Return to site

Windows Lldp Discovery Tool

broken image


  1. Windows Lldp Discovery Tool
  2. Windows Lldp Discovery Tool Installer

UNCLE is a small application written to give users a simple way to decode CDP (Cisco Discovery Protocol) and LLDP (Link Layer Discovery Protocol) packets. This is not normally possible as CDP packets are a broadcast and not visible to native application. UNCLE pulls the information from these packets and presents it to the user in an easily readable format, which can be copied. This guide describes the Link Layer Discovery Protocol (LLDP), LLDP for Media Endpoint Devices (LLDP-MED) and Voice VLAN, and general configuration information for these. LLDP is a Layer 2 protocol defined by the IEEE St andard 802.1AB-2005. See full list on ictshore.com. The tool provides an excellent means to view either ad hoc or infrastructure network elements. Drawing a full network maps requires that Link-Layer Topology Discovery (LLTD) is enabled on the requesting PC, and that the responder is enabled on all responding PCs. Windows Vista and Windows 7 provide the related elements by default. My goal would be to discover the hostnames of the Windows workstations connected to a switch from a show LLDP neighbor in the CLI. I am trying to find the best solution to achieve this. I've tried a few open source LLDP services, but unfortunately they were all unsuccessful.

Windows lldp discovery tool installer

In a network, you want to have a clear map to know the interconnections between devices. However, we don't have a map all the time. Or, if we have it, it is not 100% up-to-date. Therefore, we need to find an alternative to know the interconnections between devices. Luckily, Cisco comes to help us with CDPCisco Discovery Protocol. With this simple yet powerful protocol, we can find finally discover the network topology as we are working on it.

This article comes with a Cisco Packet tracer lab, that you can download for free using the link below. To benefit the most from the contents of this article, download the lab now and then follow it as you are reading the article.

Once you downloaded it, continue reading with the lab already opened.

CDP and LLDP lab intro

The Topology

CDP and LLDP are two protocols allowing you to discover the topology of the network. Consequently, as part of this lab, you will have to discover some of the network topology, so we won't be showing it here. Welcome to rrs websitehome. Therefore, we have a hidden part of the topology in a cloud.

As you can see from the topology, we have three switches connected together, and one of them connected to the cloud. We will work on these switches to tune CDP and LLDP behavior, then we will use telnet to explore the cloud.

Windows lldp discovery tool windows 10

The Requirements

We have divided this lab into two parts. First, we are going to configure and tune both CDP (Cisco Discovery Protocol) and LLDP (Link-Layer Discovery Protocol) on the three switches we can see. This is all the configuration we have to do. Then we will have to use the protocols we configured, along with telnet, to discover other devices in the cloud and connect to them. Here we have the configuration requirements

  • Access switches must have CDP disabled on access ports (Fa0/1 - 24)
  • Distribution switch must be run both CDP and LLDP

For the discovery part of this lab, I suggest you write down a table. Use the following columns: hostname, IP address(es), and Device Type (Switch or Router). You are going to populate it as we advance with the discovery. Moreover, you will also have to draw the topology of the network as we discover it. This means that you are going to draw switches and routers, and links interconnecting them. Therefore, get ready with a piece of paper.

Before we dive into configuration and exploration, we should talk a little about how these protocols work. That's what the next section is about.

Some theory about CDP and LLDP

What are CDP and LLDP?

Both CDP and LLDP are neighbor discovery protocols that can operate in an IEEE 802 environment (Ethernet). Both protocols do the same thing almost identically, with the major difference being the vendor. CDP is a Cisco proprietary protocol, while LLDP is an open-standard protocol. In fact, CDP stands for Cisco Discovery Protocol while LLDP stands for Link-Layer Discovery protocol. Again, both work exactly the same.

Neighbor discovery protocols work with a simple yet powerful concept. A device advertises information about itself and listens for information coming from others. These protocols are completely stateless, hence we don't have any session establishment nor retransmission of lost packets. Instead, each device sends out always the same pieces of information periodically. In case you have missed them, we will have to wait for the next one. A device informs the others about its hostname, management IP address (in CDP), capabilities (is it a router, a switch, or what else?) and its software version.

Ldwin

In a network, you want to have a clear map to know the interconnections between devices. However, we don't have a map all the time. Or, if we have it, it is not 100% up-to-date. Therefore, we need to find an alternative to know the interconnections between devices. Luckily, Cisco comes to help us with CDPCisco Discovery Protocol. With this simple yet powerful protocol, we can find finally discover the network topology as we are working on it.

This article comes with a Cisco Packet tracer lab, that you can download for free using the link below. To benefit the most from the contents of this article, download the lab now and then follow it as you are reading the article.

Once you downloaded it, continue reading with the lab already opened.

CDP and LLDP lab intro

The Topology

CDP and LLDP are two protocols allowing you to discover the topology of the network. Consequently, as part of this lab, you will have to discover some of the network topology, so we won't be showing it here. Welcome to rrs websitehome. Therefore, we have a hidden part of the topology in a cloud.

As you can see from the topology, we have three switches connected together, and one of them connected to the cloud. We will work on these switches to tune CDP and LLDP behavior, then we will use telnet to explore the cloud.

The Requirements

We have divided this lab into two parts. First, we are going to configure and tune both CDP (Cisco Discovery Protocol) and LLDP (Link-Layer Discovery Protocol) on the three switches we can see. This is all the configuration we have to do. Then we will have to use the protocols we configured, along with telnet, to discover other devices in the cloud and connect to them. Here we have the configuration requirements

  • Access switches must have CDP disabled on access ports (Fa0/1 - 24)
  • Distribution switch must be run both CDP and LLDP

For the discovery part of this lab, I suggest you write down a table. Use the following columns: hostname, IP address(es), and Device Type (Switch or Router). You are going to populate it as we advance with the discovery. Moreover, you will also have to draw the topology of the network as we discover it. This means that you are going to draw switches and routers, and links interconnecting them. Therefore, get ready with a piece of paper.

Before we dive into configuration and exploration, we should talk a little about how these protocols work. That's what the next section is about.

Some theory about CDP and LLDP

What are CDP and LLDP?

Both CDP and LLDP are neighbor discovery protocols that can operate in an IEEE 802 environment (Ethernet). Both protocols do the same thing almost identically, with the major difference being the vendor. CDP is a Cisco proprietary protocol, while LLDP is an open-standard protocol. In fact, CDP stands for Cisco Discovery Protocol while LLDP stands for Link-Layer Discovery protocol. Again, both work exactly the same.

Neighbor discovery protocols work with a simple yet powerful concept. A device advertises information about itself and listens for information coming from others. These protocols are completely stateless, hence we don't have any session establishment nor retransmission of lost packets. Instead, each device sends out always the same pieces of information periodically. In case you have missed them, we will have to wait for the next one. A device informs the others about its hostname, management IP address (in CDP), capabilities (is it a router, a switch, or what else?) and its software version.

Interestingly, neighbor discovery messages are not forwarded – not at Layer 2 nor at Layer 3. This means that a switch receiving a CDP message won't send it to anybody else, but will keep it for itself. This is due to the purpose of these protocols: find out directly connected neighbors. Therefore, any neighbor discovered with CDP or LLDP is directly connected to our device, no intermediary device in the middle. Note that this excludes passive devices, such as hubs or patch panels. Devices will store the messages they receive in their CDP/LLDP table.

Besides being used by network administrators to discover the topology, CDP and LLDP have another purpose. IP Phones leverage these two protocols to find out the VLAN reserved for VoIP and other information.

CDP and LLDP on Cisco devices

Almost any Cisco device in the world will support CDP natively. In those devices, CDP is already enabled globally and will send and listen for messages on all device's interfaces. The majority of Cisco devices will also support LLDP, as this allows them to interoperate with other vendors. However, in those devices, LLDP is off by default. LLDP is an extremely powerful tool, compared to CDP, as you can specify what pieces of information you want to send to other devices. This is outside the scope of this article, and not even supported in Packet Tracer. Nonetheless, we can (and will) individually turn on the transmission and reception of messages on interfaces. This is not possible with CDP, where transmission and reception are treated as the same item.

The following table shows the commands we are going to use in this configuration.

Step-by-Step CDP/LLDP lab

Configuration of CDP and LLDP

We have to configuration requirements for this lab. The first thing we have to do is disable CDP on all access ports of access switches. Thus, we need to connect to an access switch (in this case Access1st). To accomplish this task, we need to enter no cdp enable for all the FastEthernet interfaces we have. Below, the commands we need to type.

Once you do the same for both access switches we will be ready to turn on LLDP on the Distribution switch. This is extremely simple: just connect to it and type lldp run in the configuration prompt. After that, you will see the score of your lab reaching 100%. This is because we don't need to configure anything else. Instead, from now we will focus on the discovery of devices.

Cisco Discovery Protocol in a known topology

Just to babysit our first steps, we will start to use CDP in the part of the topology we can see on Packet Tracer. Even if we disabled CDP on access ports for access switches, we kept it enabled on uplinks. Therefore, we expect to see CDP messages between Distribution switch and access switches. To see if they are working, we need to check the CDP table of our distribution switch. We do that by typing show cdp neighbors.

The output of this command is extremely simple, but let's break it down anyway.

  • Device ID – this field represents the hostname of the neighbor
  • Local Interface – the interface on the current device (in this case Distribution switch) we received the advertisement on
  • Holdtime – How many seconds before removing this neighbor from the table, this is re-set to 180 each time we receive an advertisement from this neighbor
  • Capability – Capabilities of the remote device, refer to the legend presented in the command
  • Platform – Device model of the remote device (in this example we have two Catalyst 2960)
  • Port ID – The interface on the remote device the advertisement/message originated

Based on that, we know that FastEthernet 0/1 of Distribution connects to GigabitEthernet 0/1 on Access1st. We can add this to our drawing of the topology.

LLDP Discovery

If you check out the previous output, you are going to find that something is missing. In fact, the Distribution switch correctly sees the two Access switches, but it doesn't see anything else. However, we clearly see a cable going into the cloud: a neighbor is missing. This is because that neighbor does not run CDP with us, so we need to check the LLDP neighbor table. The command for that is show lldp neighbors.

Note: if you see multiple entries for the same device, this is probably due to a Packet Tracer bug.

The output of this command is exactly the same as the one for CDP, we won't go any further on that. Instead, we can add WestRouter to our topology drawing, connected on GigabitEthernet 0/1 of our Distribution switch.

Adding some details

At this point, we should arise a question: how can we connect to that WestRouter to see if it has neighbors too? We need to know its IP address. Unlike CDP, LLDP on packet tracer does not give us an easy way. Instead, we need to do our trick we learned in the Switch Troubleshooting article: retrieve the IP address from the MAC. The first thing we need to do is to retrieve the MAC address, we can do it with show lldp neighbors details.

As you can see from the picture, the MAC address is identified as Chassis ID. Now, all we need to do is the lookup of that MAC address in the ARP table of our switch. We already know from the previous article how to get the IP address from the MAC address using the show ip arp command. Therefore, we have just found out that WestRouter has an IP address of 10.0.1.1.

The topology from WestRouter

Now it's time to discover the cloud! From the Distribution switch, telnet to WestRouter issuing telnet 10.0.1.1 and log in with ictshore password. From now on, we are going to use CDP only. Issue show cdp neighbors to see all the neighbors we have.

If we continue to draw the network, we should create something like that.

Now, CDP has an amazing extension allowing us to directly see the IP addresses of connected devices. As a result, we don't need to do any lookup in the ARP and MAC address tables. Instead, we just use CDP as a comprehensive tool to discover the topology. We can see all the details we are looking for by issuing show cdp neighbors detail.

At this point, we have the IP addresses we need to connect to. The process is going to be the same: connect, check neighbors, report on the drawing, gather IP addresses, connect to the neighbor, and repeat.

Windows Lldp Discovery Tool

The topology from CenterSwitch

If you telnet into CenterSwitch, you are going to see these neighbors.

As you can see neighbor discovery is very simple, moreover you should be confident about that by now. Thus, let's continue our drawing (see below).

The Topology from Bottom1st

Before we connect to any other router we discovered from CenterSwitch, we need to remember about Bottom1st. We discovered this switch from WestRouter, and we should check that in order to maintain a mathematical approach. Hence, telnet into that and check the neighbors: the expected output is the one below.

Since we already know about both WestRouter and SouthRouter, so we don't need to add any device in the drawing. However, we didn't know about the link between Bottom1st and SouthRouter, so we should add it.

The Topology from NorthRouter, EastRouter and SouthRouter

If you telnet into NorthRouter, you will see a single neighbor: CenterSwitch. We already know about it, so we should continue looking at other devices. Once you telnet into the next device – which is EastRouter, you will see the following two neighbors.

If you issue the same command on SouthRouter, you will find Bottom2nd again. Verify that, then map this new switch into the drawing just like below.

Topology from Bottom2nd

If you telnet into Bottom2nd, you will find three neighbors: EastRouter, SouthRouter, and IslandRouter. By connecting to IslandRouter and checking its neighbors, you can verify it is connected to Bottom2nd only. Therefore, we completed the topology. It looks just like below.

Fluke 1735 power logger software download. In case the topology is not enough, or in case you want to telnet into a specific device and check its neighbors again, we have developed the following table with the list of devices we found and related IP addresses.

Conclusion

In this lab, we discovered all the secrets of two key protocols: CDP and LLDP. Besides the theory, we learned the configuration commands and the way to enable or disable them. However, the most important thing we learned and practiced with this article is the neighbor discovery process. As a result, you now know how to discover how the network is made starting from scratch. Just to recap, these are the steps you need to follow.

  1. Connect to a device
  2. Check its neighbors (both in CDP and LLDP)
  3. Report neighbors on a drawing and write down their IP addresses
  4. Connect to each neighbor and repeat the process

In case you are reviewing this article before taking your CCNA, here are the commands we used.

  • cdp run and lldp run to turn on CDP/LLDP globally (or off with the 'no' keyword before the command)
  • cdp enable to turn on CDP per-interface (or off with the 'no' keyword before the command)
  • lldp transmit and lldp receive to turn on LLDP transmission or reception on a per-interface basis (or off with the 'no' keywords before the command)
  • show cdp neighbors and show lldp neighbors to quickly check the list of neighbors
  • show cdp neighbors details to find out the IP address of each neighbor

Pursuing the CCNA with our Free CCNA course is a lot like building a house. With every article, you add a few bricks to your walls, and with this article, you added some very important bricks. Now that you are more comfortable with the network topology, you are ready to continue with physical layer troubleshooting.

SNMP

SNMP is the predominantly used network management protocol, with a majority of network devices being SNMP-enabled. The SNMP manager software, present in the network management solution, uses UDP polling to identify SNMP-enabled devices in the network. This is done by identifying replies sent by the SNMP agent software installed on all SNMP devices. Additionally, using UDP avoids the traffic overload of a full-blown TCP poll, and has minimal impact on network performance. Further queries are sent to these devices to identify them (as a router, switches, hubs, firewalls and so on). Device-related data are stored in SNMP-enabled devices as Object Identifiers (OIDs) – varying as per the device; printers would have data on ink levels and so on; switches would provide port in/port out data; routers might provide forwarding data, NAT table information etc). These OIDs, stored in Management Information Bases (MIBs), are exchanged between SNMP agent software and the manager software for automatic discovery of network devices and their attributes.

Windows Lldp Discovery Tool Installer

Link Layer Discovery Protocol (LLDP)

Link Layer Discovery Protocol (LLDP) is a vendor-neutral one-way protocol, working at Layer 2 to facilitate exchange of device information between directly connected devices. Each LLDP enabled device transmits device information (device type/ID, port ID) on to its directly connected neighbors, which then store this information on management information databases (MIBs). Network management software ideally uses these MIBs to collect device information, moving on from neighbor to neighbor until the entire network topology is mapped out.

Ping

Ping is another network discovery tool – by sending ICMP echo queries, and subsequently discovering echo replies, network management software can discover devices on a network responding to ICMP requests.





broken image