This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Networkaddress Anomalies
Networkaddress Anomalies

Version management

Difference between version and

At line 1 added 71 lines
!!Issue with Search Results
So we login and query for a specific IP address and the result looks like:
{{{
# filter: (networkAddress=1#\c0\a8\20\a1)
# requesting: networkaddress cn uid
#
# admin,NW_M01domain.info
dn: cn=admin,dc=NW_M01domain.info
uid: admin
networkaddress:: MSPAqCCh
cn: admin
}}}
The user disconnects and we query again:
{{{
# filter: (networkAddress=1#\c0\a8\20\a1)
# requesting: networkaddress cn uid
#
# admin,NW_M01domain.info
dn: cn=admin,dc=NW_M01domain.info
uid: admin
cn: admin
}}}
NOTICE: There is no value returned for the network address even though it was used in the search filter.
[Imonitor] shows
Network Address
{{{
TimeStamp Flags Type Length Address
12-12-06 1:59:13 pm 1:1 Not Present IP 4 192.168.32.161
}}}
NOTICE the "Not Present" BUT the issue is a values still shows.\\
Normally, "Not Present" would NOT show a value.
!!Issue With Linux
Apparently on OES Linux and SLES (I checked this on SLES 10) the format of the Network Address is not the same as it is on OES Netware (or other Netware Versions)
A search for networkAddress returns as:
{{{
39-23-05-E1-C0-A8-01-79
}}}
From what I can tell, this breaks down as:
* 9# - Implies this is a format of NT_TCP Transmission Control Protocol (TCP) address.
* 05-E1 - This appears to be the port the user is connected to the Linux Host. However, I have not been able to find documentation for conformation.
* C0-A8-01-79 - Is the IP address in this case it is 192.168.1.121
![Imonitor] shows
Present TCP 6 192.168.1.121:1505
!ndstrace Shows
The ndstrace -c connections provides:\\
tcp:192.168.1.121:1505 .jim.butler.people.willeke.com
!What this Means
As far as I can tell there is no methodology of determining the client that has connected to eDirectory if you are provided only the IP address unless you
Retrieve every networkaddress value and parse each values based on the NET_TYPE IP or TCP and then parse the string according to the NET_TYPE.
LDAP searches with Wild Cards all seem to fail.
(networkAddress=*\c0\a8\01\79) \\
I get an error of:\\
Search failed Root error: (LDAP: error code 18 - Inappropriate Matching)
!![More Information on Network Address|Novell NetworkAddress]
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop