sunhux
asked on
Solaris /var/adm/messages has snmpdx "error while receiving a pdu" - possibly poll by CA Unicentre
In our Solaris 10's (this is a hardened server) messages file, we have following
error messages :
#> grep -i snmp messag* | grep "May 6"
messages:May 6 15:53:53 slasun11 /usr/lib/snmp/snmpdx: [ID 702911 daemon.error] error while receiving a pdu from 10.51.5.7.4265: The message has a wrong header type (0xd6)
messages:May 6 15:53:56 slasun11 /usr/lib/snmp/snmpdx: [ID 702911 daemon.error] error while receiving a pdu from 10.51.5.7.4364: The message has a wrong header type (0xd6)
Our CA Unicentre tech guy said when he issued "snmpwalk" command from the Unicentre's
server, it failed & he believes port 161/162 are not opened but when I checked using
"netstat -an | grep 16", I found it's idle (but not listening) on those two ports :
#> netstat -an | grep 16
*.16161 Idle
*.161 Idle
*.162 Idle
On another of our Solaris 9 server (which was not hardened), "netstat -an" yielded
the same idle outputs but "snmpwalk" issued by the CA Unicentre tech guy worked.
"svcs -a" outputs from the Solaris 10 server is as follows :
STATE STIME FMRI
legacy_run Apr_21 lrc:/etc/rc2_d/S10lu
legacy_run Apr_21 lrc:/etc/rc2_d/S20sysetup
legacy_run Apr_21 lrc:/etc/rc2_d/S21perf
legacy_run Apr_21 lrc:/etc/rc2_d/S30sysid_ne t
legacy_run Apr_21 lrc:/etc/rc2_d/S69netconfi g
legacy_run Apr_21 lrc:/etc/rc2_d/S74xntpd
legacy_run Apr_21 lrc:/etc/rc2_d/S76ACT_dump script
legacy_run Apr_21 lrc:/etc/rc2_d/S81dodatadm _udaplt
legacy_run Apr_21 lrc:/etc/rc2_d/S90LiebertM
legacy_run Apr_21 lrc:/etc/rc2_d/S91afbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91gfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91ifbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91jfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91kfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91zuluinit
legacy_run Apr_21 lrc:/etc/rc2_d/S98dealloca te
legacy_run Apr_21 lrc:/etc/rc2_d/S99dbora
legacy_run Apr_21 lrc:/etc/rc2_d/S99sneep
legacy_run Apr_21 lrc:/etc/rc3_d/S96init_css d
legacy_run Apr_21 lrc:/etc/rc3_d/S99EIS-DVDt ag
disabled Apr_21 svc:/network/iscsi_initiat or:default
disabled Apr_21 svc:/system/device/mpxio-u pgrade:def ault
disabled Apr_21 svc:/network/ipfilter:defa ult
disabled Apr_21 svc:/network/rpc/bind:defa ult
disabled Apr_21 svc:/network/rpc/keyserv:d efault
disabled Apr_21 svc:/network/rpc/nisplus:d efault
disabled Apr_21 svc:/network/nis/server:de fault
disabled Apr_21 svc:/network/nis/client:de fault
disabled Apr_21 svc:/network/dns/client:de fault
disabled Apr_21 svc:/network/ldap/client:d efault
disabled Apr_21 svc:/network/nfs/status:de fault
disabled Apr_21 svc:/network/nfs/nlockmgr: default
disabled Apr_21 svc:/network/nfs/cbd:defau lt
disabled Apr_21 svc:/network/nfs/mapid:def ault
disabled Apr_21 svc:/network/inetd-upgrade :default
disabled Apr_21 svc:/network/nfs/client:de fault
disabled Apr_21 svc:/system/filesystem/aut ofs:defaul t
disabled Apr_21 svc:/application/print/ser ver:defaul t
disabled Apr_21 svc:/network/smtp:sendmail
disabled Apr_21 svc:/system/name-service-c ache:defau lt
disabled Apr_21 svc:/system/patch-finish:d elete
disabled Apr_21 svc:/system/power:default
disabled Apr_21 svc:/system/pools:default
disabled Apr_21 svc:/system/rcap:default
disabled Apr_21 svc:/network/rpc/bootparam s:default
disabled Apr_21 svc:/network/samba:default
disabled Apr_21 svc:/network/winbind:defau lt
disabled Apr_21 svc:/network/wins:default
disabled Apr_21 svc:/network/nfs/server:de fault
disabled Apr_21 svc:/network/rarp:default
disabled Apr_21 svc:/network/dhcp-server:d efault
disabled Apr_21 svc:/application/managemen t/webmin:d efault
disabled Apr_21 svc:/application/print/ipp -listener: default
disabled Apr_21 svc:/application/print/cle anup:defau lt
disabled Apr_21 svc:/application/database/ postgresql :version_8 1
disabled Apr_21 svc:/application/database/ postgresql :version_8 2
disabled Apr_21 svc:/application/gdm2-logi n:default
disabled Apr_21 svc:/network/dns/server:de fault
disabled Apr_21 svc:/network/routing/legac y-routing: ipv4
disabled Apr_21 svc:/network/routing/legac y-routing: ipv6
disabled Apr_21 svc:/network/routing/ndp:d efault
disabled Apr_21 svc:/network/routing/rdisc :default
disabled Apr_21 svc:/network/ipv6-forwardi ng:default
disabled Apr_21 svc:/network/routing/ripng :default
disabled Apr_21 svc:/network/routing/zebra :quagga
disabled Apr_21 svc:/network/routing/ripng :quagga
disabled Apr_21 svc:/network/routing/route :default
disabled Apr_21 svc:/network/ipv4-forwardi ng:default
disabled Apr_21 svc:/network/routing/rip:q uagga
disabled Apr_21 svc:/network/routing/ospf: quagga
disabled Apr_21 svc:/network/routing/ospf6 :quagga
disabled Apr_21 svc:/network/routing/bgp:q uagga
disabled Apr_21 svc:/network/security/kadm in:default
disabled Apr_21 svc:/network/security/krb5 kdc:defaul t
disabled Apr_21 svc:/network/ipmievd:defau lt
disabled Apr_21 svc:/network/nis/passwd:de fault
disabled Apr_21 svc:/network/nis/update:de fault
disabled Apr_21 svc:/network/nis/xfr:defau lt
disabled Apr_21 svc:/network/http:apache2
disabled Apr_21 svc:/network/apocd/udp:def ault
disabled Apr_21 svc:/network/slp:default
disabled Apr_21 svc:/platform/sun4u/sckmd: default
disabled Apr_21 svc:/platform/sun4u/dcs:de fault
disabled Apr_21 svc:/platform/sun4u/oplhpd :default
disabled Apr_21 svc:/platform/sun4u/efdaem on:default
disabled Apr_21 svc:/ldoms/vntsd:default
disabled Apr_21 svc:/system/consadm:defaul t
disabled Apr_21 svc:/system/pools/dynamic: default
disabled Apr_21 svc:/system/iscsitgt:defau lt
disabled Apr_21 svc:/system/sar:default
disabled Apr_21 svc:/network/rpc/gss:defau lt
disabled Apr_21 svc:/network/rpc/rstat:def ault
disabled Apr_21 svc:/application/print/rfc 1179:defau lt
disabled Apr_21 svc:/network/rpc/ocfserv:d efault
disabled Apr_21 svc:/network/rpc/rex:defau lt
disabled Apr_21 svc:/network/rpc/rusers:de fault
disabled Apr_21 svc:/network/rpc/spray:def ault
disabled Apr_21 svc:/network/rpc/wall:defa ult
disabled Apr_21 svc:/network/security/ktkt _warn:defa ult
disabled Apr_21 svc:/network/security/krb5 _prop:defa ult
disabled Apr_21 svc:/network/swat:default
disabled Apr_21 svc:/network/tname:default
disabled Apr_21 svc:/network/telnet:defaul t
disabled Apr_21 svc:/network/nfs/rquota:de fault
disabled Apr_21 svc:/network/uucp:default
disabled Apr_21 svc:/network/chargen:dgram
disabled Apr_21 svc:/network/chargen:strea m
disabled Apr_21 svc:/network/daytime:dgram
disabled Apr_21 svc:/network/daytime:strea m
disabled Apr_21 svc:/network/discard:dgram
disabled Apr_21 svc:/network/discard:strea m
disabled Apr_21 svc:/network/echo:dgram
disabled Apr_21 svc:/network/echo:stream
disabled Apr_21 svc:/network/time:dgram
disabled Apr_21 svc:/network/time:stream
disabled Apr_21 svc:/network/ftp:default
disabled Apr_21 svc:/network/comsat:defaul t
disabled Apr_21 svc:/network/finger:defaul t
disabled Apr_21 svc:/network/login:eklogin
disabled Apr_21 svc:/network/login:klogin
disabled Apr_21 svc:/network/login:rlogin
disabled Apr_21 svc:/network/rexec:default
disabled Apr_21 svc:/network/shell:default
disabled Apr_21 svc:/network/shell:kshell
disabled Apr_21 svc:/network/talk:default
disabled Apr_21 svc:/network/rpc-100235_1/ rpc_ticots ord:defaul t
disabled Apr_21 svc:/network/login/tcp6:de fault
disabled Apr_21 svc:/network/shell/tcp:def ault
disabled Apr_21 svc:/network/exec/tcp:defa ult
disabled Apr_21 svc:/network/telnet/tcp6:d efault
online Apr_21 svc:/system/svc/restarter: default
online Apr_21 svc:/network/pfil:default
online Apr_21 svc:/network/loopback:defa ult
online Apr_21 svc:/system/installupdates :default
online Apr_21 svc:/milestone/name-servic es:default
online Apr_21 svc:/network/physical:defa ult
online Apr_21 svc:/milestone/network:def ault
online Apr_21 svc:/system/identity:node
online Apr_21 svc:/system/metainit:defau lt
online Apr_21 svc:/system/filesystem/roo t:default
online Apr_21 svc:/system/boot-archive:d efault
online Apr_21 svc:/system/scheduler:defa ult
online Apr_21 svc:/system/filesystem/usr :default
online Apr_21 svc:/system/keymap:default
online Apr_21 svc:/system/device/local:d efault
online Apr_21 svc:/system/filesystem/min imal:defau lt
online Apr_21 svc:/system/identity:domai n
online Apr_21 svc:/system/sysevent:defau lt
online Apr_21 svc:/platform/sun4v/drd:de fault
online Apr_21 svc:/system/rmtmpfiles:def ault
online Apr_21 svc:/system/resource-mgmt: default
online Apr_21 svc:/system/coreadm:defaul t
online Apr_21 svc:/system/cryptosvc:defa ult
online Apr_21 svc:/system/picl:default
online Apr_21 svc:/system/device/fc-fabr ic:default
online Apr_21 svc:/milestone/devices:def ault
online Apr_21 svc:/network/initial:defau lt
online Apr_21 svc:/system/manifest-impor t:default
online Apr_21 svc:/network/service:defau lt
online Apr_21 svc:/milestone/single-user :default
online Apr_21 svc:/platform/sun4v/efdaem on:default
online Apr_21 svc:/system/filesystem/loc al:default
online Apr_21 svc:/system/cron:default
online Apr_21 svc:/system/sysidtool:net
online Apr_21 svc:/system/dumpadm:defaul t
online Apr_21 svc:/system/sysidtool:syst em
online Apr_21 svc:/application/psncollec tor:defaul t
online Apr_21 svc:/milestone/sysconfig:d efault
online Apr_21 svc:/application/font/fc-c ache:defau lt
online Apr_21 svc:/system/sac:default
online Apr_21 svc:/system/utmp:default
online Apr_21 svc:/network/inetd:default
online Apr_21 svc:/system/system-log:def ault
online Apr_21 svc:/application/managemen t/wbem:def ault
online Apr_21 svc:/network/ssh:default
online Apr_21 svc:/application/managemen t/seaport: default
online Apr_21 svc:/system/auditd:default
online Apr_21 svc:/application/managemen t/sma:defa ult
online Apr_21 svc:/application/managemen t/snmpdx:d efault
online Apr_21 svc:/system/console-login: default
online Apr_21 svc:/system/mdmonitor:defa ult
online Apr_21 svc:/network/routing-setup :default
online Apr_21 svc:/application/x11/xfs:d efault
online Apr_21 svc:/network/cde-spc:defau lt
online Apr_21 svc:/network/omni/tcp:defa ult
online Apr_21 svc:/system/fmd:default
online Apr_21 svc:/system/webconsole:con sole
online Apr_21 svc:/network/ntp:default
online Apr_21 svc:/milestone/multi-user: default
online Apr_21 svc:/application/graphical -login/cde -login:def ault
online Apr_21 svc:/application/cde-print info:defau lt
online Apr_21 svc:/milestone/multi-user- server:def ault
online Apr_21 svc:/system/zones:default
online Apr_21 svc:/system/basicreg:defau lt
offline Apr_21 svc:/application/managemen t/dmi:defa ult
offline Apr_21 svc:/system/filesystem/vol fs:default
offline Apr_21 svc:/network/rpc/meta:defa ult
offline Apr_21 svc:/network/rpc/cde-calen dar-manage r:default
offline Apr_21 svc:/network/rpc/cde-ttdbs erver:tcp
offline Apr_21 svc:/network/rpc/smserver: default
offline Apr_21 svc:/network/rpc/mdcomm:de fault
offline Apr_21 svc:/network/rpc/metamed:d efault
offline Apr_21 svc:/network/rpc/metamh:de fault
maintenance Apr_21 svc:/application/stosreg:d efault
maintenance Apr_21 svc:/network/stdiscover:de fault
maintenance Apr_21 svc:/network/stlisten:defa ult
maintenance Apr_21 svc:/application/font/stfs loader:def ault
maintenance Apr_21 svc:/network/rpc-100229_1- 2/rpc_tcp: default
maintenance Apr_21 svc:/network/rpc-100422_1/ rpc_tcp:de fault
error messages :
#> grep -i snmp messag* | grep "May 6"
messages:May 6 15:53:53 slasun11 /usr/lib/snmp/snmpdx: [ID 702911 daemon.error] error while receiving a pdu from 10.51.5.7.4265: The message has a wrong header type (0xd6)
messages:May 6 15:53:56 slasun11 /usr/lib/snmp/snmpdx: [ID 702911 daemon.error] error while receiving a pdu from 10.51.5.7.4364: The message has a wrong header type (0xd6)
Our CA Unicentre tech guy said when he issued "snmpwalk" command from the Unicentre's
server, it failed & he believes port 161/162 are not opened but when I checked using
"netstat -an | grep 16", I found it's idle (but not listening) on those two ports :
#> netstat -an | grep 16
*.16161 Idle
*.161 Idle
*.162 Idle
On another of our Solaris 9 server (which was not hardened), "netstat -an" yielded
the same idle outputs but "snmpwalk" issued by the CA Unicentre tech guy worked.
"svcs -a" outputs from the Solaris 10 server is as follows :
STATE STIME FMRI
legacy_run Apr_21 lrc:/etc/rc2_d/S10lu
legacy_run Apr_21 lrc:/etc/rc2_d/S20sysetup
legacy_run Apr_21 lrc:/etc/rc2_d/S21perf
legacy_run Apr_21 lrc:/etc/rc2_d/S30sysid_ne
legacy_run Apr_21 lrc:/etc/rc2_d/S69netconfi
legacy_run Apr_21 lrc:/etc/rc2_d/S74xntpd
legacy_run Apr_21 lrc:/etc/rc2_d/S76ACT_dump
legacy_run Apr_21 lrc:/etc/rc2_d/S81dodatadm
legacy_run Apr_21 lrc:/etc/rc2_d/S90LiebertM
legacy_run Apr_21 lrc:/etc/rc2_d/S91afbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91gfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91ifbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91jfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91kfbinit
legacy_run Apr_21 lrc:/etc/rc2_d/S91zuluinit
legacy_run Apr_21 lrc:/etc/rc2_d/S98dealloca
legacy_run Apr_21 lrc:/etc/rc2_d/S99dbora
legacy_run Apr_21 lrc:/etc/rc2_d/S99sneep
legacy_run Apr_21 lrc:/etc/rc3_d/S96init_css
legacy_run Apr_21 lrc:/etc/rc3_d/S99EIS-DVDt
disabled Apr_21 svc:/network/iscsi_initiat
disabled Apr_21 svc:/system/device/mpxio-u
disabled Apr_21 svc:/network/ipfilter:defa
disabled Apr_21 svc:/network/rpc/bind:defa
disabled Apr_21 svc:/network/rpc/keyserv:d
disabled Apr_21 svc:/network/rpc/nisplus:d
disabled Apr_21 svc:/network/nis/server:de
disabled Apr_21 svc:/network/nis/client:de
disabled Apr_21 svc:/network/dns/client:de
disabled Apr_21 svc:/network/ldap/client:d
disabled Apr_21 svc:/network/nfs/status:de
disabled Apr_21 svc:/network/nfs/nlockmgr:
disabled Apr_21 svc:/network/nfs/cbd:defau
disabled Apr_21 svc:/network/nfs/mapid:def
disabled Apr_21 svc:/network/inetd-upgrade
disabled Apr_21 svc:/network/nfs/client:de
disabled Apr_21 svc:/system/filesystem/aut
disabled Apr_21 svc:/application/print/ser
disabled Apr_21 svc:/network/smtp:sendmail
disabled Apr_21 svc:/system/name-service-c
disabled Apr_21 svc:/system/patch-finish:d
disabled Apr_21 svc:/system/power:default
disabled Apr_21 svc:/system/pools:default
disabled Apr_21 svc:/system/rcap:default
disabled Apr_21 svc:/network/rpc/bootparam
disabled Apr_21 svc:/network/samba:default
disabled Apr_21 svc:/network/winbind:defau
disabled Apr_21 svc:/network/wins:default
disabled Apr_21 svc:/network/nfs/server:de
disabled Apr_21 svc:/network/rarp:default
disabled Apr_21 svc:/network/dhcp-server:d
disabled Apr_21 svc:/application/managemen
disabled Apr_21 svc:/application/print/ipp
disabled Apr_21 svc:/application/print/cle
disabled Apr_21 svc:/application/database/
disabled Apr_21 svc:/application/database/
disabled Apr_21 svc:/application/gdm2-logi
disabled Apr_21 svc:/network/dns/server:de
disabled Apr_21 svc:/network/routing/legac
disabled Apr_21 svc:/network/routing/legac
disabled Apr_21 svc:/network/routing/ndp:d
disabled Apr_21 svc:/network/routing/rdisc
disabled Apr_21 svc:/network/ipv6-forwardi
disabled Apr_21 svc:/network/routing/ripng
disabled Apr_21 svc:/network/routing/zebra
disabled Apr_21 svc:/network/routing/ripng
disabled Apr_21 svc:/network/routing/route
disabled Apr_21 svc:/network/ipv4-forwardi
disabled Apr_21 svc:/network/routing/rip:q
disabled Apr_21 svc:/network/routing/ospf:
disabled Apr_21 svc:/network/routing/ospf6
disabled Apr_21 svc:/network/routing/bgp:q
disabled Apr_21 svc:/network/security/kadm
disabled Apr_21 svc:/network/security/krb5
disabled Apr_21 svc:/network/ipmievd:defau
disabled Apr_21 svc:/network/nis/passwd:de
disabled Apr_21 svc:/network/nis/update:de
disabled Apr_21 svc:/network/nis/xfr:defau
disabled Apr_21 svc:/network/http:apache2
disabled Apr_21 svc:/network/apocd/udp:def
disabled Apr_21 svc:/network/slp:default
disabled Apr_21 svc:/platform/sun4u/sckmd:
disabled Apr_21 svc:/platform/sun4u/dcs:de
disabled Apr_21 svc:/platform/sun4u/oplhpd
disabled Apr_21 svc:/platform/sun4u/efdaem
disabled Apr_21 svc:/ldoms/vntsd:default
disabled Apr_21 svc:/system/consadm:defaul
disabled Apr_21 svc:/system/pools/dynamic:
disabled Apr_21 svc:/system/iscsitgt:defau
disabled Apr_21 svc:/system/sar:default
disabled Apr_21 svc:/network/rpc/gss:defau
disabled Apr_21 svc:/network/rpc/rstat:def
disabled Apr_21 svc:/application/print/rfc
disabled Apr_21 svc:/network/rpc/ocfserv:d
disabled Apr_21 svc:/network/rpc/rex:defau
disabled Apr_21 svc:/network/rpc/rusers:de
disabled Apr_21 svc:/network/rpc/spray:def
disabled Apr_21 svc:/network/rpc/wall:defa
disabled Apr_21 svc:/network/security/ktkt
disabled Apr_21 svc:/network/security/krb5
disabled Apr_21 svc:/network/swat:default
disabled Apr_21 svc:/network/tname:default
disabled Apr_21 svc:/network/telnet:defaul
disabled Apr_21 svc:/network/nfs/rquota:de
disabled Apr_21 svc:/network/uucp:default
disabled Apr_21 svc:/network/chargen:dgram
disabled Apr_21 svc:/network/chargen:strea
disabled Apr_21 svc:/network/daytime:dgram
disabled Apr_21 svc:/network/daytime:strea
disabled Apr_21 svc:/network/discard:dgram
disabled Apr_21 svc:/network/discard:strea
disabled Apr_21 svc:/network/echo:dgram
disabled Apr_21 svc:/network/echo:stream
disabled Apr_21 svc:/network/time:dgram
disabled Apr_21 svc:/network/time:stream
disabled Apr_21 svc:/network/ftp:default
disabled Apr_21 svc:/network/comsat:defaul
disabled Apr_21 svc:/network/finger:defaul
disabled Apr_21 svc:/network/login:eklogin
disabled Apr_21 svc:/network/login:klogin
disabled Apr_21 svc:/network/login:rlogin
disabled Apr_21 svc:/network/rexec:default
disabled Apr_21 svc:/network/shell:default
disabled Apr_21 svc:/network/shell:kshell
disabled Apr_21 svc:/network/talk:default
disabled Apr_21 svc:/network/rpc-100235_1/
disabled Apr_21 svc:/network/login/tcp6:de
disabled Apr_21 svc:/network/shell/tcp:def
disabled Apr_21 svc:/network/exec/tcp:defa
disabled Apr_21 svc:/network/telnet/tcp6:d
online Apr_21 svc:/system/svc/restarter:
online Apr_21 svc:/network/pfil:default
online Apr_21 svc:/network/loopback:defa
online Apr_21 svc:/system/installupdates
online Apr_21 svc:/milestone/name-servic
online Apr_21 svc:/network/physical:defa
online Apr_21 svc:/milestone/network:def
online Apr_21 svc:/system/identity:node
online Apr_21 svc:/system/metainit:defau
online Apr_21 svc:/system/filesystem/roo
online Apr_21 svc:/system/boot-archive:d
online Apr_21 svc:/system/scheduler:defa
online Apr_21 svc:/system/filesystem/usr
online Apr_21 svc:/system/keymap:default
online Apr_21 svc:/system/device/local:d
online Apr_21 svc:/system/filesystem/min
online Apr_21 svc:/system/identity:domai
online Apr_21 svc:/system/sysevent:defau
online Apr_21 svc:/platform/sun4v/drd:de
online Apr_21 svc:/system/rmtmpfiles:def
online Apr_21 svc:/system/resource-mgmt:
online Apr_21 svc:/system/coreadm:defaul
online Apr_21 svc:/system/cryptosvc:defa
online Apr_21 svc:/system/picl:default
online Apr_21 svc:/system/device/fc-fabr
online Apr_21 svc:/milestone/devices:def
online Apr_21 svc:/network/initial:defau
online Apr_21 svc:/system/manifest-impor
online Apr_21 svc:/network/service:defau
online Apr_21 svc:/milestone/single-user
online Apr_21 svc:/platform/sun4v/efdaem
online Apr_21 svc:/system/filesystem/loc
online Apr_21 svc:/system/cron:default
online Apr_21 svc:/system/sysidtool:net
online Apr_21 svc:/system/dumpadm:defaul
online Apr_21 svc:/system/sysidtool:syst
online Apr_21 svc:/application/psncollec
online Apr_21 svc:/milestone/sysconfig:d
online Apr_21 svc:/application/font/fc-c
online Apr_21 svc:/system/sac:default
online Apr_21 svc:/system/utmp:default
online Apr_21 svc:/network/inetd:default
online Apr_21 svc:/system/system-log:def
online Apr_21 svc:/application/managemen
online Apr_21 svc:/network/ssh:default
online Apr_21 svc:/application/managemen
online Apr_21 svc:/system/auditd:default
online Apr_21 svc:/application/managemen
online Apr_21 svc:/application/managemen
online Apr_21 svc:/system/console-login:
online Apr_21 svc:/system/mdmonitor:defa
online Apr_21 svc:/network/routing-setup
online Apr_21 svc:/application/x11/xfs:d
online Apr_21 svc:/network/cde-spc:defau
online Apr_21 svc:/network/omni/tcp:defa
online Apr_21 svc:/system/fmd:default
online Apr_21 svc:/system/webconsole:con
online Apr_21 svc:/network/ntp:default
online Apr_21 svc:/milestone/multi-user:
online Apr_21 svc:/application/graphical
online Apr_21 svc:/application/cde-print
online Apr_21 svc:/milestone/multi-user-
online Apr_21 svc:/system/zones:default
online Apr_21 svc:/system/basicreg:defau
offline Apr_21 svc:/application/managemen
offline Apr_21 svc:/system/filesystem/vol
offline Apr_21 svc:/network/rpc/meta:defa
offline Apr_21 svc:/network/rpc/cde-calen
offline Apr_21 svc:/network/rpc/cde-ttdbs
offline Apr_21 svc:/network/rpc/smserver:
offline Apr_21 svc:/network/rpc/mdcomm:de
offline Apr_21 svc:/network/rpc/metamed:d
offline Apr_21 svc:/network/rpc/metamh:de
maintenance Apr_21 svc:/application/stosreg:d
maintenance Apr_21 svc:/network/stdiscover:de
maintenance Apr_21 svc:/network/stlisten:defa
maintenance Apr_21 svc:/application/font/stfs
maintenance Apr_21 svc:/network/rpc-100229_1-
maintenance Apr_21 svc:/network/rpc-100422_1/
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
How can I verify if there's a firewall in between or something that
regenerate the traffic?
Can rpcinfo help, if so, kindly give me the actual syntax/qualifier
to do this? Believe snmp uses udp ports 161, 162 & 6665, so
from current server, I've tried issuing a few rpcinfo unsuccessfully
(perhaps the current & remote server slasun11's hardening
affected them) :
slasun02:/ >rpcinfo -T udp slasun11
rpcinfo: can't contact rpcbind: : RPC: Unable to receive; errno = Connection refused; System error
slasun02:/ >rpcinfo -T udp slasun02
rpcinfo: can't contact rpcbind: : RPC: Unable to receive; errno = Connection refused; System error
slasun02:/ >rpcinfo -T udp slasun02 161
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun02 161 2
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -s slasun02
rpcinfo: can't contact rpcbind: RPC: Rpcbind failure - RPC: Failed (unspecified error)
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun11 162
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun11 6665
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
regenerate the traffic?
Can rpcinfo help, if so, kindly give me the actual syntax/qualifier
to do this? Believe snmp uses udp ports 161, 162 & 6665, so
from current server, I've tried issuing a few rpcinfo unsuccessfully
(perhaps the current & remote server slasun11's hardening
affected them) :
slasun02:/ >rpcinfo -T udp slasun11
rpcinfo: can't contact rpcbind: : RPC: Unable to receive; errno = Connection refused; System error
slasun02:/ >rpcinfo -T udp slasun02
rpcinfo: can't contact rpcbind: : RPC: Unable to receive; errno = Connection refused; System error
slasun02:/ >rpcinfo -T udp slasun02 161
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun02 161 2
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -s slasun02
rpcinfo: can't contact rpcbind: RPC: Rpcbind failure - RPC: Failed (unspecified error)
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun11 162
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
slasun02:/ >rpcinfo -T udp slasun11 6665
rpcinfo: RPC: Rpcbind failure - RPC: Unable to receive
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So "nmap" initiated from the subnet (where user is located) to the target
remote host can tell us if a certain Udp port has been blocked - is this correct?
"netstat -a" on the remote host can tell us if a Udp port is open but will need
a way to do this to verify if there's firewall in between that blocks it.
I seem to recall someone from HP Unix support team ever gave me a native
Tru64 Unix command that can do this verification too (to see if Udp port is
open on remote host) but I'm not sure if it's rpcinfo. If there's no such Unix
native tool/command (ie don't need a tool to be installed separately or an
extra 3rd party tool), let me know that there's no such command.
remote host can tell us if a certain Udp port has been blocked - is this correct?
"netstat -a" on the remote host can tell us if a Udp port is open but will need
a way to do this to verify if there's firewall in between that blocks it.
I seem to recall someone from HP Unix support team ever gave me a native
Tru64 Unix command that can do this verification too (to see if Udp port is
open on remote host) but I'm not sure if it's rpcinfo. If there's no such Unix
native tool/command (ie don't need a tool to be installed separately or an
extra 3rd party tool), let me know that there's no such command.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Just one last question :
where can I download a freeware for Windows platform that
performs "snmpwalk/snmpget "
Thanks
where can I download a freeware for Windows platform that
performs "snmpwalk/snmpget "
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
slaSun11#> ps -ef | grep -i snm
root 393 1 0 Apr 21 ? 0:00 /usr/lib/snmp/snmpdx -y -c /etc/snmp/conf
root 388 1 0 Apr 21 ? 0:48 /usr/sfw/sbin/snmpd
root 8370 8366 0 May 05 ? 0:35 /opt/aworks/services/bin/a
root 23549 23086 0 11:15:56 pts/3 0:00 grep -i snm
slaSun11#> svcs -a | grep -i snm
online Apr_21 svc:/application/managemen