Managing IP reconciliation policies - BlueCat Integrity - 9.4.0

Address Manager Administration Guide

Product name
BlueCat Integrity
Note: In large networks, the Address Manager IPv4 and IPv6 reconciliation policy might be affected by SNMP time-out and stop discovering IP addresses. This issue could indicate that one of your seed routers is experiencing exhaustion of its system resources for Unicast MAC addresses, Unicast routes, VLANs, or other features. If a section of a hardware resource is full, all processing overflow is usually sent to the CPU, seriously impacting the router's performance. To resolve this issue, check the resource use on the router and compare hardware boundaries for related resources and configure accordingly, or consider upgrading the hardware.

You can create IP reconciliation policies at the configuration (IPv4 only), block, or network levels. At the configuration level, you can define multiple IPv4 reconciliation policies. At the block and network levels, you can define just one policy per block or network. Blocks and networks don't inherit reconciliation policies from their parent objects.

For IPv4 reconciliation policies, when set and run at the configuration level, Address Manager automatically creates blocks and networks based on the results of the network discovery. A policy set at the configuration level requires you to specify one or more network boundaries. A network boundary is a range, in CIDR notation, that you want the policy to search. Although blocks and networks don't inherit reconciliation policies, policies set at these levels will conflict with policies set at the configuration level. To avoid this, add the blocks and networks that have reconciliation policies to the overrides list of your configuration-level policy.

Between discovery sessions, IP addresses on the physical network may be added or removed, resulting in addresses on the network differing from addresses in Address Manager. In IP reconciliation, Address Manager lists such addresses as one of three types:
  • Reclaimable IP Address—(IPv4 only) an IP address that exists in Address Manager, but not on the physical network. This may represent a device that was turned off at the time of the discovery, or the address may no longer exist on the network.
  • Unknown IP Address—an IP address that exists on the physical network, but not in Address Manager. This likely represents an address that has been added to the network since the last discovery.
  • Mismatched IP Address—an IP address that exists in both Address Manager and on the network, but where the MAC address, DNS host name information, VLAN information or connected switch port doesn't match.