2010-03-24 14:09:09 +01:00
#!/usr/bin/perl
###############################################################################
# Pandora FMS General Management Tool
###############################################################################
# Copyright (c) 2010 Artica Soluciones Tecnologicas S.L
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License version 2
###############################################################################
# Includes list
use strict ;
use Time::Local ; # DateTime basic manipulation
use DBI ; # DB interface with MySQL
2010-05-19 Ramon Novoa <rnovoa@artica.es>
* lib/PandoraFMS/SNMPServer.pm, lib/PandoraFMS/Config.pm,
lib/PandoraFMS/Server.pm, lib/PandoraFMS/NetworkServer.pm,
lib/PandoraFMS/GIS.pm, lib/PandoraFMS/WMIServer.pm,
lib/PandoraFMS/PluginServer.pm, lib/PandoraFMS/ProducerConsumerServer.pm,
lib/PandoraFMS/PredictionServer.pm, lib/PandoraFMS/Core.pm,
lib/PandoraFMS/ReconServer.pm, lib/PandoraFMS/DataServer.pm,
bin/pandora_server, util/pandora_db.pl, util/gpx2pandora_agent_data.pl,
util/pandora_manage.pl, util/pandora_dbstress.pl: Added the default library path
used by RPM and DEB packages.
git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@2755 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2010-05-19 18:59:00 +02:00
use POSIX qw( strftime ) ;
2010-05-27 18:24:52 +02:00
use POSIX ;
2010-09-03 12:59:43 +02:00
use HTML::Entities ; # Encode or decode strings with HTML entities
2010-05-19 Ramon Novoa <rnovoa@artica.es>
* lib/PandoraFMS/SNMPServer.pm, lib/PandoraFMS/Config.pm,
lib/PandoraFMS/Server.pm, lib/PandoraFMS/NetworkServer.pm,
lib/PandoraFMS/GIS.pm, lib/PandoraFMS/WMIServer.pm,
lib/PandoraFMS/PluginServer.pm, lib/PandoraFMS/ProducerConsumerServer.pm,
lib/PandoraFMS/PredictionServer.pm, lib/PandoraFMS/Core.pm,
lib/PandoraFMS/ReconServer.pm, lib/PandoraFMS/DataServer.pm,
bin/pandora_server, util/pandora_db.pl, util/gpx2pandora_agent_data.pl,
util/pandora_manage.pl, util/pandora_dbstress.pl: Added the default library path
used by RPM and DEB packages.
git-svn-id: https://svn.code.sf.net/p/pandora/code/trunk@2755 c3f86ba8-e40f-0410-aaad-9ba5e7f4b01f
2010-05-19 18:59:00 +02:00
# Default lib dir for RPM and DEB packages
use lib '/usr/lib/perl5' ;
2010-03-24 14:09:09 +01:00
use PandoraFMS::Tools ;
use PandoraFMS::DB ;
2010-05-27 18:24:52 +02:00
use PandoraFMS::Core ;
use PandoraFMS::Config ;
2010-03-24 14:09:09 +01:00
# version: define current version
2010-05-19 15:40:21 +02:00
my $ version = "3.1 PS100519" ;
2010-03-24 14:09:09 +01:00
2010-05-27 18:24:52 +02:00
# Parameter
my $ param ;
# Initialize MD5 variables
md5_init ( ) ;
2010-03-24 14:09:09 +01:00
# Pandora server configuration
my % conf ;
# FLUSH in each IO
$| = 0 ;
# Init
2010-06-09 12:04:02 +02:00
pandora_manage_init ( \ % conf ) ;
2010-03-24 14:09:09 +01:00
# Read config file
pandora_load_config ( \ % conf ) ;
# Load enterprise module
if ( enterprise_load ( \ % conf ) == 0 ) {
print "[*] Pandora FMS Enterprise module not available.\n\n" ;
} else {
print "[*] Pandora FMS Enterprise module loaded.\n\n" ;
}
# Connect to the DB
my $ dbh = db_connect ( 'mysql' , $ conf { 'dbname' } , $ conf { 'dbhost' } , '3306' , $ conf { 'dbuser' } , $ conf { 'dbpass' } ) ;
my $ history_dbh = ( $ conf { '_history_db_enabled' } eq '1' ) ? db_connect ( 'mysql' , $ conf { '_history_db_name' } ,
$ conf { '_history_db_host' } , '3306' , $ conf { '_history_db_user' } , $ conf { '_history_db_pass' } ) : undef ;
# Main
pandora_manage_main ( \ % conf , $ dbh , $ history_dbh ) ;
# Cleanup and exit
db_disconnect ( $ history_dbh ) if defined ( $ history_dbh ) ;
db_disconnect ( $ dbh ) ;
exit ;
2010-05-27 18:24:52 +02:00
###############################################################################
###############################################################################
2010-05-31 18:04:00 +02:00
# GENERAL FUNCTIONS
2010-05-27 18:24:52 +02:00
###############################################################################
###############################################################################
2010-03-24 14:09:09 +01:00
###############################################################################
2010-05-31 13:38:29 +02:00
# Disable alert system globally
2010-03-24 14:09:09 +01:00
###############################################################################
2010-05-31 13:38:29 +02:00
sub pandora_disable_alerts ($$) {
my ( $ conf , $ dbh ) = @ _ ;
2010-03-24 14:09:09 +01:00
# This works by disabling alerts in each defined group
# If you have previously a group with alert disabled, and you disable
# alerts globally, when enabled it again, it will enabled also !
2010-05-31 13:38:29 +02:00
db_do ( $ dbh , "UPDATE tgrupo SET disabled = 1" ) ;
exit ;
}
###############################################################################
# Enable alert system globally
###############################################################################
sub pandora_enable_alerts ($$) {
my ( $ conf , $ dbh ) = @ _ ;
db_do ( $ dbh , "UPDATE tgrupo SET disabled = 0" ) ;
2010-03-24 14:09:09 +01:00
exit ;
}
###############################################################################
# Disable enterprise ACL
###############################################################################
2010-05-31 13:38:29 +02:00
sub pandora_disable_eacl ($$) {
my ( $ conf , $ dbh ) = @ _ ;
db_do ( $ dbh , "UPDATE tconfig SET `value` ='0' WHERE `token` = 'acl_enterprise'" ) ;
exit ;
}
###############################################################################
# Enable enterprise ACL
###############################################################################
sub pandora_enable_eacl ($$) {
my ( $ conf , $ dbh ) = @ _ ;
2010-03-24 14:09:09 +01:00
2010-05-31 13:38:29 +02:00
db_do ( $ dbh , "UPDATE tconfig SET `value` ='1' WHERE `token` = 'acl_enterprise'" ) ;
2010-03-24 14:09:09 +01:00
exit ;
}
2010-05-27 18:24:52 +02:00
###############################################################################
2010-05-19 15:40:21 +02:00
# Disable a entire group
###############################################################################
2010-05-31 13:38:29 +02:00
sub pandora_disable_group ($$$) {
my ( $ conf , $ dbh , $ group ) = @ _ ;
2010-05-19 15:40:21 +02:00
2010-05-31 13:38:29 +02:00
if ( $ group == 0 ) {
2010-05-19 15:40:21 +02:00
db_do ( $ dbh , "UPDATE tagente SET disabled = 1" ) ;
}
else {
db_do ( $ dbh , "UPDATE tagente SET disabled = 1 WHERE id_grupo = $group" ) ;
}
2010-05-31 13:38:29 +02:00
exit ;
}
###############################################################################
# Enable a entire group
###############################################################################
sub pandora_enable_group ($$$) {
my ( $ conf , $ dbh , $ group ) = @ _ ;
if ( $ group == 0 ) {
db_do ( $ dbh , "UPDATE tagente SET disabled = 0" ) ;
}
else {
db_do ( $ dbh , "UPDATE tagente SET disabled = 0 WHERE id_grupo = $group" ) ;
}
2010-05-19 15:40:21 +02:00
exit ;
}
2010-03-24 14:09:09 +01:00
##############################################################################
# Init screen
##############################################################################
2010-06-09 12:04:02 +02:00
sub pandora_manage_init ($) {
2010-05-27 18:24:52 +02:00
my $ conf = shift ;
$ conf - > { "verbosity" } = 0 ; # Verbose 1 by default
$ conf - > { "daemon" } = 0 ; # Daemon 0 by default
$ conf - > { 'PID' } = "" ; # PID file not exist by default
$ conf - > { "quiet" } = 0 ; # Daemon 0 by default
2010-03-24 14:09:09 +01:00
print "\nPandora FMS Manage tool $version Copyright (c) 2010 Artica ST\n" ;
print "This program is Free Software, licensed under the terms of GPL License v2\n" ;
print "You can download latest versions and documentation at http://www.pandorafms.org\n\n" ;
# Load config file from command line
help_screen ( ) if ( $# ARGV < 0 ) ;
2010-05-19 15:40:21 +02:00
2010-05-27 18:24:52 +02:00
$ conf - > { 'pandora_path' } = $ ARGV [ 0 ] ;
2010-05-31 18:04:00 +02:00
help_screen ( ) if ( $ conf - > { 'pandora_path' } =~ m/--*h\w*\z/i ) ;
2010-05-27 18:24:52 +02:00
}
##########################################################################
## Delete a module given its id.
##########################################################################
sub pandora_delete_module ($$) {
my ( $ dbh , $ module_id ) = @ _ ;
2010-09-21 17:20:00 +02:00
# Delete Graphs, layouts & reports
db_do ( $ dbh , 'DELETE FROM tgraph_source WHERE id_agent_module = ?' , $ module_id ) ;
db_do ( $ dbh , 'DELETE FROM tlayout_data WHERE id_agente_modulo = ?' , $ module_id ) ;
db_do ( $ dbh , 'DELETE FROM treport_content WHERE id_agent_module = ?' , $ module_id ) ;
2010-05-27 18:24:52 +02:00
# Delete the module state
db_do ( $ dbh , 'DELETE FROM tagente_estado WHERE id_agente_modulo = ?' , $ module_id ) ;
# Delete templates asociated to the module
db_do ( $ dbh , 'DELETE FROM talert_template_modules WHERE id_agent_module = ?' , $ module_id ) ;
2010-09-21 17:20:00 +02:00
# Set pending delete the module
db_do ( $ dbh , 'UPDATE tagente_modulo SET disabled = 1, delete_pending = 1 WHERE id_agente_modulo = ?' , $ module_id ) ;
2010-05-27 18:24:52 +02:00
}
##########################################################################
## Delete an agent given its id.
##########################################################################
2010-09-21 17:20:00 +02:00
sub pandora_delete_agent ($$$) {
my ( $ dbh , $ agent_id , $ conf ) = @ _ ;
my $ agent_name = get_agent_name ( $ dbh , $ agent_id ) ;
# Delete from all their policies
enterprise_hook ( 'pandora_delete_agent_from_policies' , [ $ agent_id , $ dbh ] ) ;
2010-05-27 18:24:52 +02:00
# Delete the agent
db_do ( $ dbh , 'DELETE FROM tagente WHERE id_agente = ?' , $ agent_id ) ;
# Delete agent access data
db_do ( $ dbh , 'DELETE FROM tagent_access WHERE id_agent = ?' , $ agent_id ) ;
# Delete addresses
db_do ( $ dbh , 'DELETE FROM taddress_agent WHERE id_ag = ?' , $ agent_id ) ;
my @ modules = get_db_rows ( $ dbh , 'SELECT * FROM tagente_modulo WHERE id_agente = ?' , $ agent_id ) ;
2010-09-21 17:20:00 +02:00
# Delete the conf files
if ( - e $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ) {
unlink ( $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ) ;
}
if ( - e $ conf - > { incomingdir } . '/md5/' . md5 ( $ agent_name ) . '.md5' ) {
unlink ( $ conf - > { incomingdir } . '/md5/' . md5 ( $ agent_name ) . '.md5' ) ;
}
2010-05-27 18:24:52 +02:00
foreach my $ module ( @ modules ) {
pandora_delete_module ( $ dbh , $ module - > { 'id_agente_modulo' } ) ;
}
}
##########################################################################
## Create a template module.
##########################################################################
2010-09-24 13:09:44 +02:00
sub pandora_create_template_module ($$$$) {
my ( $ pa_config , $ id_agent_module , $ id_alert_template , $ dbh ) = @ _ ;
my $ module_name = get_module_name ( $ dbh , $ id_agent_module ) ;
logger ( $ pa_config , "Creating alert of template '$id_alert_template' on agent module '$module_name'." , 10 ) ;
$ dbh - > do ( "INSERT INTO talert_template_modules (`id_agent_module`, `id_alert_template`) VALUES ($id_agent_module, $id_alert_template)" ) ;
return $ dbh - > { 'mysql_insertid' } ;
2010-05-27 18:24:52 +02:00
}
##########################################################################
## Delete a template module.
##########################################################################
sub pandora_delete_template_module ($$) {
my ( $ dbh , $ template_module_id ) = @ _ ;
# Delete the template module
db_do ( $ dbh , 'DELETE FROM talert_template_modules WHERE id = ?' , $ template_module_id ) ;
#
db_do ( $ dbh , 'DELETE FROM talert_template_module_actions WHERE id_alert_template_module = ?' , $ template_module_id ) ;
}
##########################################################################
## Asociate a module to a template.
##########################################################################
sub pandora_delete_template_module_action ($$$) {
my ( $ dbh , $ module_id , $ template_id , $ action_id ) = @ _ ;
my $ template_module_id = get_template_module_id ( $ dbh , $ module_id , $ template_id ) ;
return - 1 if ( $ template_module_id == - 1 ) ;
return db_do ( $ dbh , 'DELETE FROM talert_template_module_actions WHERE id_alert_template_module = ? AND id_alert_action = ?' , $ template_module_id , $ action_id ) ;
}
##########################################################################
## Create a user.
##########################################################################
sub pandora_create_user ($$$$$) {
my ( $ dbh , $ name , $ password , $ is_admin , $ comments ) = @ _ ;
return db_insert ( $ dbh , ' INSERT INTO tusuario ( id_user , fullname , password , comments , is_admin )
VALUES ( ? , ? , ? , ? , ? ) ' , $ name , $ name , $ password , $ comments , $ is_admin ) ;
}
##########################################################################
## Delete a user.
##########################################################################
sub pandora_delete_user ($$) {
my ( $ dbh , $ name ) = @ _ ;
# Delete user profiles
db_do ( $ dbh , 'DELETE FROM tusuario_perfil WHERE id_usuario = ?' , $ name ) ;
# Delete the user
my $ return = db_do ( $ dbh , 'DELETE FROM tusuario WHERE id_user = ?' , $ name ) ;
if ( $ return eq '0E0' ) {
return - 1 ;
}
else {
return 0 ;
}
}
##########################################################################
## Asociate a module to a template.
##########################################################################
2010-09-24 13:09:44 +02:00
sub pandora_create_template_module_action ($$$) {
my ( $ pa_config , $ parameters , $ dbh ) = @ _ ;
logger ( $ pa_config , "Creating module alert action to alert '$parameters->{'id_alert_template_module'}'." , 10 ) ;
my $ action_id = db_process_insert ( $ dbh , 'talert_template_module_actions' , $ parameters ) ;
return $ action_id ;
2010-05-27 18:24:52 +02:00
}
##########################################################################
## Assign a profile to the given user/group.
##########################################################################
sub pandora_create_user_profile ($$$$) {
my ( $ dbh , $ user_id , $ profile_id , $ group_id ) = @ _ ;
return db_insert ( $ dbh , 'INSERT INTO tusuario_perfil (id_usuario, id_perfil, id_grupo) VALUES (?, ?, ?)' , $ user_id , $ profile_id , $ group_id ) ;
}
##########################################################################
## Delete a profile from the given user/group.
##########################################################################
sub pandora_delete_user_profile ($$$$) {
my ( $ dbh , $ user_id , $ profile_id , $ group_id ) = @ _ ;
return db_do ( $ dbh , 'DELETE FROM tusuario_perfil WHERE id_usuario=? AND id_perfil=? AND id_grupo=?' , $ user_id , $ profile_id , $ group_id ) ;
}
2010-09-03 12:59:43 +02:00
##########################################################################
## Delete all the data of module, agent's modules or group's agent's modules
##########################################################################
sub pandora_delete_data ($$$) {
my ( $ dbh , $ type , $ id ) = @ _ ;
if ( $ type eq 'group' ) {
my @ delete_agents = get_db_rows ( $ dbh , 'SELECT id_agente FROM tagente WHERE id_grupo = ?' , $ id ) ;
foreach my $ agent ( @ delete_agents ) {
my @ delete_modules = get_db_rows ( $ dbh , 'SELECT id_agente_modulo FROM tagente_modulo WHERE id_agente = ?' , $ agent - > { 'id_agente' } ) ;
foreach my $ module ( @ delete_modules ) {
pandora_delete_module_data ( $ dbh , $ module - > { 'id_agente_modulo' } ) ;
}
}
}
elsif ( $ type eq 'agent' ) {
my @ delete_modules = get_db_rows ( $ dbh , 'SELECT id_agente_modulo FROM tagente_modulo WHERE id_agente = ?' , $ id ) ;
foreach my $ module ( @ delete_modules ) {
pandora_delete_module_data ( $ dbh , $ module - > { 'id_agente_modulo' } ) ;
}
}
elsif ( $ type eq 'module' ) {
pandora_delete_module_data ( $ dbh , $ id ) ;
}
else {
return 0 ;
}
}
##########################################################################
## Delete all the data of module
##########################################################################
sub pandora_delete_module_data ($$) {
my ( $ dbh , $ id_module ) = @ _ ;
my $ buffer = 1000 ;
while ( 1 ) {
my $ nd = get_db_value ( $ dbh , 'SELECT count(id_agente_modulo) FROM tagente_datos_string WHERE id_agente_modulo=?' , $ id_module ) ;
my $ ndinc = get_db_value ( $ dbh , 'SELECT count(id_agente_modulo) FROM tagente_datos_string WHERE id_agente_modulo=?' , $ id_module ) ;
my $ ndlog4x = get_db_value ( $ dbh , 'SELECT count(id_agente_modulo) FROM tagente_datos_string WHERE id_agente_modulo=?' , $ id_module ) ;
my $ ndstring = get_db_value ( $ dbh , 'SELECT count(id_agente_modulo) FROM tagente_datos_string WHERE id_agente_modulo=?' , $ id_module ) ;
my $ ntot = $ nd + $ ndinc + $ ndlog4x + $ ndstring ;
if ( $ ntot == 0 ) {
last ;
}
if ( $ nd > 0 ) {
db_do ( $ dbh , 'DELETE FROM tagente_datos WHERE id_agente_modulo=? LIMIT ?' , $ id_module , $ buffer ) ;
}
if ( $ ndinc > 0 ) {
db_do ( $ dbh , 'DELETE FROM tagente_datos_inc WHERE id_agente_modulo=? LIMIT ?' , $ id_module , $ buffer ) ;
}
if ( $ ndlog4x > 0 ) {
db_do ( $ dbh , 'DELETE FROM tagente_datos_log4x WHERE id_agente_modulo=? LIMIT ?' , $ id_module , $ buffer ) ;
}
if ( $ ndstring > 0 ) {
db_do ( $ dbh , 'DELETE FROM tagente_datos_string WHERE id_agente_modulo=? LIMIT ?' , $ id_module , $ buffer ) ;
}
}
return 1 ;
}
2010-09-20 13:06:37 +02:00
2010-05-27 18:24:52 +02:00
##########################################################################
## Create a network module
##########################################################################
2010-09-24 13:09:44 +02:00
sub pandora_create_network_module ($$$) {
my ( $ pa_config , $ parameters , $ dbh ) = @ _ ;
logger ( $ pa_config , "Creating module '$parameters->{'name'}' for agent ID $parameters->{'id_agente'}." , 10 ) ;
my $ module_id = db_process_insert ( $ dbh , 'tagente_modulo' , $ parameters ) ;
db_do ( $ dbh , 'INSERT INTO tagente_estado (`id_agente_modulo`, `id_agente`, `last_try`) VALUES (?, ?, \'0000-00-00 00:00:00\')' , $ module_id , $ parameters - > { 'id_agente' } ) ;
2010-05-27 18:24:52 +02:00
return $ module_id ;
}
##########################################################################
# Validate event.
# This validates all events pending to ACK for the same id_agent_module
##########################################################################
sub pandora_validate_event_filter ($$$$$$$$$) {
my ( $ pa_config , $ id_agentmodule , $ id_agent , $ timestamp_min , $ timestamp_max , $ id_user , $ id_alert_agent_module , $ criticity , $ dbh ) = @ _ ;
my $ filter = '' ;
if ( $ id_agentmodule ne '' ) {
$ filter . = " AND id_agentmodule = $id_agentmodule" ;
}
if ( $ id_agent ne '' ) {
$ filter . = " AND id_agente = $id_agent" ;
}
if ( $ timestamp_min ne '' ) {
$ filter . = " AND timestamp >= '$timestamp_min'" ;
}
if ( $ timestamp_max ne '' ) {
$ filter . = " AND timestamp <= '$timestamp_max'" ;
}
if ( $ id_user ne '' ) {
$ filter . = " AND id_usuario = '$id_user'" ;
}
if ( $ id_alert_agent_module ne '' ) {
$ filter . = " AND id_alert_am = $id_alert_agent_module" ;
}
if ( $ criticity ne '' ) {
$ filter . = " AND criticity = $criticity" ;
}
logger ( $ pa_config , "Validating events" , 10 ) ;
db_do ( $ dbh , "UPDATE tevento SET estado = 1 WHERE estado = 0" . $ filter ) ;
}
###############################################################################
###############################################################################
# PRINT HELP AND CHECK ERRORS FUNCTIONS
###############################################################################
###############################################################################
2010-03-24 14:09:09 +01:00
2010-05-27 18:24:52 +02:00
###############################################################################
# Print a parameter error and exit the program.
###############################################################################
sub param_error ($$) {
print ( STDERR "[ERROR] Parameters error: $_[1] received | $_[0] necessary.\n\n" ) ;
help_screen ( ) ;
exit 1 ;
}
###############################################################################
# Print a 'not exists' error and exit the program.
###############################################################################
sub notexists_error ($$) {
print ( STDERR "[ERROR] Error: The $_[0] '$_[1]' not exists.\n\n" ) ;
exit 1 ;
}
###############################################################################
# Check the return of 'get id' and call the error if its equal to -1.
###############################################################################
sub exist_check ($$$) {
if ( $ _ [ 0 ] == - 1 ) {
notexists_error ( $ _ [ 1 ] , $ _ [ 2 ] ) ;
}
}
###############################################################################
# Check the parameters.
# Param 0: # of received parameters
# Param 1: # of necessary parameters
# Param 2: # of optional parameters
###############################################################################
sub param_check ($$;$) {
my ( $ ltotal , $ lneed , $ lopt ) = @ _ ;
$ ltotal = $ ltotal - 1 ;
if ( ! defined ( $ lopt ) ) {
$ lopt = 0 ;
}
if ( $ ltotal < $ lneed - $ lopt || $ ltotal > $ lneed ) {
if ( $ lopt == 0 ) {
param_error ( $ lneed , $ ltotal ) ;
}
else {
param_error ( ( $ lneed - $ lopt ) . "-" . $ lneed , $ ltotal ) ;
}
}
2010-03-24 14:09:09 +01:00
}
2010-05-27 18:24:52 +02:00
##############################################################################
# Print a help line.
##############################################################################
sub help_screen_line ($$$) {
my ( $ option , $ parameters , $ help ) = @ _ ;
print "\t$option $parameters\t$help.\n" unless ( $ param ne '' && $ param ne $ option ) ;
}
2010-03-24 14:09:09 +01:00
##############################################################################
# Print a help screen and exit.
##############################################################################
sub help_screen {
2010-05-27 18:24:52 +02:00
print "Usage: $0 <path to pandora_server.conf> [options] \n\n" unless $ param ne '' ;
print "Available options:\n\n" unless $ param ne '' ;
print "Available options for $param:\n\n" unless $ param eq '' ;
help_screen_line ( '--disable_alerts' , '' , 'Disable alerts in all groups' ) ;
help_screen_line ( '--enable_alerts' , '' , 'Enable alerts in all groups' ) ;
help_screen_line ( '--disable_eacl' , '' , 'Disable enterprise ACL system' ) ;
help_screen_line ( '--enable_eacl' , '' , 'Enable enterprise ACL system' ) ;
2010-05-31 13:38:29 +02:00
help_screen_line ( '--disable_group' , '<group_name>' , 'Disable agents from an entire group' ) ;
help_screen_line ( '--enable_group' , '<group_name>' , 'Enable agents from an entire group' ) ;
2010-05-27 18:24:52 +02:00
help_screen_line ( '--create_agent' , '<agent_name> <operating_system> <group> <server_name> [<address> <description> <interval>]' , 'Create agent' ) ;
help_screen_line ( '--delete_agent' , '<agent_name>' , 'Delete agent' ) ;
2010-09-21 17:20:00 +02:00
help_screen_line ( '--create_module' , '<module_name> <module_type> <agent_name> <module_address> [<module_port> <description> <min> <max> <post_process> <interval> <warning_min> <warning_max> <critical_min> <critical_max> <history_data> <definition_file>]' , 'Add module to agent' ) ;
help_screen_line ( '--delete_module' , 'Delete module from agent' , '<module_name> <agent_name>' ) ;
2010-05-27 18:24:52 +02:00
help_screen_line ( '--create_template_module' , '<template_name> <module_name> <agent_name>' , 'Add alert template to module' ) ;
help_screen_line ( '--delete_template_module' , '<template_name> <module_name> <agent_name>' , 'Delete alert template from module' ) ;
help_screen_line ( '--create_template_action' , '<action_name> <template_name> <module_name> <agent_name> [<fires_min> <fires_max>]' , 'Add alert action to module-template' ) ;
help_screen_line ( '--delete_template_action' , '<action_name> <template_name> <module_name> <agent_name>' , 'Delete alert action from module-template' ) ;
help_screen_line ( '--data_module' , '<server_name> <agent_name> <module_name> <module_type> [<datetime>]' , 'Insert data to module' ) ;
help_screen_line ( '--create_user' , '<user_name> <user_password> <is_admin> [<comments>]' , 'Create user' ) ;
help_screen_line ( '--delete_user' , '<user_name>' , 'Delete user' ) ;
2010-05-31 18:04:00 +02:00
help_screen_line ( '--create_profile' , '<user_name> <profile_name> <group_name>' , 'Add perfil to user' ) ;
help_screen_line ( '--delete_profile' , '<user_name> <profile_name> <group_name>' , 'Delete perfil from user' ) ;
2010-05-27 18:24:52 +02:00
help_screen_line ( '--create_event' , '<event> <event_type> <agent_name> <module_name> <group_name> [<event_status> <severity> <template_name>]' , 'Add event' ) ;
help_screen_line ( '--validate_event' , '<agent_name> <module_name> <datetime_min> <datetime_max> <user_name> <criticity> <template_name>' , 'Validate events' ) ;
2010-07-14 19:03:14 +02:00
help_screen_line ( '--create_incident' , '<title> <description> <origin> <status> <priority 0 for Informative, 1 for Low, 2 for Medium, 3 for Serious, 4 for Very serious or 5 for Maintenance> <group> [<owner>]' , 'Create incidents' ) ;
2010-09-03 12:59:43 +02:00
help_screen_line ( '--delete_data' , '-m <module_name> <agent_name> | -a <agent_name> | -g <group_name>' , 'Delete historic data of a module, the modules of an agent or the modules of the agents of a group' ) ;
2010-09-20 17:25:15 +02:00
help_screen_line ( '--delete_not_policy_modules' , '' , 'Delete all modules without policy from configuration file' ) ;
2010-09-24 13:57:14 +02:00
help_screen_line ( '--apply_policy' , '<policy_name>' , 'Force apply a policy' ) ;
2010-05-27 18:24:52 +02:00
print "\n" ;
2010-03-24 14:09:09 +01:00
exit ;
}
2010-05-27 18:24:52 +02:00
###############################################################################
###############################################################################
# MAIN
###############################################################################
###############################################################################
2010-03-24 14:09:09 +01:00
sub pandora_manage_main ($$$) {
my ( $ conf , $ dbh , $ history_dbh ) = @ _ ;
2010-05-19 15:40:21 +02:00
my @ args = @ ARGV ;
my $ ltotal = $# args ;
my $ ax ;
# Has read setup file ok ?
if ( $ ltotal == 0 ) {
2010-05-27 18:24:52 +02:00
print "[ERROR] No valid arguments\n\n" ;
2010-05-19 15:40:21 +02:00
help_screen ( ) ;
exit ;
}
2010-05-27 18:24:52 +02:00
else {
$ param = $ args [ 1 ] ;
2010-05-19 15:40:21 +02:00
2010-03-24 14:09:09 +01:00
# help!
2010-05-31 18:04:00 +02:00
if ( $ param =~ m/--*h\w*\z/i ) {
$ param = '' ;
help_screen ( ) ;
exit ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--disable_alerts' ) {
2010-05-31 13:38:29 +02:00
print "[INFO] Disabling all alerts \n\n" ;
pandora_disable_alerts ( $ conf , $ dbh ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--enable_alerts' ) {
2010-05-31 13:38:29 +02:00
print "[INFO] Enabling all alerts \n\n" ;
pandora_enable_alerts ( $ conf , $ dbh ) ;
2010-03-24 14:09:09 +01:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--disable_eacl' ) {
2010-05-31 13:38:29 +02:00
print "[INFO] Disabling Enterprise ACL system (system wide)\n\n" ;
pandora_disable_eacl ( $ conf , $ dbh ) ;
2010-03-24 14:09:09 +01:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--enable_eacl' ) {
2010-05-31 13:38:29 +02:00
print "[INFO] Enabling Enterprise ACL system (system wide)\n\n" ;
pandora_enable_eacl ( $ conf , $ dbh ) ;
2010-03-24 14:09:09 +01:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--disable_group' ) {
2010-05-31 13:38:29 +02:00
param_check ( $ ltotal , 1 ) ;
my $ group_name = @ ARGV [ 2 ] ;
my $ id_group ;
if ( $ group_name eq "All" ) {
2010-05-31 18:04:00 +02:00
print "[INFO] Disabling all groups\n\n" ;
2010-05-31 13:38:29 +02:00
$ id_group = 0 ;
}
else {
$ id_group = get_group_id ( $ dbh , $ args [ 2 ] ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
print "[INFO] Disabling group '$group_name'\n\n" ;
}
pandora_disable_group ( $ conf , $ dbh , $ id_group ) ;
2010-05-19 15:40:21 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--enable_group' ) {
2010-05-31 13:38:29 +02:00
param_check ( $ ltotal , 1 ) ;
my $ group_name = @ ARGV [ 2 ] ;
my $ id_group ;
if ( $ group_name eq "All" ) {
$ id_group = 0 ;
2010-05-31 18:04:00 +02:00
print "[INFO] Enabling all groups\n\n" ;
2010-05-31 13:38:29 +02:00
}
else {
$ id_group = get_group_id ( $ dbh , $ args [ 2 ] ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
print "[INFO] Enabling group '$group_name'\n\n" ;
}
pandora_enable_group ( $ conf , $ dbh , $ id_group ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_agent' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 7 , 3 ) ;
my ( $ agent_name , $ os_name , $ group_name , $ server_name , $ address , $ description , $ interval ) = @ ARGV [ 2 .. 8 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Creating agent '$agent_name'\n\n" ;
2010-05-27 18:24:52 +02:00
$ address = '' unless defined ( $ address ) ;
$ description = '' unless defined ( $ description ) ;
$ interval = 300 unless defined ( $ interval ) ;
my $ id_group = get_group_id ( $ dbh , $ group_name ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
my $ os_id = get_os_id ( $ dbh , $ os_name ) ;
exist_check ( $ id_group , 'operating system' , $ group_name ) ;
2010-07-06 17:06:00 +02:00
pandora_create_agent ( $ conf , $ server_name , $ agent_name , $ address , $ id_group , 0 , $ os_id , $ description , $ interval , $ dbh ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_agent' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 1 ) ;
my $ agent_name = @ ARGV [ 2 ] ;
2010-09-03 12:59:43 +02:00
$ agent_name = decode_entities ( $ agent_name ) ;
2010-05-31 13:38:29 +02:00
print "[INFO] Deleting agent '$agent_name'\n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
2010-09-21 17:20:00 +02:00
pandora_delete_agent ( $ dbh , $ id_agent , $ conf ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_module' ) {
2010-09-21 17:20:00 +02:00
param_check ( $ ltotal , 16 , 12 ) ;
2010-05-27 18:24:52 +02:00
my ( $ module_name , $ module_type , $ agent_name , $ module_address , $ module_port , $ description ,
$ min , $ max , $ post_process , $ interval , $ warning_min , $ warning_max , $ critical_min ,
2010-09-22 09:57:43 +02:00
$ critical_max , $ history_data , $ definition_file ) = @ ARGV [ 2 .. 17 ] ;
my $ module_name_def ;
my $ module_type_def ;
2010-05-27 18:24:52 +02:00
2010-05-31 13:38:29 +02:00
print "[INFO] Adding module '$module_name' to agent '$agent_name'\n\n" ;
2010-05-27 18:24:52 +02:00
2010-09-22 09:57:43 +02:00
# If the module is local, we add it to the conf file
if ( defined ( $ definition_file ) && ( - e $ definition_file ) && ( - e $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ) ) {
open ( FILE , $ definition_file ) ;
my @ file = <FILE> ;
my $ definition = join ( "" , @ file ) ;
close ( FILE ) ;
# If the parameter name or type and the definition file name or type
# dont match will be set the file definitions
open ( FILE , $ definition_file ) ;
while ( <FILE> ) {
chomp ;
my ( $ key , $ val ) = split / / ;
if ( $ key eq 'module_name' ) {
$ module_name_def = $ val ;
}
if ( $ key eq 'module_type' ) {
$ module_type_def = $ val ;
}
}
close ( FILE ) ;
open ( FILE , $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ) ;
my @ file = <FILE> ;
my $ conf_file = join ( "" , @ file ) ;
close ( FILE ) ;
open FILE , "> " . $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ;
print FILE "$conf_file\n$definition" ;
close ( FILE ) ;
2010-09-24 13:09:44 +02:00
enterprise_hook ( 'pandora_update_md5_file' , [ $ conf , $ agent_name ] ) ;
2010-09-22 09:57:43 +02:00
}
2010-09-24 13:09:44 +02:00
if ( defined ( $ definition_file ) && $ module_type ne $ module_type_def ) {
2010-09-22 09:57:43 +02:00
$ module_type = $ module_type_def ;
print "[INFO] The module type has been forced to '$module_type' by the definition file\n\n" ;
}
2010-09-24 13:09:44 +02:00
if ( defined ( $ definition_file ) && $ module_name ne $ module_name_def ) {
2010-09-22 09:57:43 +02:00
$ module_name = $ module_name_def ;
print "[INFO] The module name has been forced to '$module_name' by the definition file\n\n" ;
}
2010-05-27 18:24:52 +02:00
# The get_module_id has wrong name. Change in future
my $ module_type_id = get_module_id ( $ dbh , $ module_type ) ;
exist_check ( $ module_type_id , 'module type' , $ module_type ) ;
my $ agent_id = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ agent_id , 'agent' , $ agent_name ) ;
if ( $ module_type !~ m/.?icmp.?/ ) {
if ( not defined ( $ module_port ) ) {
print "[ERROR] Port error. Agents of type distinct of icmp need port\n\n" ;
exit ;
}
if ( $ module_port > 65535 || $ module_port < 1 ) {
print "[ERROR] Port error. Port must into [1-65535]\n\n" ;
exit ;
}
}
2010-09-24 13:09:44 +02:00
my % parameters ;
2010-05-27 18:24:52 +02:00
2010-09-24 13:09:44 +02:00
% parameters - > { 'id_tipo_modulo' } = $ module_type_id ;
% parameters - > { 'nombre' } = $ module_name ;
% parameters - > { 'id_agente' } = $ agent_id ;
% parameters - > { 'ip_target' } = $ module_address ;
# Optional parameters
% parameters - > { 'min_warning' } = $ warning_min unless ! defined ( $ warning_min ) ;
% parameters - > { 'max_warning' } = $ warning_max unless ! defined ( $ warning_max ) ;
% parameters - > { 'min_critical' } = $ critical_min unless ! defined ( $ critical_min ) ;
% parameters - > { 'max_critical' } = $ critical_max unless ! defined ( $ critical_max ) ;
% parameters - > { 'history_data' } = $ history_data unless ! defined ( $ history_data ) ;
% parameters - > { 'tcp_port' } = $ module_port unless ! defined ( $ module_port ) ;
% parameters - > { 'descripcion' } = $ description unless ! defined ( $ description ) ;
% parameters - > { 'min' } = $ min unless ! defined ( $ min ) ;
% parameters - > { 'max' } = $ max unless ! defined ( $ max ) ;
% parameters - > { 'post_process' } = $ post_process unless ! defined ( $ post_process ) ;
% parameters - > { 'module_interval' } = $ interval unless ! defined ( $ interval ) ;
% parameters - > { 'id_modulo' } = 1 ;
2010-05-27 18:24:52 +02:00
2010-09-24 13:09:44 +02:00
pandora_create_network_module ( $ conf , \ % parameters , $ dbh ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_module' ) {
2010-09-21 17:20:00 +02:00
param_check ( $ ltotal , 2 ) ;
my ( $ module_name , $ agent_name ) = @ ARGV [ 2 .. 3 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Deleting module '$module_name' from agent '$agent_name' \n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ id_module = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ id_module , 'module' , $ module_name ) ;
pandora_delete_module ( $ dbh , $ id_module ) ;
2010-09-20 13:06:37 +02:00
2010-09-21 17:20:00 +02:00
if ( - e $ conf - > { incomingdir } . '/conf/' . md5 ( $ agent_name ) . '.conf' ) {
2010-09-24 13:09:44 +02:00
enterprise_hook ( 'pandora_delete_module_from_conf' , [ $ conf , $ agent_name , $ module_name ] ) ;
2010-09-20 13:06:37 +02:00
}
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_not_policy_modules' ) {
2010-09-20 17:25:15 +02:00
param_check ( $ ltotal , 0 ) ;
my $ incomingdir ;
$ incomingdir = $ conf - > { incomingdir } . '/conf/' ;
# Open the folder
opendir FOLDER , $ incomingdir || die "[ERROR] Opening incoming directory" ;
2010-09-20 16:25:44 +02:00
2010-09-20 17:25:15 +02:00
# Store the list of files
my @ files = readdir ( FOLDER ) ;
my $ file ;
print "[INFO] Deleting modules without policy from conf files \n\n" ;
foreach $ file ( @ files )
{
if ( $ file ne '.' && $ file ne '..' ) {
2010-09-21 17:20:00 +02:00
my $ ret = enterprise_hook ( 'pandora_delete_not_policy_modules' , [ $ incomingdir . $ file ] ) ;
2010-09-20 17:25:15 +02:00
}
}
2010-09-21 17:20:00 +02:00
my @ local_modules_without_policies = get_db_rows ( $ dbh , 'SELECT * FROM tagente_modulo WHERE id_policy_module = 0 AND id_tipo_modulo = 1' ) ;
foreach my $ module ( @ local_modules_without_policies ) {
pandora_delete_module ( $ dbh , $ module - > { 'id_agente_modulo' } ) ;
}
2010-09-20 16:25:44 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_template_module' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 3 ) ;
my ( $ template_name , $ module_name , $ agent_name ) = @ ARGV [ 2 .. 4 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Adding template '$template_name' to module '$module_name' from agent '$agent_name' \n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ module_id = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ module_id , 'module' , $ module_name ) ;
my $ template_id = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ template_id , 'template' , $ template_name ) ;
2010-09-24 13:09:44 +02:00
pandora_create_template_module ( $ conf , $ module_id , $ template_id , $ dbh ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_template_module' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 3 ) ;
my ( $ template_name , $ module_name , $ agent_name ) = @ ARGV [ 2 .. 4 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Delete template '$template_name' from module '$module_name' from agent '$agent_name' \n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ module_id = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ module_id , 'module' , $ module_name ) ;
my $ template_id = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ template_id , 'template' , $ template_name ) ;
my $ template_module_id = get_template_module_id ( $ dbh , $ module_id , $ template_id ) ;
exist_check ( $ template_module_id , "template '$template_name' on module" , $ module_name ) ;
pandora_delete_template_module ( $ dbh , $ template_module_id ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_template_action' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 6 , 2 ) ;
my ( $ action_name , $ template_name , $ module_name , $ agent_name , $ fires_min , $ fires_max ) = @ ARGV [ 2 .. 7 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Adding action '$action_name' to template '$template_name' in module '$module_name' from agent '$agent_name' with $fires_min min. fires and $fires_max max. fires\n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ module_id = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ module_id , 'module' , $ module_name ) ;
my $ template_id = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ template_id , 'template' , $ template_name ) ;
my $ template_module_id = get_template_module_id ( $ dbh , $ module_id , $ template_id ) ;
exist_check ( $ template_module_id , 'template module' , $ template_name ) ;
my $ action_id = get_action_id ( $ dbh , $ action_name ) ;
exist_check ( $ action_id , 'action' , $ action_name ) ;
$ fires_min = 0 unless defined ( $ fires_min ) ;
$ fires_max = 0 unless defined ( $ fires_max ) ;
2010-09-24 13:09:44 +02:00
my % parameters ;
% parameters - > { 'id_alert_template_module' } = $ template_module_id ;
% parameters - > { 'id_alert_action' } = $ action_id ;
% parameters - > { 'fires_min' } = $ fires_min ;
% parameters - > { 'fires_max' } = $ fires_max ;
pandora_create_template_module_action ( $ conf , \ % parameters , $ dbh ) ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_template_action' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 4 ) ;
my ( $ action_name , $ template_name , $ module_name , $ agent_name ) = @ ARGV [ 2 .. 5 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Deleting action '$action_name' from template '$template_name' in module '$module_name' from agent '$agent_name')\n\n" ;
2010-05-27 18:24:52 +02:00
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ module_id = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ module_id , 'module' , $ module_name ) ;
my $ template_id = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ template_id , 'template' , $ template_name ) ;
my $ template_module_id = get_template_module_id ( $ dbh , $ module_id , $ template_id ) ;
exist_check ( $ template_module_id , 'template module' , $ template_name ) ;
my $ action_id = get_action_id ( $ dbh , $ action_name ) ;
exist_check ( $ action_id , 'action' , $ action_name ) ;
pandora_delete_template_module_action ( $ dbh , $ template_module_id , $ action_id ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--data_module' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 5 , 1 ) ;
my ( $ server_name , $ agent_name , $ module_name , $ module_type , $ datetime ) = @ ARGV [ 2 .. 6 ] ;
my $ utimestamp ;
if ( defined ( $ datetime ) ) {
2010-05-31 18:04:00 +02:00
if ( $ datetime !~ /([0-9]{2,4})\-([0-1][0-9])\-([0-3][0-9]) +([0-2][0-9]):([0-5][0-9])/ ) {
2010-05-31 13:38:29 +02:00
print "[ERROR] Invalid datetime $datetime. (Correct format: YYYY-MM-DD HH:mm)\n" ;
2010-05-27 18:24:52 +02:00
exit ;
}
2010-05-31 18:04:00 +02:00
# Add the seconds
$ datetime . = ":00" ;
$ utimestamp = dateTimeToTimestamp ( $ datetime ) ;
2010-05-27 18:24:52 +02:00
}
else {
$ utimestamp = time ( ) ;
}
2010-05-31 18:04:00 +02:00
2010-05-27 18:24:52 +02:00
# The get_module_id has wrong name. Change in future
my $ module_type_id = get_module_id ( $ dbh , $ module_type ) ;
exist_check ( $ module_type_id , 'module type' , $ module_type ) ;
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
# Server_type 0 is dataserver
my $ server_id = get_server_id ( $ dbh , $ server_name , 0 ) ;
exist_check ( $ server_id , 'data server' , $ server_name ) ;
my $ module = get_db_single_row ( $ dbh , 'SELECT * FROM tagente_modulo WHERE id_agente = ? AND id_tipo_modulo = ?' , $ id_agent , $ module_type_id ) ;
2010-05-31 18:04:00 +02:00
if ( not defined ( $ module - > { 'module_interval' } ) ) {
print "[ERROR] No module data finded. \n\n" ;
exit ;
}
2010-05-27 18:24:52 +02:00
my % data = ( 'data' = > 1 ) ;
pandora_process_module ( $ conf , \ % data , '' , $ module , $ module_type , '' , $ utimestamp , $ server_id , $ dbh ) ;
2010-05-31 13:38:29 +02:00
print "[INFO] Inserting data to module '$module_name'\n\n" ;
2010-05-27 18:24:52 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_user' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 4 , 1 ) ;
my ( $ user_name , $ password , $ is_admin , $ comments ) = @ ARGV [ 2 .. 5 ] ;
$ comments = '' unless defined ( $ comments ) ;
2010-05-31 13:38:29 +02:00
print "[INFO] Creating user '$user_name'\n\n" ;
2010-05-27 18:24:52 +02:00
pandora_create_user ( $ dbh , $ user_name , md5 ( $ password ) , $ is_admin , $ comments ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_user' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 1 ) ;
my $ user_name = @ ARGV [ 2 ] ;
2010-05-31 13:38:29 +02:00
print "[INFO] Deleting user '$user_name' \n\n" ;
2010-05-27 18:24:52 +02:00
my $ result = pandora_delete_user ( $ dbh , $ user_name ) ;
exist_check ( $ result , 'user' , $ user_name ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_profile' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 3 ) ;
my ( $ user_name , $ profile_name , $ group_name ) = @ ARGV [ 2 .. 4 ] ;
my $ id_profile = get_profile_id ( $ dbh , $ profile_name ) ;
exist_check ( $ id_profile , 'profile' , $ profile_name ) ;
my $ id_group ;
if ( $ group_name eq "All" ) {
$ id_group = 0 ;
2010-05-31 18:04:00 +02:00
print "[INFO] Adding profile '$profile_name' to all groups for user '$user_name') \n\n" ;
2010-05-27 18:24:52 +02:00
}
else {
$ id_group = get_group_id ( $ dbh , $ group_name ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
2010-05-31 18:04:00 +02:00
print "[INFO] Adding profile '$profile_name' to group '$group_name' for user '$user_name') \n\n" ;
2010-05-27 18:24:52 +02:00
}
pandora_create_user_profile ( $ dbh , $ user_name , $ id_profile , $ id_group ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_profile' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 3 ) ;
my ( $ user_name , $ profile_name , $ group_name ) = @ ARGV [ 2 .. 4 ] ;
my $ id_profile = get_profile_id ( $ dbh , $ profile_name ) ;
exist_check ( $ id_profile , 'profile' , $ profile_name ) ;
my $ id_group ;
if ( $ group_name eq "All" ) {
$ id_group = 0 ;
2010-05-31 18:04:00 +02:00
print "[INFO] Deleting profile '$profile_name' from all groups for user '$user_name') \n\n" ;
2010-05-27 18:24:52 +02:00
}
else {
$ id_group = get_group_id ( $ dbh , $ group_name ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
2010-05-31 18:04:00 +02:00
print "[INFO] Deleting profile '$profile_name' from group '$group_name' for user '$user_name') \n\n" ;
2010-05-27 18:24:52 +02:00
}
pandora_delete_user_profile ( $ dbh , $ user_name , $ id_profile , $ id_group ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_event' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 8 , 3 ) ;
my ( $ event , $ event_type , $ agent_name , $ module_name , $ group_name , $ event_status , $ severity , $ template_name ) = @ ARGV [ 2 .. 9 ] ;
$ event_status = 0 unless defined ( $ event_status ) ;
$ severity = 0 unless defined ( $ severity ) ;
my $ id_group ;
if ( ! defined ( $ group_name ) || $ group_name == "All" ) {
$ id_group = 0 ;
}
else {
$ id_group = get_group_id ( $ dbh , $ group_name ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
}
my $ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
my $ id_agentmodule = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ id_agentmodule , 'module' , $ module_name ) ;
my $ id_alert_agent_module ;
if ( defined ( $ template_name ) ) {
my $ id_template = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ id_template , 'template' , $ template_name ) ;
$ id_alert_agent_module = get_template_module_id ( $ dbh , $ id_agentmodule , $ id_template ) ;
exist_check ( $ id_alert_agent_module , 'template module' , $ template_name ) ;
}
else {
$ id_alert_agent_module = 0 ;
}
2010-05-31 13:38:29 +02:00
print "[INFO] Adding event '$event' for agent '$agent_name' \n\n" ;
2010-05-27 18:24:52 +02:00
pandora_event ( $ conf , $ event , $ id_group , $ id_agent , $ severity ,
$ id_alert_agent_module , $ id_agentmodule , $ event_type , $ event_status , $ dbh ) ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--validate_event' ) {
2010-05-27 18:24:52 +02:00
param_check ( $ ltotal , 7 , 6 ) ;
my ( $ agent_name , $ module_name , $ datetime_min , $ datetime_max , $ user_name , $ criticity , $ template_name ) = @ ARGV [ 2 .. 8 ] ;
my $ id_agent = '' ;
my $ id_agentmodule = '' ;
if ( defined ( $ agent_name ) && $ agent_name ne '' ) {
$ id_agent = get_agent_id ( $ dbh , $ agent_name ) ;
exist_check ( $ id_agent , 'agent' , $ agent_name ) ;
if ( $ module_name ne '' ) {
$ id_agentmodule = get_agent_module_id ( $ dbh , $ module_name , $ id_agent ) ;
exist_check ( $ id_agentmodule , 'module' , $ module_name ) ;
}
}
if ( defined ( $ datetime_min ) && $ datetime_min ne '' ) {
2010-05-31 18:04:00 +02:00
if ( $ datetime_min !~ /([0-9]{2,4})\-([0-1][0-9])\-([0-3][0-9]) +([0-2][0-9]):([0-5][0-9])/ ) {
2010-05-31 13:38:29 +02:00
print "[ERROR] Invalid datetime_min format. (Correct format: YYYY-MM-DD HH:mm)\n" ;
2010-05-27 18:24:52 +02:00
exit ;
}
# Add the seconds
$ datetime_min . = ":00" ;
}
if ( defined ( $ datetime_max ) && $ datetime_max ne '' ) {
2010-05-31 18:04:00 +02:00
if ( $ datetime_max !~ /([0-9]{2,4})\-([0-1][0-9])\-([0-3][0-9]) +([0-2][0-9]):([0-5][0-9])/ ) {
2010-05-31 13:38:29 +02:00
print "[ERROR] Invalid datetime_max $datetime_max. (Correct format: YYYY-MM-DD HH:mm)\n" ;
2010-05-27 18:24:52 +02:00
exit ;
}
# Add the seconds
$ datetime_max . = ":00" ;
}
my $ id_alert_agent_module = '' ;
if ( defined ( $ template_name ) && $ template_name ne '' ) {
my $ id_template = get_template_id ( $ dbh , $ template_name ) ;
exist_check ( $ id_template , 'template' , $ template_name ) ;
$ id_alert_agent_module = get_template_module_id ( $ dbh , $ id_agentmodule , $ id_template ) ;
exist_check ( $ id_alert_agent_module , 'template module' , $ template_name ) ;
}
pandora_validate_event_filter ( $ conf , $ id_agentmodule , $ id_agent , $ datetime_min , $ datetime_max , $ user_name , $ id_alert_agent_module , $ criticity , $ dbh ) ;
2010-05-31 18:04:00 +02:00
print "[INFO] Validating event for agent '$agent_name'\n\n" ;
2010-05-19 15:40:21 +02:00
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--create_incident' ) {
2010-07-14 19:03:14 +02:00
param_check ( $ ltotal , 7 , 1 ) ;
my ( $ title , $ description , $ origin , $ status , $ priority , $ group_name , $ owner ) = @ ARGV [ 2 .. 8 ] ;
my $ id_group = get_group_id ( $ dbh , $ group_name ) ;
exist_check ( $ id_group , 'group' , $ group_name ) ;
pandora_create_incident ( $ conf , $ dbh , $ title , $ description , $ priority , $ status , $ origin , $ id_group , $ owner ) ;
print "[INFO] Creating incident '$title'\n\n" ;
}
2010-09-22 09:57:43 +02:00
elsif ( $ param eq '--delete_data' ) {
2010-09-03 12:59:43 +02:00
param_check ( $ ltotal , 3 , 1 ) ;
my ( $ opt , $ name , $ name2 ) = @ ARGV [ 2 .. 4 ] ;
if ( $ opt eq '-m' || $ opt eq '--m' ) {
# Delete module data
param_check ( $ ltotal , 3 ) unless ( $ name2 ne '' ) ;
my $ id_agent = get_agent_id ( $ dbh , $ name2 ) ;
exist_check ( $ id_agent , 'agent' , $ name2 ) ;
my $ id_module = get_agent_module_id ( $ dbh , $ name , $ id_agent ) ;
exist_check ( $ id_module , 'module' , $ name ) ;
print "DELETING THE DATA OF THE MODULE $name OF THE AGENT $name2\n\n" ;
pandora_delete_data ( $ dbh , 'module' , $ id_module ) ;
}
elsif ( $ opt eq '-a' || $ opt eq '--a' ) {
# Delete agent's modules data
my $ id_agent = get_agent_id ( $ dbh , $ name ) ;
exist_check ( $ id_agent , 'agent' , $ name ) ;
print "DELETING THE DATA OF THE AGENT $name\n\n" ;
pandora_delete_data ( $ dbh , 'module' , $ id_agent ) ;
}
elsif ( $ opt eq '-g' || $ opt eq '--g' ) {
# Delete group's modules data
my $ id_group = get_group_id ( $ dbh , $ name ) ;
exist_check ( $ id_group , 'group' , $ name ) ;
print "DELETING THE DATA OF THE GROUP $name\n\n" ;
pandora_delete_data ( $ dbh , 'group' , $ id_group ) ;
}
else {
print "[ERROR] Invalid parameter '$opt'.\n\n" ;
help_screen ( ) ;
exit ;
}
}
2010-09-24 13:09:44 +02:00
elsif ( $ param eq '--apply_policy' ) {
param_check ( $ ltotal , 1 ) ;
my $ policy_name = @ ARGV [ 2 ] ;
my $ configuration_data = "" ;
my $ policy_id = enterprise_hook ( 'get_policy_id' , [ $ dbh , $ policy_name ] ) ;
# Get the agents
my $ array_pointer_ag = enterprise_hook ( 'get_policy_agents' , [ $ dbh , $ policy_id ] ) ;
if ( ! defined ( $ array_pointer_ag ) ) {
print "[ERROR] This option is not available in OPEN version.\n\n" ;
exit ;
}
print "[INFO] Applying policy '$policy_name'\n\n" ;
foreach my $ agent ( @ { $ array_pointer_ag } ) {
my $ id_agent = $ agent - > { 'id_agent' } ;
my $ agent_name = get_agent_name ( $ dbh , $ id_agent ) ;
# Get the modules
my $ array_pointer_mod = enterprise_hook ( 'get_policy_modules' , [ $ dbh , $ policy_id ] ) ;
if ( ! defined ( $ array_pointer_mod ) ) {
print "[ERROR] This option is not available in OPEN version.\n\n" ;
exit ;
}
foreach my $ module ( @ { $ array_pointer_mod } ) {
# Adapt the fields from tpolicy_modules to tagente_modulos
$ module - > { 'id_agente' } = $ id_agent ;
$ module - > { 'id_policy_module' } = $ module - > { 'id' } ;
delete $ module - > { 'id' } ;
$ module - > { 'descripcion' } = $ module - > { 'description' } ;
delete $ module - > { 'description' } ;
$ module - > { 'nombre' } = $ module - > { 'name' } ;
delete $ module - > { 'name' } ;
$ module - > { 'id_modulo' } = $ module - > { 'id_module' } ;
delete $ module - > { 'id_module' } ;
delete $ module - > { 'id_policy' } ;
#Store the conf data
$ configuration_data . = "\n\n$module->{'configuration_data'}" ;
delete $ module - > { 'configuration_data' } ;
# Create module
my $ id_module = pandora_create_network_module ( $ conf , $ module , $ dbh ) ;
# Get policy alerts and create it on created modules
my $ array_pointer_ale = enterprise_hook ( 'get_policy_module_alerts' , [ $ dbh , $ policy_id , $ module - > { 'id_policy_module' } ] ) ;
foreach my $ alert ( @ { $ array_pointer_ale } ) {
my $ id_alert_template_module = pandora_create_template_module ( $ conf , $ id_module , $ alert - > { 'id_alert_template' } , $ dbh ) ;
# Get policy alert actions and create it on modules created
my $ array_pointer_aleact = enterprise_hook ( 'get_policy_alert_actions' , [ $ dbh , $ alert - > { 'id' } ] ) ;
foreach my $ alert_action ( @ { $ array_pointer_aleact } ) {
delete $ alert_action - > { 'id_policy_alert' } ;
delete $ alert_action - > { 'id' } ;
$ alert_action - > { 'id_alert_template_module' } = $ id_alert_template_module ;
pandora_create_template_module_action ( $ conf , $ alert_action , $ dbh ) ;
}
}
#Add the conf information to the agent conf file
enterprise_hook ( 'pandora_create_policy_conf_info' , [ $ conf , $ policy_name , $ configuration_data , $ agent_name , $ dbh ] ) ;
# Flag applyed the agent
enterprise_hook ( 'pandora_apply_agent_policy' , [ $ policy_id , $ id_agent , $ dbh ] ) ;
}
# Get policy collections and link it on created modules
my $ array_pointer_col = enterprise_hook ( 'get_policy_collections' , [ $ dbh , $ policy_id ] ) ;
my $ collection_data = '' ;
foreach my $ collection ( @ { $ array_pointer_col } ) {
my $ collection_name = enterprise_hook ( 'get_collection_name' , [ $ dbh , $ collection - > { 'id_collection' } ] ) ;
$ collection_data = "\n#file_collection $collection_name\n" ;
$ collection_data . = "\nfile_collection fc_$collection->{'id_collection'}\n\n" ;
}
if ( $ collection_data ne '' ) {
enterprise_hook ( 'pandora_create_collection_conf_info' , [ $ conf , $ policy_name , $ collection_data , $ agent_name , $ dbh ] ) ;
}
}
}
2010-09-20 16:25:44 +02:00
else {
print "[ERROR] Invalid option '$param'.\n\n" ;
$ param = '' ;
help_screen ( ) ;
exit ;
}
2010-03-24 14:09:09 +01:00
}
2010-09-24 13:09:44 +02:00
print "\n[W] Nothing to do. Exiting !\n\n" ;
2010-03-24 14:09:09 +01:00
exit ;
}