Code Monkey home page Code Monkey logo

carphunter's Introduction

carphunter

Own a datacenter? Want to allow network-operators to see the ARP and IP assignments without logging in?

Carphunter is a Python-based network management tool using netmiko libraries to search your Cisco® branded routing/switching equipment. This tool is used to quickly examine recent IP, ARP, and VLAN associations across the network.

Setup

1) Install the software

The latest release is in pip:

pip install carphunter

You can always run the latest release from this repository by:

python setup.py install

2) Make scheduled cron

A cron job allows the tool to automatically keep the database up to date based on your own schedule. On most systems you can edit /etc/crontab and add

*/10 * * * * root /bin/carphunter --poll

This will save the networks arp database to /etc/carphunter.json every 10 minutes.

3) Edit configuration for your network

Change /etc/carphunter.yml to contain a default global user/password. Add your routers and switches, supplying an alternate password where neccessary for each device. Change permissions of this file to root-only to protect users from attaining network access. Additional use of limited jails for for the python interface will hit compliance marks, or just use auditing.

global:
    user: "default_user"
    password: "password"
devices:
    routers:
        10.16.16.2:
            name: ROUTER-01
            user: "router_user"
            password: "router_password"
        10.16.16.3:
            name: ROUTER-02
            user: "router_user"
            password: "router_password"
    switches:
        172.16.16.10:
            name: TX-DFW-DIST-A
        172.16.16.20:
            name: TX-DFW-DIST-B
        172.16.16.31:
            name: TX-DFW-DIST-A
        172.16.16.31:
            name: TX-DFW-DIST-A

4) Create initial database

This will test connectivity to your network build an initial database.

carphunter --poll

Command Examples

Find all ARP entries for 001c.c46b.beef

This command will check every switch and router for any ARP or MAC table related entries containing a MAC address. Partial matches are supported.

carphunter -m 001c.c46b.beef

Sample output:

Checking network for `001c.c46b.beef`...

Routing Device: TX-DFW-6509-01 found match!
+----------------+-----------------+------+-----+-------+
|     hwaddr     |        ip       | vlan | age | proto |
+----------------+-----------------+------+-----+-------+
| 001c.c46b.beef | 10.10.1.29      | N/A  |  -  |  ARPA |
| 001c.c46b.beef |  10.10.1.30     | N/A  |  -  |  ARPA |
| 001c.c46b.beef |  10.10.1.31     | N/A  |  -  |  ARPA |
| 001c.c46b.beef |  10.10.1.32     | N/A  |  -  |  ARPA |
+----------------+-----------------+------+-----+-------+

Switching Device: TX-DFW-RACK-A12 found match!
+----------------+-----------+------+--------+
|     hwaddr     | interface | vlan |  mode  |
+----------------+-----------+------+--------+
| 001c.c46b.beef |   Gi0/20  |  30  | STATIC |
+----------------+-----------+------+--------+

Statistics:
  * Cache contains 1 routers, 23 switches
  * Cache updated 2018-03-13T15:47:16.069718
  * Last poller took 0:02:14.006661
  * This lookup took 0:00:00.031692

Find IP for 10.10.1.100

This command will return IP, MAC, VLAN, AGE and ENCAPSULATION PROTOCOL. Partial matches are supported.

carphunter -i  10.10.1.100

Sample output:

Checking network for `10.10.1.100` ARPA entry...

Routing Device: TX-GVO-DC-6509-01 found a matching IP!
+---------------+----------------+------+-----+-------+
|       ip      |     hwaddr     | vlan | age | proto |
+---------------+----------------+------+-----+-------+
|  10.10.1.100  | 001c.c46b.a0fe |  1   |  3  |  ARPA |
+---------------+----------------+------+-----+-------+

Find IP using partial match 10.10.1

carphunter -i  10.10.1

Sample output (ambiguous matches):

Checking network for `10.10.1` ARPA entry...

Routing Device: TX-GVO-DC-6509-01 found a matching IP!
+---------------+----------------+------+-----+-------+
|       ip      |     hwaddr     | vlan | age | proto |
+---------------+----------------+------+-----+-------+
|  10.10.1.100  | 5a1f.fa30.1111 |  1   |  3  |  ARPA |
|  10.10.1.101  | 0022.1968.0c11 |  1   |  1  |  ARPA |
|  10.10.1.102  | 5a1f.ff30.111e |  1   |  2  |  ARPA |
+---------------+----------------+------+-----+-------+

carphunter's People

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar

Forkers

cptcavemen xdai555 bigrayhicks

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.