• Getting Started
• Tutorials
• Server
• Monitor
• Reports
• Queries
• Host
• Site Traffic
• Site Service
• AddressLocation
• AddressMap
• Events
• Event Counts
• Find Multi
• Interface Counters
• Interface Traffic
• Inventory
• Multi-Chart
• RRD
• WAN Traffic
• WAN Service
• Multi-Site
• Routing
• Security
• Support

Help : Queries : Find Multi

The form is accessed from the Query>Other>Find Multi menu. Find-multi queries are made using the URL /its/query/FindMulti. This query is used to identify switch ports with multiple hosts attached. Network security can be compromised if users attach unauthorised switches and routers to the network.

An unauthorized switch can be identified when multiple MAC addresses are seen on a port. An unauthorized router can be identified by multiple IP addresses appearing on a port. In the case of a router running NAT (Network Address Translation) detection required a different approach (see Detecting unauthorized NAT devices on the InMon support Discussion Board).

The following arguments are recognized:

• resultFormat

The following result formats are recognized:

• csv Returns a plain text table of results with each field separated by a comma.
• html Returns a formatted html table of results.
• debug Returns an html table containing the argument list, as well as a separate result table. Also provides a means of viewing error messages relating to improperly constructed queries.