NetSleuth Adept at Mapping, Device Discovery

By Cameron Sturdevant  |  Posted 2001-02-05 Print this article Print

Gensym corp.'s newly minted NetSleuth network discovery and monitoring tool will tempt IT managers with its detailed port-level network mapping, expanded device-discovery skills and refined integration with Hewlett-Packard Co.'s OpenView Network Node Mana

Gensym corp.s newly minted NetSleuth network discovery and monitoring tool will tempt IT managers with its detailed port-level network mapping, expanded device-discovery skills and refined integration with Hewlett-Packard Co.s OpenView Network Node Manager.

However, those who want to pinpoint the causes of network problems are still better off with such products as System Management Arts Inc.s InCharge, even though that product is much more expensive and harder to install and set up than NetSleuth.

For example, in eWeek Labs tests, we found it easy to use NetSleuths simple root-cause analysis wizard to set up rules that uncovered a downed router interface as the source of network connectivity problems. However, it was much harder to use NetSleuth to diagnose problems caused by traffic congestion or a flapping interface.

The $1,995 NetSleuth 1.1, which shipped last month, runs on Windows NT 4.0 (our main test platform) as well as Solaris 8. Windows 2000 is not yet supported.

Get to work

Most network managers needing to keep tabs on various network infrastructure devices will find the product immediately useful because of its quick network discovery ability. This is despite NetSleuths plodding Java-based user interface, which kept us waiting for information at every turn. During tests, the topology discovery engine identified all the equipment in our test network, including some dated NICs and switches, but there is no way to add devices to its identification database. Fortunately, the database is comprehensive.

Managers will find NetSleuth most useful for mapping networks that theyve inherited rather than built. In this regard, NetSleuth nicely complements OpenView NNM, which is saddled with a slow and cumbersome network discovery utility. We could finely control the rate of discovery and the types of devices included in the search.

We started the network discovery process by seeding NetSleuth with the IP address of a central router, and it found all the devices on the network.

Interestingly, NetSleuth—unlike most other network discovery tools—does not ping-sweep the network looking for unknown devices. Company officials would say only that the product uses a proprietary discovery method. We carefully monitored our network during the discovery process and found little additional traffic, so whatever its method, we can say that it likely wont noticeably dampen overall network performance.

NetSleuth is a surprisingly full-featured network management utility that should benefit managers long term. We used its SNMP-based Management Information Base browser to extract troubleshooting information from network devices.

In addition, NetSleuth has an event notification manager that made it easy to spot network problems. We were somewhat disappointed to see that NetSleuth does not support VPNs (virtual private networks); thus, managers of remote offices that are connected via this technology will not be able to glean availability data from the product.

Although the feature is not new in this version, the product does a good job of mapping network topologies and device relationships. After we ran its discovery tool, NetSleuth correctly diagrammed our network and could display a map showing connectivity. For instances when NetSleuth is unable to identify connectivity, a drawing utility is provided that includes all the standard logical network connections.

Cameron Sturdevant Cameron Sturdevant is the executive editor of Enterprise Networking Planet. Prior to ENP, Cameron was technical analyst at PCWeek Labs, starting in 1997. Cameron finished up as the eWEEK Labs Technical Director in 2012. Before his extensive labs tenure Cameron paid his IT dues working in technical support and sales engineering at a software publishing firm . Cameron also spent two years with a database development firm, integrating applications with mainframe legacy programs. Cameron's areas of expertise include virtual and physical IT infrastructure, cloud computing, enterprise networking and mobility. In addition to reviews, Cameron has covered monolithic enterprise management systems throughout their lifecycles, providing the eWEEK reader with all-important history and context. Cameron takes special care in cultivating his IT manager contacts, to ensure that his analysis is grounded in real-world concern. Follow Cameron on Twitter at csturdevant, or reach him by email at

Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel