Build IP Management Server with Ubuntu, GIT and Nmap

Have 25 Vlans in your lab and Storage, Servers, Switches and other equipment all over the place?

Build a good Ubuntu box

wpid1098-media_1358298686321.png

If you need more help on this leave some comments. It is pretty straight forward. Be sure to select openssh server as a role. After you login: Remember to $sudo apt-get update $sudo apt-get upgrade #If you are adventurous $sudo apt-get dist-upgrade

Install VMware Tools (you ARE doing this in a VM right?)

wpid1099-media_1358299813754.png

From your VI Client set the VMware tools install to start, this will insert the disk for VMware Tools, but unfortunately doesn’t automate the install. $sudo -s #apt-get install build-essential #apt-get install #apt-get install apache2 The last two steps might not be needed but I do them out of habit. They allow the VMware tools to build the Kernel modules needed for VMXNET drivers.#mount /dev/cdrom /mnt/cd #cp /mnt/cd/VMwareTools-8.6.0-425873.tar.gz #tar xvzf /tmp/VMwareTools-8.6.0-425873.tar.gz #cd vmware-tools-distrib #./vmware-install.pl Now Run through the install of VMware tools.#apt-get install nmap #apt-get install gitweb #exit You want to do some of the next steps as your normal user not root. $cd ~ $mkdir nmaps $git init nmaps $sudo vi /etc/gitweb.conf Modify the project root var to match your path to you nmaps.

wpid1100-media_1358302137956.png

Now restart apache. $sudo /etc/init.d/apache2 force-reload

wpid1101-media_1358302508614.png

Ok great, the webpage will be up at http://yourhost/gitweb

Now to add your network information:

$nmap -sP 10.10.10.0/25 -oG /pathtoyour/nmapsdirectory/file.map

The above command is to scan a subnet with pings then dump the output to a file.

Nmap - great network scanner, the -sP sets it to “Ping” mode, you don’t need to crawl ports or anything so ping is fine, it will resolve the DNS if that is working. my example: $nmap -sP 172.10.0.0/16 -oG /home/lab-admin/nmaps/vlan10.map

For what it is worth a /16 network takes forever. If you know the usable ip’s are a way smaller subset you can specify a range. $nmap -sP 172.10.0.1-100 -oG /home/lab-admin/nmaps/vlan10.map

Next on the first time you must add the file to the git repository $cd nmaps $git add /home/lab-admin/nmaps/vlan10.map $git commit -m “My Network Maps”

Now we have some content on the gitweb page.

wpid1102-media_1358344480271.png

Click tree to see the files you have added.

wpid1103-media_1358344539639.png

Click on blob to see your IP’s in use.

Let’s automate it with crontab

wpid1104-media_1358345701192.png

As you can see it is fairly easy to get rolling. Before you finish, run the nmap command for each subnet and git add each file to the repository.Now we will tell cron to run the nmap scans on a regular interval and git commit the changes. $vi ip-scanscript.sh In this file put each ip scan on its own line. As seen above. Save the changes and exit. $chmod +x ip-scanscript.sh $./ip-scanscript.sh This will create all the files you want in one swoop. $cd nmaps $git add * This will add all the new files in the nmaps directory to the git repository.Edit the script one more time. $vi ip-scanscript.sh

wpid1105-media_1358346482687.png

By adding the git commit line to the script you can now set this up to automatically run with cron.

$crontab -e

[note]I was having issues with the range line in the screenshot above. Still testing.

[2nd note] change the git commit line to include a ‘-a’ example:

git commit -a -m “My IP Lists”

If you need help with crontab this is where I go when I can’t remember. http://www.adminschoice.com/crontab-quick-reference http://www.thegeekstuff.com/2011/07/cron-every-5-minutes/

I set mine to run every 4 hours.Hope this is helpful, not much reason to buy a fancy product when this can be up and running so quickly.

More References: http://gitref.org/basic/

Written on January 16, 2013