交换机 : Cisco Nexus 5000 系列交换机

连结执行On命令连结平台的7000/5000内部用户名在记帐日志显示

2015 年 8 月 28 日 - 机器翻译
其他版本: PDFpdf | 英语 (2015 年 4 月 23 日) | 反馈

简介

本文描述原因为什么未确定用户名在连结交换机的日志出现在vPC设置的。

贡献用信益李和Abhishek Pakrashi, Cisco TAC工程师。

先决条件

要求

本文档没有任何特定的要求。

使用的组件

本文档中的信息基于以下软件和硬件版本:

本文档中的信息都是基于特定实验室环境中的设备编写的。本文档中使用的所有设备最初均采用原始(默认)配置。如果您使用的是真实网络,请确保您已经了解所有命令的潜在影响。

背景信息

当NX-OS运行在连结5000和连结7000平台,用户名例如“根”, “_eemuser”, “svcisan”和“admin”在记帐日志可能被观察,即使那些用户名没有由用户明确地定义。这些用户名在交换机预定义,并且本文说明下上述用户名在记帐日志可能被观察的条件在。

用户名

说明和日志

此测验在连结5000交换机被执行了。

===========================================

在连结5000,当copy run start命令运行,并且,当配置保存执行对此(copy run start),用户根在日志出现。请参阅以下示例:

Tue May 6 05:25:28 2014:type=update:id=10.10.10.10@pts/0:user=admin:cmd=
Performing configuration copy.
Tue May 6 05:25:30 2014:type=start:id=vsh.20707:user=root:cmd=
Tue May 6 05:25:31 2014:type=stop:id=vsh.20707:user=root:cmd=
Tue May 6 05:25:35 2014:type=update:id=10.10.10.10@pts/0:user=admin:cmd=
copy running-config startup-config (SUCCESS)

__eemuser

此测验在连结5000交换机被执行了与支持的EEM (嵌入式活动管理器)功能。

============================================

当EEM脚本在连结5000交换机配置,并且端口下来事件检测, EEM脚本将进入Interface Configuration模式(在这种情况下特别地结构扩展器(FEX)端口以太网114/1/1为了便于测试),并且带来它备份。参见下面示例:

Nexus5K# sh run eem

!Command: show running-config eem
!Time: Sun Apr 27 04:56:04 2014

version 6.0(2)N2(4)
event manager applet test
event syslog pattern "ETHPORT-5-IF_DOWN_NONE"
action 1.0 cli enable
action 2.0 cli conf t
action 3.0 cli interface ether 114/1/1
action 4.0 cli no shut
action 5.0 cli end


登陆对与用户名"admin1"的连结5000,配置本地。参见此登录会话示例:

Nexus1# show users
NAME     LINE         TIME         IDLE          PID COMMENT
admin1    pts/2        Apr 27 04:31   .         31579 (10.137.76.223) *           


请手工关闭其中一个的端口E114/1/1 FEX模块连接对连结5000。端口在此日志重新启动:

2014 Apr 27 04:56:26 N5K-C5548UP %ETHPORT-5-IF_DOWN_NONE: 
Interface Ethernet114/1/32 is down (Transceiver Absent)
2014 Apr 27 04:56:27 N5K-C5548UP %ETHPORT-5-IF_ADMIN_UP:
Interface Ethernet114/1/32 is admin up.


在记帐日志,在"admin1"用户执行一个指南被关闭端口后,用户“eem_user”帐户没有执行一关闭。请参阅以下示例:

Sun Apr 27 04:56:25 2014:type=update:id=10.10.10.10@pts/2:user=admin1:
cmd=configure terminal ; interface Ethernet114/1/1 (SUCCESS)
Sun Apr 27 04:56:25 2014:type=update:id=10.10.10.10@pts/2:user=admin1:
cmd=configure terminal ; interface Ethernet114/1/1 ; shutdown (REDIRECT)
Sun Apr 27 04:56:26 2014:type=update:id=10.10.10.10@pts/2:user=admin1:
cmd=configure terminal ; interface Ethernet114/1/1 ; shutdown (SUCCESS)
Sun Apr 27 04:56:26 2014:type=start:id=vsh.32539:user=__eemuser:cmd=
Sun Apr 27 04:56:27 2014:type=update:id=vsh.32539:user=__eemuser:cmd=configure
terminal ; interface Ethernet114/1/1 (SUCCESS)
Sun Apr 27 04:56:27 2014:type=update:id=vsh.32539:user=__eemuser:cmd=configure
terminal ; interface Ethernet114/1/1 ; no shutdown (REDIRECT)
Sun Apr 27 04:56:27 2014:type=update:id=vsh.32539:user=__eemuser:cmd=configure
terminal ; interface Ethernet114/1/1 ; no shutdown (SUCCESS)


从上述时间戳和,当EEM脚本被触发时, “no shut的”操作由用户“eem_user”记录。

svcisan

此测验在连结7000被执行了。

=====================================

当EEM脚本在连结7000时配置,并且端口admin关闭的事件检测, EEM脚本进入接口配置模式(在这种情况下特别地测试目的FEX以太网接口101/1/10)并且带来它备份。请参阅以下示例:

event manager applet TEST
event syslog pattern ".*ETHPORT-5-IF_DOWN_ADMIN_DOWN.*"
action 1.0 cli enable
action 2.0 cli conf t
action 3.0 cli int e101/1/10
action 4.0 cli no shut
action 5.0 cli end
action 6.0 syslog msg INTERFACE CHANGED TO ADMIN NO SHUT
\ action 7.0 syslog priority critical msg INTERFACE HAS BEEN CHANGED TO ADMIN UP


如果E101/1/10被关闭, EEM脚本触发,并且不关闭端口。在日志,下面的消息观察:

2014 Mar 12 07:12:37 Nexus_7000 %ETHPORT-5-IF_DOWN_ADMIN_DOWN: 
Interface Ethernet101/1/10 is down (Administratively down)
2014 Mar 12 07:12:38 Nexus_7000 %ETHPORT-5-IF_ADMIN_UP:
Interface Ethernet101/1/10 is admin up .
2014 Mar 12 07:12:38 Nexus_7000 %VSHD-5-VSHD_SYSLOG_CONFIG_I:
Configured from vty by admin on vsh.23673
2014 Mar 12 07:12:38 Nexus_7000 %EEM_ACTION-2-CRIT:
INTERFACE HAS BEEN CHANGED TO ADMIN UP


在记帐日志和在同一时间戳,您看到那关闭操作由admin执行,是帐户使用登陆到连结7000。您看到EEM被触发,并且由EEM的配置更改被记录作为svcisan。 请参阅从连结7000的此记帐日志:

Wed Mar 12 07:12:37 2014:type=update:id=10.10.10.10@pts/0:user=admin:
cmd=switchto ; configure terminal ; interface Ethernet101/1/10 ;
shutdown (REDIRECT)
Wed Mar 12 07:12:37 2014:type=update:id=10.10.10.10@pts/0:user=admin:
cmd=switchto ; configure terminal ; interface Ethernet101/1/10 ;
shutdown (SUCCESS)
Wed Mar 12 07:12:38 2014:type=start:id=vsh.23673:user=svc-isan:cmd=
Wed Mar 12 07:12:38 2014:type=update:id=vsh.23673:user=svc-isan:
cmd=configure terminal ; interface Ethernet101/1/10 (SUCCESS)
Wed Mar 12 07:12:38 2014:type=update:id=vsh.23673:user=svc-isan:
cmd=configure terminal ; interface Ethernet101/1/10 ;
no shutdown (REDIRECT)
Wed Mar 12 07:12:38 2014:type=update:id=vsh.23673:user=svc-isan:
cmd=configure terminal ; interface Ethernet101/1/10 ;
no shutdown (SUCCESS)
Wed Mar 12 07:12:38 2014:type=update:id=vsh.23673:user=svc-isan:
cmd=syslog msg INTERFACE CHANGED TO ADMIN NO SHUT (SUCCESS)
Wed Mar 12 07:12:38 2014:type=update:id=vsh.23673:user=svc-isan:
cmd=syslog priority critical msg INTERFACE HAS BEEN CHANGED TO
ADMIN UP (SUCCESS)

admin

此测验在一个对被执行了连结5000s与设置同步。

==============================================

可以找到设置同步的预配置在一个对连结5000s此处:配置同步操作

此配置用于交换机配置文件:

N5K1(config-sync-sp-if)# sh switch-profile buffer



switch-profile : Test
----------------------------------------------------------
Seq-no  Command
----------------------------------------------------------
2       interface Ethernet1/8
2.1       switchport
2.2       switchport mode trunk
2.3       switchport trunk allowed vlan 1-100
2.4       shutdown


确认更改并且推送它到对等体交换机。然后确认它顺利地应用:

N5K1(config-sync-sp-if)# commit
Verification successful...
Proceeding to apply configuration. This might take a while depending on
amount of configuration in buffer.
Please avoid other configuration changes during this time.
Commit Successful


现在请检查核算登录N5K1, “是用户名登陆对N5K1安排配置更改被记录此处的test_user” :

Thu Mar 6 08:19:22 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface
Ethernet1/8 (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface
Ethernet1/8 (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport mode trunk (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport mode trunk (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742(sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport trunk allowed vlan 1-100 (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
switchport trunk allowed vlan 1-100 (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
shutdown (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.23742 (sp-commit):
user=test_user:cmd= configure terminal ; interface Ethernet1/8 ;
shutdown (SUCCESS)
Thu Mar 6 08:19:23 2014:type=stop:id=ppm.23742:user=test_user:
cmd=Thu Mar 6 08:19:23 2014:type=update:id=10.10.10.10@pts/1:
user=test_user:cmd= configure sync ; switch-profile Test ;
commit (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=10.10.10.10@pts/1:
user=test_user:cmd= configure sync ; commit (SUCCESS)


请参阅此对等体连结5000交换机,有从N5K1推送的配置更改。记帐日志在同一时间戳附近报告,并且表明相同的配置配置更改由“admin”做:

Thu Mar  6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit)
:user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport mode trunk (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport mode trunk (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport trunk allowed vlan 1-100 (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
switchport trunk allowed vlan 1-100 (SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8
(SUCCESS)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
shutdown (REDIRECT)
Thu Mar 6 08:19:23 2014:type=update:id=ppm.21880 (sp-commit):
user=admin:cmd= configure terminal ; interface Ethernet1/8 ;
shutdown (SUCCESS)

相关的思科支持社区讨论

思科支持社区是您提问、解答问题、分享建议以及与工作伙伴协作的论坛。


Document ID: 118107