<< Click here to display Table of Contents >>

Advanced Settings

Contents

The advanced settings for each domain include:

▪Network Security

▪L3 Topology

▪L2 Topology

▪Email Alert for Qapp

▪Credentials

▪Live Access

▪Others

Security

Check Box	Default Value	Description
Remove the following sensitive data from the device configurations and UI	Disabled	The sensitive data include: 1.Line and console passwords 2.Local user passwords 3.Enable passwords 4.Enable Secret 5.SNMP community string 6.TACACS and Radius keys 7.VPN Keys and/or Certs 8.SSH Private keys (these may show up on CSS devices)

Check Box

Default Value

Description

Remove the following sensitive data from the device configurations and UI

Disabled

The sensitive data include:

1.Line and console passwords

2.Local user passwords

3.Enable passwords

4.Enable Secret

5.SNMP community string

6.TACACS and Radius keys

7.VPN Keys and/or Certs

8.SSH Private keys (these may show up on CSS devices)

Build L3 Topology Option

Check Box	Default Value	Description
Build unknown end system L3 topology	Disabled	Control whether to calculate L3 topology for unknown end systems when building L3 topology in a benchmark task. Note: Enabling this function may increase the time of building L3 topology in a benchmark task if the system has lots of unknown end systems.
Use the main class mask to calculate L3 topology for an IP without mask	Disabled	Control whether to calculate L3 topology for IP addresses that do not have masks. When this option is enabled, the system calculates L3 topology for theses IP addresses by borrowing the masks of their main class network addresses.
Automatically create zones and assign VRF interface based on VRF names	Disabled	Control whether to automatically create zones based on VRF names. If this function is enabled, the system does the following when detecting two interfaces configured with the same IP address but different VRFs. 1.Create a zone per VRF after the IPv4 L3 topology is built. 2.Move the two interfaces to the corresponding zone according to its configured VRF.

Check Box

Default Value

Description

Build unknown end system L3 topology

Disabled

Control whether to calculate L3 topology for unknown end systems when building L3 topology in a benchmark task.

Note: Enabling this function may increase the time of building L3 topology in a benchmark task if the system has lots of unknown end systems.

Use the main class mask to calculate L3 topology for an IP without mask

Disabled

Control whether to calculate L3 topology for IP addresses that do not have masks.

When this option is enabled, the system calculates L3 topology for theses IP addresses by borrowing the masks of their main class network addresses.

Automatically create zones and assign VRF interface based on VRF names

Disabled

Control whether to automatically create zones based on VRF names.

If this function is enabled, the system does the following when detecting two interfaces configured with the same IP address but different VRFs.

1.Create a zone per VRF after the IPv4 L3 topology is built.

2.Move the two interfaces to the corresponding zone according to its configured VRF.

Build L2 Topology Option

Field/Check Box	Default Value	Description
Minimum subnet mask	16	The minimum network number that the system can calculate when building L2 topology.
Filter DHCP Entries	Disabled	If enabled, the system filters out the outdated DHCP entries and only keeps the latest IP addresses when building build L2 topology.
Only save One-IP table entries that have values in Switch Port or DNS Name parameter	Enabled	If enabled, the system only saves entries with switch ports and DNS names in the One-IP table. It helps decrease the storage size and increase the query efficiency of the One-IP table.

Configure Email Alert for Qapp

Option	Sample Email
Merge all alerts in one email (default)	▪Sample Email Title: xxx errors xxx warning detected in Domain_Name
Separate alert emails for different tasks	▪Sample Email Title: xxx errors xxx warning detected in Task_Name ▪Sample Email For Task 1: ▪Sample Email For Task 2:
Separate alert emails for different objects (devices or paths)	▪Sample Email Title For Device: xxx errors xxx warning detected on Device_Name ▪Sample Email For Device 1: ▪Sample Email For Device 2:
	▪Sample Email Title For Path: xxx errors xxx warning detected on Path_Name ▪Sample Email For Path:
Duplicate an alert in emails when alert count increases by X	The delta threshold (X) controls when the system will email an alert again if it is repetitively recurring and increasingly reaches the value. By default, the value is 60.

Access Credential for Telnet/SSH CLI, Smart CLI and Change Management

Option	Description
Use Private Credentials and Shared Privilege Credentials	Use credentials defined in the Private CLI Settings to log into devices and then use privilege credentials defined in the Shared Device Settings to enter the privileged mode. It is the default access credential mode.
Use Private Credentials and Private Privilege Credentials	Use credentials in the Private CLI Settings to log into devices and then use privilege credentials defined in the Private Device Settings to enter the privileged mode.
Use Shared Credentials and Shared Privilege Credentials	Use credentials defined in the Shared Device Settings to log into devices and then use privilege credentials defined in the Shared Device Settings to enter the privileged mode.

Live Access

Field/Check Box		Default Value	Description
Timeout	SNMP	2 seconds	The timeout value when an SNMP request does not get a reply.
Timeout	CLI	30 seconds	The timeout value when a CLI request does not get a reply.
SNMP Hostname	Trim all strings after dot in SNMP hostname	N/A	Trim all strings after the dot in an SNMP hostname and use the remaining strings as the hostname in the system. For example, device.core1. The system trims .core1 and use device as a hostname in the system.
SNMP Hostname	Trim following domain names from SNMP hostname	N/A	Trim the specified domain names from an SNMP hostname.
Management Interface Selection Order		management;loopback;vlan;ve;ethernet	The order of interface types used to set the management interface of a device.
Polling Order	Trying to login device directly, then login via Jumpbox	N/A	Attempt to direct log in to devices first and attempt login via Jumbox if the direct login fails.
	Trying to login device via Jumpbox, then login directly	N/A	Attempt to log in to devices via Jumbox first and then attempt direct login if the login via Jumpbox fails.
	If ping fails, don't try Telnet/SSH in Tune Live Access and Seed Discovery	N/A	When the ping to a device fails, the system will not attempt Telnet/SSH access in the Tune Live Access and Seed Discovery features.
	If ping fails, don't try SNMP/Telnet/SSH in Scan IP Range	N/A	When the ping to a device fails, the system will not attempt SNMP/Telnet/SSH access in the Scan IP Range feature.
Third Party Telnet/SSH Tool	Enable Telnet/SSH CLI via third party tool	N/A	Whether to call third-party Telnet/SSH tools in NetworkBrain systems. See Logging into a device via CLI for details.

Others

Field		Default Value	Description
Max Route Table Entries		10000	The maximum route entries that the system can retrieve from the routing table of a device.
Limit how parser original results are saved	Minimum Time Interval	6	The minimum time interval that the system automatically saves the original result of a parser.
Limit how parser original results are saved	Maximum Size	2	The maximum size of the original result of a parser that the system can save.