for the designated recipient only and may contain privileged, proprietary, or otherwise confidential information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the e-mail by you is prohibited. Where allowed by local law, electronic communications with Accenture and its affiliates, including e-mail and instant messaging (including content), may be scanned by our systems for the purposes of information security and assessment of internal compliance with Accenture policy. Your privacy is important to us. Accenture uses your personal data only in compliance with data protection laws. For further information on how Accenture processes your personal data, please see our privacy statement at https://www.accenture.com/us-en/privacy-policy.
______________________________________________________________________________________

www.accenture.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.xymon.com/pipermail/xymon/attachments/20180813/c7d4765d/attachment.html>


More information about the Xymon mailing list