Basic TCP (Blocked)
This basic TCP probe tests that a TCP port is not accepting connections. This probe may be used to test that a firewall is working properly, or that a particular TCP service is never operating on an important machine.
If the specified port accepts the TCP connection, the device is reported with the desired failure status. If the specified port fails to accept the TCP connection within 120 seconds, the device status is "OK".
Failure Status is the device status that InterMapper should report when a TCP connection is made. The default is DOWN.
Filename: com.dartware.tcp.blocked
Version: 1.5
Basic TCP Connection Test
This basic TCP probe tests whether a TCP port accepts connections or not. If the specified port accepts the TCP connection, the device is reported UP. If the specified port fails to accept the TCP connection within sixty seconds, the device is reported DOWN.
Filename: com.dartware.tcp.basic
Version: 1.5
Custom TCP Probe
This probe lets you send your own string over the TCP connection and set the status of the device depending on the response received. There are six parameters which control the operation of this probe:
String to send is the initial string sent over the TCP connection. This could be a command which indicates what to test, or a combination of a command and a password. The string is sent on its own line, terminated by a CR-LF.
Seconds to wait is the number of seconds to wait for a response. If no response is received within the specified number of seconds, the device's status is set to DOWN.
OK Response is the substring which should match the device's "ok response". If it matches the first line received, the device is reported to have a status of OK.
WARN Response is the substring which should match the device's warning response.
ALRM Response is the substring which should match the device's alarm response.
CRIT Response is the substring which should match the device's critical response.
DOWN Response is the substring which should match the device's down response.
If InterMapper cannot connect to the specified TCP port, the device's status is set to DOWN.
Filename: com.dartware.tcp.custom
Version: 1.9
CVS Server
This probe tests a CVS server by connecting to its port (default port is 2401) and issuing the proper authentication strings. These are:
BEGIN AUTH REQUEST<lf>
CVSROOT_Path<lf>
Username<lf>
Scrambled_password<lf>
END AUTH REQUEST<lf>
If the response is "I LOVE YOU", then the authentication succeeded.
If the response is "I HATE YOU", then either the authentication failed or the path to CVSROOT is incorrect.
Filename: com.dartware.tcp.cvs
Version: 1.6
DHCPv4
The protocol used by IP clients to obtain an IPv4 address and other parameters for using TCP/IP. Depending on your setup, this probe may only work if your computer is already using an IP address acquired using BOOTP or DHCP.
Note: On Mac OS X, this probe will only work if there are no enabled DHCP, Bootp, or PPP interfaces.
This probe sends DHCP-INFORM requests to test the DHCP mechanism for an IP subnet.
BOOTP Relay Address is the IP address to which all DHCP requests are addressed. Normal BOOTP/DHCP requests are broadcast to the local subnet (255.255.255.255), where they are picked up by the BOOTP agent in a router and relayed to the BOOTP/DHCP server. If this parameter is empty, InterMapper sends the DHCP requests directly to the target IP address specified for the device.
DHCP Client ID is an optional parameter included with InterMapper's request that can be used to identify the DHCP client as InterMapper. If you leave this parameter blank, InterMapper does not include the DHCP Client ID option in its DHCP probe.
DHCP Subnet Mask is an optional parameter specifying the expected value of the subnet mask returned by the DHCP server. If you leave this parameter blank, InterMapper will accept any subnet mask value.
DHCP Router Address is an optional parameter specifying the expected value of the router address returned by the DHCP server. If you leave this parameter blank, InterMapper will accept any router address value.
DHCP Message Type is the type of DHCP message to send. Typically, you should prefer DHCP-INFORM, since this message type will not cause an IP address to be allocated by the DHCP server. A DHCP server may respond to a DHCP-DISCOVER request by wastefully leasing out an IP address which will never be used.
Hardware Address is an optional parameter specifying the MAC address of the network interface that should be used to send the DHCP request.
Request Seconds is an optional parameter specifying the number of seconds to claim we have been trying for; certain DHCP servers (such as the one supplied with OS X 10.5 with the default settings) will not respond at all until the client claims to have been trying for at least 10 seconds.
Filename: com.dartware.dhcp
Version: 2.0
Domain Name Service (DNS): (A) Address
The protocol used by TCP/IP network clients to translate Internet names into IP addresses, as defined in RFC 1034 and RFC 1035. This probe sends a DNS request to look up the IP address for a specified domain name.
Domain Name is the fully qualified domain name you are attempting to resolve.
IP Address allows you to optionally specify an IP address the domain name should resolve to. If this parameter is non-empty, InterMapper will report a status from the specified Failure Status parameter if one of the returned IP addresses doesn't match the one given here.
Recursion Desired tells the target DNS server whether it can ask another DNS server for help in answering the request. If the target DNS server does not know how to resolve the given domain name, and "Recursion-Desired" is true, the target DNS server may query an authoritative DNS server. To prevent other servers from becoming involved, set "Recursion Desired" to false.
Failure Status is the device status InterMapper should report when the IP address in a DNS response doesn't match the specified IP Address parameter. You can choose to have InterMapper set the device status to Down, Alarm or Warning. The default is to report IP address mismatches as an Alarm condition, so that Down is reserved for when the DNS server fails to respond at all.
Filename: com.dartware.dns
Version: 1.8
Domain Name Service (DNS): (MX) Mail Server
The protocol used by TCP/IP network clients to translate Internet names into Mail servers, as defined in RFC 1034 and RFC 1035. This probe sends a DNS request to look up the mail server for a specified domain name.
Domain Name is the fully qualified domain name you are attempting to resolve.
Mail Server allows you to optionally specify a mail server the domain name should resolve to. If this parameter is non-empty, InterMapper will report a status from the specified Failure Status parameter if one of the returned mail servers doesn't match the one given here.
Recursion Desired tells the target DNS server whether it can ask another DNS server for help in answering the request. If the target DNS server does not know how to resolve the given domain name, and "Recursion-Desired" is true, the target DNS server may query an authoritative DNS server. To prevent other servers from becoming involved, set "Recursion Desired" to false.
Failure Status is the device status InterMapper should report when the mail server in a DNS response doesn't match the specified Mail Server parameter. You can choose to have InterMapper set the device status to Down, Alarm or Warning. The default is to report mail server mismatches as an Alarm condition, so that Down is reserved for when the DNS server fails to respond at all.
Filename: com.dartware.dns.mx
Version: 1.1
Domain Name Service (DNS): (NS) Name Server
The protocol used by TCP/IP network clients to translate Internet names into name servers, as defined in RFC 1034 and RFC 1035. This probe sends a DNS request to look up the name server for a specified domain name. CNAME records are accepted if no NS records are present in the response.
Domain Name is the fully qualified domain name you are attempting to resolve.
Name Server allows you to optionally specify a name server the domain name should resolve to. If this parameter is non-empty, InterMapper will report a status from the specified Failure Status parameter if one of the returned name servers doesn't match the one given here.
Recursion Desired tells the target DNS server whether it can ask another DNS server for help in answering the request. If the target DNS server does not know how to resolve the given domain name, and "Recursion-Desired" is true, the target DNS server may query an authoritative DNS server. To prevent other servers from becoming involved, set "Recursion Desired" to false.
Failure Status is the device status InterMapper should report when the name server in a DNS response doesn't match the specified Name Server parameter. You can choose to have InterMapper set the device status to Down, Alarm or Warning. The default is to report name server mismatches as an Alarm condition, so that Down is reserved for when the DNS server fails to respond at all.
Filename: com.dartware.dns.ns
Version: 1.1
Domain Name Service (DNS): (PTR) Reverse Lookup
The protocol used by TCP/IP network clients to translate IP addresses into Internet names, as defined in RFC 1034 and RFC 1035. This probe sends a DNS request to look up the domain name for a specified IP address. Both PTR and CNAME records are accepted in the response.
IP Address is the fully qualified IP address you are attempting to resolve.
Domain Name allows you to optionally specify a domain name the IP address should resolve to. If this parameter is non-empty, InterMapper will report a status from the specified Failure Status parameter if one of the returned domain names doesn't match the one given here.
Recursion Desired tells the target DNS server whether it can ask another DNS server for help in answering the request. If the target DNS server does not know how to resolve the given IP address, and "Recursion-Desired" is true, the target DNS server may query an authoritative DNS server. To prevent other servers from becoming involved, set "Recursion Desired" to false.
Failure Status is the device status InterMapper should report when the domain name in a DNS response doesn't match the specified Domain Name parameter. You can choose to have InterMapper set the device status to Down, Alarm or Warning. The default is to report domain name mismatches as an Alarm condition, so that Down is reserved for when the DNS server fails to respond at all.
Filename: com.dartware.dns.ptr
Version: 1.1
Domain Name Service (DNS): (TXT) Text Record
The protocol used by TCP/IP network clients to translate Internet names into Text records, as defined in RFC 1034 and RFC 1035. This probe sends a DNS request to look up the text record for a specified domain name.
Domain Name is the fully qualified domain name you are attempting to resolve.
Text Substring allows you to optionally specify a substring of a text record the domain name should resolve to. If this parameter is non-empty, InterMapper will report a status from the specified Failure Status parameter if one of the returned text records doesn't contain the substring given here.
Recursion Desired tells the target DNS server whether it can ask another DNS server for help in answering the request. If the target DNS server does not know how to resolve the given domain name, and "Recursion-Desired" is true, the target DNS server may query an authoritative DNS server. To prevent other servers from becoming involved, set "Recursion Desired" to false.
Failure Status is the device status InterMapper should report when the text record in a DNS response doesn't contain the specified Text Substring parameter. You can choose to have InterMapper set the device status to Down, Alarm or Warning. The default is to report substring absences as an Alarm condition, so that Down is reserved for when the DNS server fails to respond at all.
Filename: com.dartware.dns.txt
Version: 1.1
File Transfer Protocol (Login)
The standard protocol for transferring files on TCP/IP internets, as defined in RFC 959. The default TCP port number for FTP control connections is port 21.
This TCP probe connects to the FTP server's control port (21), logs in using the specified UserID and Password, and then issues a NOOP command. The probe concludes by issuing the QUIT command.
User ID is the account name used to login to the FTP server.
Password is the account password used to verify the User ID's identity.
Note: If this probe queries the FTP server often at regular intervals, it will appear in your FTP server's log files as a succession of "Login" and "Logout" log lines.
Filename: com.dartware.tcp.ftp.login
Version: 1.8
File Transfer Protocol (No Login)
The standard protocol for transferring files on TCP/IP internets, as defined in RFC 959. The default TCP port number for FTP control connections is port 21.
This TCP script connects to the FTP server's control port (21), and issues a NOOP command without logging in. The script concludes by issuing the QUIT command.
Note: Use this script if you are going to be frequently probing the FTP server, so it doesn't fill your log files with user logins and logouts.
Filename: com.dartware.tcp.ftp.nologin
Version: 1.8
Internet Gopher Protocol
The document search and retrieval protocol described in RFC 1436. The default TCP port number for Gopher connections is port 70.
This script connects to the gopher server and sends a line containing the "selector string". By default, the selector string is empty and the gopher server returns its top level information as a sequence of lines. This script only checks that some data is returned by the gopher server, it does not validate the contents.
Selector string is the line of data sent to the gopher server. By default, this should be empty.
Filename: com.dartware.tcp.gopher
Version: 1.6
SNMP - Host Resources
This probe monitors elements of the Host Resources MIB of the target device using SNMP.
Processor Load Alarm % specifies what processor load, expressed as a percentage, will cause an alarm.
Processor Load Warning % specifies what processor load, expressed as a percentage, will cause a warning.
Disk Usage Alarm % specifies the percentage of a disk above which an alarm is caused.
Disk Usage Warning % specifies the percentage of a disk above which a warning is caused.
Memory Usage Alarm % specifies the percentage of memory above which an alarm is caused.
Memory Usage Warning % specifies the percentage of memory above which a warning is caused.
One-minute Load Average Alarm specifies the one-minute load average value above which an alarm is caused.
One-minute Load Average Warning specifies the one-minute load average value above which a warning is caused.
Five-minute Load Average Alarm specifies the five-minute load average value above which an alarm is caused.
Five-minute Load Average Warning specifies the five-minute load average value above which a warning is caused.
Fifteen-minute Load Average Alarm specifies the fifteen-minute load average value above which an alarm is caused.
Fifteen-minute Load Average Warning specifies the fifteen-minute load average value above which a warning is caused.
Ignore storage table indices allows you to indicate storage table entries you want to ignore. They will not be used in cause alarms or warnings, nor will they be displayed in the popup window. Note that you will generally be unable to set this until the device has been polled at least once.
Filename: com.dartware.snmp.hrmib
Version: 1.12
Hypertext Transfer Protocol (HTTP - Follow Redirects)
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you download a specific web page and scan it for a specific string of HTML. This probe will follow a limitd number of page redirects to the same HTTP server.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test. You must enter a valid "Host Name" to test web servers which implement virtual hosts. Only add an IP address or domain name; do not add "http://".
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
User ID is the user name typed into the web browser's password dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Password is the password for the web browser's dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Redirect Limit is the maximum number of redirects to follow.
Filename: com.dartware.tcp.http.follow
Version: 1.2
Hypertext Transfer Protocol (HTTP) - Post Form Results
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you post form results to a specific web CGI.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test.
URL Path is the full path to the desired CGI on the web server (e.g. "/index.cgi"). The first character must be a '/'.
Form Data is the encoded data sent in the body of the POST message.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you post form data that is designed to generate an error response, you might search for "sorry" or "could not be processed" to verify that the CGI is properly rejecting the data. If this string is not found, the device will go into alarm.
Filename: com.dartware.tcp.http.cgi.post
Version: 2.7
Hypertext Transfer Protocol (HTTP) - Proxy
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you test that a web server can be accessed using a remote proxy server as an intermediary. For example, this probe can check if your web server is accessible from some remote location on the Internet (e.g. www.proxymate.com).
URL is the full URL to the desired page on the web server,including the "http://" scheme (e.g. "http://www.intermapper.com")
Proxy User ID is your user ID for the proxy server. Leave this field blank if no authentication is required to use the proxy server.
Proxy Password is your password for the proxy server. Leave this field blank if no authentication is required to use the proxy server.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
User Agent is the string that identifies this InterMapper client probe to the proxy web server. Some proxy servers block traffic at the proxy based on the User-Agent identity. This parameter lets you optionally override InterMapper's default User-Agent setting. If you leave this parameter blank, InterMapper sends a User-Agent string of "InterMapper/version", where version is the current version number of InterMapper.
Filename: com.dartware.tcp.http.proxy
Version: 2.7
Hypertext Transfer Protocol (HTTP) - Redirect
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you test that a web server is redirecting certain URL's to a specific URL.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test.
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
Redirect URL is the complete URL that the given URL Path is redirected to. The URL should begin with "http://".
User ID is the user name typed into the web browser's password dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Password is the password for the web browser's dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Filename: com.dartware.tcp.http.redirect
Version: 1.13
Hypertext Transfer Protocol (HTTP)
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you download a specific web page and scan it for a specific string of HTML.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test. You must enter a valid "Host Name" to test web servers which implement virtual hosts. Only add an IP address or domain name; do not add "http://".
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
User ID is the user name typed into the web browser's password dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Password is the password for the web browser's dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Filename: com.dartware.tcp.http
Version: 2.11
Hypertext Transfer Protocol (HTTPS - Follow Redirects)
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you download a specific web page and scan it for a specific string of HTML. This probe will follow a limitd number of page redirects to the same HTTP server.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test. You must enter a valid "Host Name" to test web servers which implement virtual hosts. Only add an IP address or domain name; do not add "http://".
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
User ID is the user name typed into the web browser's password dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Password is the password for the web browser's dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Redirect Limit is the maximum number of redirects to follow.
Filename: com.dartware.tcp.https.follow
Version: 1.1
Hypertext Transfer Protocol over SSL/TLS (HTTPS) - Post Form Results
The protocol used for secure transfer of web pages on the World Wide Web. The default TCP port number for HTTPS connections is port 443.
This TCP probe lets you post form results to a specific web CGI over a secure connection.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test.
URL Path is the full path to the desired CGI on the web server (e.g. "/index.cgi"). The first character must be a '/'.
Form Data is the encoded data sent in the body of the POST message.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you post form data that is designed to generate an error response, you might search for "sorry" or "could not be processed" to verify that the CGI is properly rejecting the data. If this string is not found, the device will go into alarm.
Note: The implementation of this probe uses OpenSSL on MacOSX.
Filename: com.dartware.tcp.https.cgi.post
Version: 1.13
Hypertext Transfer Protocol (HTTPs) - Redirect
The protocol used to transfer web pages on the World Wide Web, defined in RFC 2068 and RFC 1945. The default TCP port number for HTTP connections is port 80.
This TCP probe lets you test that a web server is redirecting certain URL's to a specific URL.
Host Name is the domain name of the web server (e.g. "www.intermapper.com"). This can be derived from the host name part of the URL that you want to test.
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
Redirect URL is the complete URL that the given URL Path is redirected to. The URL should begin with "http://".
User ID is the user name typed into the web browser's password dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Password is the password for the web browser's dialog. The default is to leave this blank. You should set this parameter if you want to test a web page that requires authentication.
Filename: com.dartware.tcp.https.redirect.txt
Version: 1.4
Hypertext Transfer Protocol over SSLv3 (HTTPS without TLSv1)
The protocol used for secure transfer of web pages on the World Wide Web. The default TCP port number for HTTP connections is port 443.
This probe lets you establish a secure connection to a web server, download a specific web page, and scan it for a specific string of HTML. Unlike the default HTTPS probe, this probe will not attempt to auto-negotiate a TLSv1 connection, making it compatible with some older application servers.
Host Name is the domain name of the web server (e.g. "www.dartware.org"). This can be derived from the host name part of the URL that you want to test. You must enter a valid "Host Name" to test web servers which implement virtual hosts.
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
Note: The implementation of this probe uses OpenSSL on MacOSX.
Filename: com.dartware.tcp.https.notls.txt
Version: 1.3
Hypertext Transfer Protocol over SSL/TLS (HTTPS)
The protocol used for secure transfer of web pages on the World Wide Web. The default TCP port number for HTTP connections is port 443.
This probe lets you establish a secure connection to a web server, download a specific web page, and scan it for a specific string of HTML.
Host Name is the domain name of the web server (e.g. "www.dartware.org"). This can be derived from the host name part of the URL that you want to test. You must enter a valid "Host Name" to test web servers which implement virtual hosts.
URL Path is the full path of the desired file on the web server (e.g. "/index.html"). The first character must be a '/'.
String to verify is a string to verify in the data returned by the HTTP server. For example, if you are retrieving a web page, you might search for "<HTML" or "<P>" to verify that the data is HTML. If this string is not found, the device will go into alarm.
Note: The implementation of this probe uses OpenSSL on MacOSX.
Filename: com.dartware.tcp.https
Version: 2.7
Intelligent Platform Management Interface (IPMI 2.0)
This probe implements version 2.0 of the Intelligent Platform Management Interface (IPMI) over a LAN. It sends UDP-based RMCP+ packets to a Baseboard Management Controller (BMC) located within a server or workstation. The BMC is hardware which permits network-based management of the computer even when it is turned off, i.e. "lights-out management".
User is an administrator-level user name to the BMC. This parameter is required.
Password is the password for the desired administrator-level user. This parameter is required.
Dialect specifies the variant of the IPMI protocol. Unfortunately, there are subtle differences in implementations of IPMI in various products. To use this probe with an Apple XServe 2008 or earlier, set the "Dialect" parameter to "XServe". For Dell Servers, the Apple XServe 2009, and any other product set the "Dialect" parameter to "Other".
This probe supports one-key, non-anonymous logins only. Internally, it uses RAKP-HMAC-SHA1 and AES-CBS-128 for authentication and confidentiality, respectively. The firewall configuration of the BMC must permit UDP packets from InterMapper.
Filename: com.dartware.ipmi.txt
Version: 1.1
Internet Relay Chat (IRC)
This probe tests whether InterMapper can register a connection with an IRC server. This probe establishes a connection to the IRC server and issues the "PASS", "NICK", and "USER" commands. It verifies that the IRC server returns a particular string, in its welcome message, for example.
Password is the connection password. This parameter is passed using the "PASS" command.
Nickname gives the connection a nickname. This parameter is passed using the "NICK" command.
Username specifies the username, hostname, servername and realname of the new user. Typically, the hostname and servername are ignored for client connections. The realname must be prefixed with a ':'.
String to verify is a string to verify in the data returned by the IRC server. For example, you might check for a string returned in the IRC server's welcome message.
Filename: com.dartware.tcp.irc
Version: 1.6
Lightweight Directory Access Protocol (LDAP)
The protocol used to access directories supporting the X.500 models, as described in RFC 2251.
This probe connects to the LDAP server and binds using the designated Bind Name. If a Bind Password is provided, this password is sent as clear text to authenticate the probe.
Once logged in, the probe sends a SearchRequest for Field to Match searching for an equality match of Name to Lookup, and counts the number of LDAP records returned.
If the Search Base field is specified, this value is used as the base of the search. Otherwise, the Bind Name is used for the Base DN.
Filename: com.dartware.tcp.ldap.ssl
Version: 1.9
Lightweight Directory Access Protocol (LDAP)
The protocol used to access directories supporting the X.500 models, as described in RFC 2251.
This probe connects to the LDAP server and binds using the designated Bind Name. If a Bind Password is provided, this password is sent as clear text to authenticate the probe.
Once logged in, the probe sends a SearchRequest for Field to Match searching for an equality match of Name to Lookup, and counts the number of LDAP records returned.
If the Search Base field is specified, this value is used as the base of the search. Otherwise, the Bind Name is used for the Base DN.
Filename: com.dartware.tcp.ldap
Version: 1.9
Line Printer Daemon Protocol
The print server protocol used to print over a TCP/IP network, as defined in RFC 1179. The default TCP port number for LPR connections is port 515.
Filename: com.dartware.tcp.lpr
Version: 1.7
Internet Message Access Protocol over SSL (IMAP-SSL)
The protocol used for accessing and manipulating email messages on a server, as defined in RFC 2060. This probe tests a secure connection to the IMAP server. The default TCP port number for secure IMAP connections is port 993.
This TCP script connects to the IMAP4 server and issues a CAPABILITY command, a NOOP command, and finally terminates with a LOGOUT command. The script checks the server's response to the CAPABILITY command to verify that the server supports IMAP4 or IMAP4rev1.
Filename: com.dartware.tcp.imap4.ssl
Version: 1.7
Internet Message Access Protocol - Version 4
The protocol used for accessing and manipulating email messages on a server, as defined in RFC 2060. The default TCP port number for IMAP4 connections is port 143.
This TCP script connects to the IMAP4 server and issues a CAPABILITY command, a NOOP command, and finally terminates with a LOGOUT command. The script checks the server's response to the CAPABILITY command to verify that the server supports IMAP4 or IMAP4rev1.
Filename: com.dartware.tcp.imap4
Version: 1.7
Post Office Protocol Version 3 over SSL (POP3-SSL)
The protocol used to access email messages from a central maildrop server, as defined in RFC 1939. The default TCP port number for POP3-SSL connections is port 995.
If the "User Name" parameter is left empty, this probe verifies that the server send "+OK" as its initial greeting, then immediately sends the QUIT command.
If a "User Name" parameter is specified, this probe will attempt login to the POP3 server using the specified password. If the probe fails to authenticate, the device will be marked in "warning".
By default, this probe will use the APOP command to authenticate the user if the the APOP command is supported by the server. To authenticate via USER and PASS commands for a particular user, set the "Use APOP if supported" parameter to False.
- The "Use APOP if supported" option has no effect if APOP is not supported by the server.
Filename: com.dartware.tcp.pop3.ssl
Version: 2.6
Post Office Protocol Version 3 (POP3)
The protocol used to access email messages from a central maildrop server, as defined in RFC 1939. The default TCP port number for POP3 connections is port 110.
If the "User Name" parameter is left empty, this probe verifies that the server send "+OK" as its initial greeting, then immediately sends the QUIT command.
If a "User Name" parameter is specified, this probe will attempt login to the POP3 server using the specified password. If the probe fails to authenticate, the device will be marked in "warning".
By default, this probe will use the APOP command to authenticate the user if the the APOP command is supported by the server. To authenticate via USER and PASS commands for a particular user, set the "Use APOP if supported" parameter to False.
- The "Use APOP if supported" option has no effect if APOP is not supported by the server.
Filename: com.dartware.tcp.pop3
Version: 2.6
IMAP Server Email Round-trip Probe
This probe tests an IMAP server and measures the time it takes to send a message (via SMTP) and retrieve it (via IMAP). It sends a short message to the specified SMTP server, and continually attempts to retrieve the message via IMAP from the device being tested. The probe alerts if the server fails to respond properly or the round-trip time exceeds the specified timeout.
Parameters
SMTP Server is the server that receives the SMTP message. Defaults to the device being tested if left blank.
SMTP User and SMTP Password are the (optional) user name and password to be used for sending the message. Leave blank if not required.
Email To is the e-mail address to which the message will be sent.
Email From is the From: address in the message.
IMAP User and IMAP Password the user name and password used to log into the POP server to retrieve the message.
Timeout is measured in seconds.
Filename: com.dartware.email.imap.txt
Version: 1.3
POP Server Email Round-trip Probe
This probe tests a POP server and measures the time it takes to send a message (via SMTP) and retrieve it (via POP). It sends a short message to the specified SMTP server, and continually attempts to retrieve the message via POP from the device being tested. The probe alerts if the server fails to respond properly or the round-trip time exceeds the specified timeout.
Parameters
SMTP Server is the server that receives the SMTP message. Defaults to the device being tested if left blank.
SMTP User and SMTP Password are the (optional) user name and password to be used for sending the message. Leave blank if not required.
Email To is the e-mail address to which the message will be sent.
Email From is the From: address in the message.
POP User and POP Password the user name and password used to log into the POP server to retrieve the message.
Timeout is measured in seconds.
Filename: com.dartware.email.pop.txt
Version: 1.3
Simple Mail Transfer Protocol over TLS (SMTP-TLS)
The standard protocol used to transfer electronic mail on the Internet, as defined in RFC 821. This probe tests a secure connection to the SMTP server. The default TCP port number for secure SMTP connections is port 25.
This probe tries to verify that a specified email address exists on the SMTP server, using the VRFY command. It connects to the SMTP server, introduces itself using the HELO command, then issues a VRFY command for the specified email address. When it has received a response, the script sends the QUIT command before closing its connection to the server.
Email Address is the name or email address that we are attempting to verify.
Filename: com.dartware.tcp.smtp.tls
Version: 1.8
Simple Mail Transfer Protocol
The standard protocol used to transfer electronic mail on the Internet, as defined in RFC 821. The default TCP port number for SMTP connections is port 25.
This probe tries to verify that a specified email address exists on the SMTP server, using the VRFY command. It connects to the SMTP server, introduces itself using the HELO command, then issues a VRFY command for the specified email address. When it has received a response, the script sends the QUIT command before closing its connection to the server.
Email Address is the name or email address that we are attempting to verify.
Filename: com.dartware.tcp.smtp
Version: 2.0
Multicast Listener Probe
This probe lets you listen for UDP packets directed to a specific UDP port. If you specify a multicast IP address, InterMapper will listen for packets directed to that multicast address. This probe will change the device status to the DOWN if a packet isn't received within specified number of seconds (the default is 10 seconds).
The Multicast Listener probe can be used to verify that a multicast source is broadcasting, for example, a live QuickTime broadcaster.
This probe does not inject any traffic into the network; it is passive only.
Multicast IP Address is the optional multicast IP address to listen on.
Seconds to wait is the maximum number of seconds to wait between packets. If a packet is not received within the specified number of seconds, the device's status is set to DOWN. The "Seconds to wait" timer is reset every time a packet is received.
Verify Source Address lets you specify whether the probe should only count packets from the IP address of the targeted device.
Filename: com.dartware.udplistener
Version: 2.0
RealTime Streaming Protocol (RTSP)
The protocol used to control real-time streams, defined in RFC 2326 and RFC 1889. The default TCP port number for RTSP connections is port 554.
This TCP probe lets you check that the server is up and responding.
The specifics of the commands that the probe must send to the server vary somewhat depending upon the version of RFC2326 that the server implements. If the server you're monitoring implements RFC2326bis-02 or later, then set RFC2326bis-02 or later to "Yes". If you're not sure, leave it set to "No". If the device goes into warning with the reason set to "[RTSP] Unexpected response to PLAY command. (RTSP/1.0 460 Only Aggregate Option Allowed)", then set it to "Yes".
Filename: com.dartware.tcp.rtsp
Version: 2.1
Network Time Protocol - Version 2 (NTP)
The protocol used to synchronize time between computers, defined in RFC 1119.
This probe sends a client-mode request to the NTP server asking for the current time. By default, NTP requests are sent to UDP port 123.
Filename: com.dartware.ntp
Version: 1.5
Network News Transfer Protocol
The protocol used to read network news on TCP/IP Internets, as defined in RFC 977. The default TCP port number for NNTP connections is port 119.
This script connects to the news server and uses the GROUP command to ask for information about a specific newsgroup name. The script then issues the QUIT command to tell the server it is closing the connection.
Newsgroup is the name of the newsgroup that you want to verify.
Filename: com.dartware.tcp.nntp
Version: 1.6
Remote Authentication Dial-in User Service (RADIUS)
The protocol used by remote access servers to authenticate dial-in users, as defined in RFC 2138. This probe tests a RADIUS server by sending an Access-Request packet to authenticate a specific user name and password. Before you can use this probe with a particular RADIUS server, you must add the InterMapper computer's IP address to the RADIUS server and choose a "shared secret" for it. The "shared secret" is used by the RADIUS protocol to encrypt passwords in RADIUS requests. A RADIUS server will not answer access-requests from a client it doesn't recognize.
The officially assigned port number for RADIUS is 1812. However, some RADIUS servers use port number 1645 for historical reasons.
Shared Secret is InterMapper's unique password into the RADIUS server. The same value needs to be configured into the RADIUS server as well, as it is used for authentication.
User Name is the user you are trying to authenticate.
Password is the user's password. This password is encrypted using the shared secret; it is not sent in the clear.
Filename: com.dartware.radius
Version: 1.8
Session Initiation Protocol (SIP) over UDP
The protocol used to set up voice communications for Voice over IP (VOIP), as described in RFC 3261. This probe sends a SIP request in a single UDP packet and checks for a valid SIP response.
By default, this probe sends an OPTIONS command to the target device. However, some VOIP systems will not answer un-authenticated OPTIONS requests. For these devices, change the command to REGISTER.
URI is the SIP uniform resource identifier in the request.
Command is the SIP command to send in the request.
Filename: com.dartware.sip.txt
Version: 1.0
Simple Network Paging Protocol
This protocol transfers pager information across the Internet, as defined in RFC 1861. The default TCP port number for SMTP connections is port 444.
This SNPP probe verifies that a specified SNPP server is working by connecting to it, then issuing a PAGE <pagerid> command. If it gets back a valid response, code, the probe issues a QUIT command and exits, marking the device in the OK state.
If an "Invalid Pager ID" response comes back, the probe issues a QUIT command and exits, marking the device in the Alarm state.
If no connection was made, or if unexpected responses come back, the device is marked as being down.
Filename: com.dartware.tcp.snpp
Version: 1.5
Secure Shell (SSH)
The protocol used for secure remote login. The default TCP port number for SSH connections is port 22.
This TCP probe opens a connection to the specified port and looks for the identification string that indicates an SSH server as specified in RFC 4253.
Filename: com.dartware.tcp.ssh.txt
Version: 1.3
Subversion Server (Apache module)
This probe tests a Subversion server running as an Apache module. The subversion module lets Apache function as a WebDAV/DeltaV server. Since the server responds normally to HTTP GET requests, testing whether it is up is the same as performing an HTTP GET request and checking to ensure the location was found.
Host Name is the domain name of the subversion server (e.g. "svn.collab.net"). Only add an IP address or domain name; do not add "http://".
URL Path is the path to the repository. The first and last characters must be a '/'.
User ID is the user name used by the subversion server for authentication, if required.
Password is the password used by the subversion server for authentication, if required.
Subversion is a version control system intended as a replacement for CVS. The software is released under an Apache/BSD style open-source license. The project can be found at http://subversion.tigris.org.
Filename: com.dartware.tcp.svn.apache
Version: 1.0
Subversion Standalone Server (svnserve)
This probe tests a stand-alone svnserve Subversion server. It connects to the svnserve using its default port 3690. The server returns a response to indicate it is running. If a repository location is specified, the probe then tries to connect to that repository. If a username is specified, the probe will try to authenticate using CRAM-MD5, otherwise it will connect anonymously.
Repository is the subversion repository path (e.g. "svn/experimental"). It should not begin with a '/'.
User ID is the user name used by the subversion server for authentication, if required.
Password is the password used by the subversion server for authentication, if required.
Subversion is a version control system intended as a replacement for CVS. The software is released under an Apache/BSD style open-source license. The project can be found at http://subversion.tigris.org.
A description of the custom protocol used by svnserve can be found at http://svn.collab.net/repos/svn/trunk/subversion/libsvn_ra_svn/protocol.
Filename: com.dartware.tcp.svn.svnserve
Version: 1.0
Telnet Protocol
The protocol used for terminal-to-terminal communication and distributed computation as described in RFC 854. The default TCP port number for Telnet connections is port 23.
This probe lets you Telnet to a device, login with a name and password, and optionally enter a command. This probe is specifically designed to reject any Telnet options proffered by the Telnet server; the TCP connection always remains in the base "network virtual terminal" state. This probe lets you enter data at up to three prompts.
Intro String to Match is a string to match in the welcome banner sent by the Telnet server when you first connect. Leave this parameter blank if you want to match anything in the welcome banner.
First Prompt is the string to match in the first prompt. (e.g. "Login:")
Reply #1 is your reply to the first prompt. (i.e. your response to the "Login:" prompt)
Second Prompt is the string to match in the second prompt. (e.g. "Password:") If this parameter is empty, the probe ignores the prompt string and it does not send its reply.
Reply #2 is your reply to the second prompt. (i.e. your response to the "Password:" prompt.)
Third Prompt is the string to match in the third prompt. If this parameter is empty, the probe ignores the prompt string and its reply.
Reply #3 is your reply to the third prompt.
Filename: com.dartware.tcp.telnet
Version: 1.7
VNC Server
Attempt to connect to a VNC Server. VNC uses RFB (Remote Frame Buffer) protocol for communication between clients and server. The probe waits to receive a "RFB ###.###" string. If it arrives, the VNC server is assumed to be up and the probe simply disconnects.
The Virtual Network Computer (VNC) protocol was originally designed at AT&T Labs in Cambridge. There are many implementations: the developers now support it from the RealVNC site at http://www.realvnc.com/.
Filename: com.dartware.tcp.vnc
Version: 1.7