Communications and Configuration Issues
Communications and Configuration Issues
  Last Updated: July 17 2009

The CA NSM software package consists of a number of different components that must communicate with each other as well as with non-NSM components (e.g., Windows and UNIX OS, etc.).  For this reason, ensuring that the proper communication protocols and connections are in place prior to deployment is critical.  

NSM uses:

Refer to the Network Management section for additional information on communications protocols and how they are used by CA NSM.

Community Names

By default the DSM assumes that all agents in a domain have the same community strings (i.e., "passwords")  for read and write, namely:
Admin = write
Public = read

Communication Ports

NSM utilizes a number of communication ports and this can become an issue if any of the components (e.g., Agents) are deployed on different sides of a company firewall.  For a list of ports and options for working with firewall restrictions, click here.

Address Resolution

DNS errors can easily compromise communication between NSM components.   In addition to verifying that DNS has been properly configured, you should be aware the search order used for DNS name resolution will depend on the utility that is used to make the call.  If an application (e.g., TCP/IP utility) issues a gethostbyname API call, the search path is as follows:

  1. Check local host
  2. Check Host file
  3. Check DNS server
  4. Try NETBIOS name resolution

The MS knowledge base, on the other hand,  lists the search sequence for resolving a NETBIOS name as:

  1. NetBios name cache
  2. WINS server
  3. B-node broadcast
  4. LMHOSTS file
  5. HOSTS file
  6. DNS server

In the event you are working with a DHCP client, you can use either of the following commands to determine the machine's IP address:

ping -a <ip address> or <nodename>
or
ipconfig

Network Cards (NIC)

There may be several times when you install agent technology components on a machine with multiple network cards. In some of these cases you may need to force the agent technology components to communicate over a particular NIC. By default, agent technology will bind to the primary NIC. If the agent services cannot communicate to the DSM over this NIC then they may fail and you may find yourself facing other problems such as traps being sent with the wrong IP or performance agents failing to receive a profile or send a cube.

One example where this often occurs is on a clustered box. In a clustered environment the machines usually have two NICs. The first is used for internal communication between the machines of the cluster and the second is used for external communication. In this case you would need to bind all the agent technology processes to the second NIC so they can communicate externally with the managers (or agents). Here's what you would need to do to bind the agent technology components to a particular IP address:

  1. Verify that all current patches have been applied. .
  2. If you're planning to use performance agents or anything that uses CAM then you need to do the following, otherwise move on to step 3:

*routing forward 127.0.0.1={local IP address to use}

  1. Modify the file: %AGENTWORKS_DIR\services\config\aws_orb\quick.cfg (this file is responsible for all the orb traffic). Comment out the first plugin line and modify the second as documented in the file so it looks like:

# PLUGIN awm_qikpipe aws_orb22 PLUGIN awm_qiksoc 7774@<your target IP address here>

  1. Modify the file: %AGENTWORKS_DIR\services\config\aws_sadmin\aws_sadmin.cfg This file is responsible for agent poll responses. Uncomment out the setting TRAP_OVERRIDE_ADDR and specify the address you're binding to such as:

TRAP_OVERRIDE_ADDR xxx.xxx.xxx.xxx

  1. Finally, modify the file: %AGENTWORKS_DIR\services\config\aws_snmp\aws_snmp.cfg In some cases this file may not exist yet. If it does not, you can copy it from another machine.

Note: You must uncomment the setting IP_TO_BIND and specify the IP to bind to such as: IP_TO_BIND xxx.xxx.xxx.xxx