package PandoraFMS::SNMPServer; ########################################################################## # Pandora FMS SNMP Console. # Pandora FMS. the Flexible Monitoring System. ########################################################################## # Copyright (c) 2005-2009 Artica Soluciones Tecnologicas S.L # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; version 2 # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ########################################################################## use strict; use warnings; use threads; use threads::shared; use Thread::Semaphore; use Time::Local; use XML::Simple; # Default lib dir for RPM and DEB packages use lib '/usr/lib/perl5'; use PandoraFMS::Tools; use PandoraFMS::DB; use PandoraFMS::Core; use PandoraFMS::Server; # Inherits from PandoraFMS::Server our @ISA = qw(PandoraFMS::Server); ######################################################################################## # SNMP Server class constructor. ######################################################################################## sub new ($$;$) { my ($class, $config, $dbh) = @_; return undef unless $config->{'snmpconsole'} == 1; # Start snmptrapd my $pid_file = '/var/run/'; my $snmptrapd_running = 0; if ( -e $pid_file && open (PIDFILE, $pid_file)) { my $pid = + 0; close PIDFILE; # Check if snmptrapd is running if ($snmptrapd_running = kill (0, $pid)) { logger ($config, "snmptrapd (pid $pid) is already running, attempting to kill it...", 1); print_message ($config, "snmptrapd (pid $pid) is already running, attempting to kill it...", 1); kill (9, $pid); } } if (system ($config->{'snmp_trapd'} . ' -t -On -n -a -Lf ' . $config->{'snmp_logfile'} . ' -p ' . $pid_file . ' -F %4y-%02.2m-%l[**]%02.2h:%02.2j:%02.2k[**]%a[**]%N[**]%w[**]%W[**]%q[**]%v\\\n >/dev/null 2>&1') != 0) { logger ($config, " [E] Could not start snmptrapd.", 1); print_message ($config, " [E] Could not start snmptrapd.", 1); return undef; } # Call the constructor of the parent class my $self = $class->SUPER::new($config, 2, $dbh); bless $self, $class; return $self; } ############################################################################### # Run. ############################################################################### sub run ($) { my $self = shift; my $pa_config = $self->getConfig (); print_message ($pa_config, " [*] Starting Pandora FMS SNMP Console.", 1); $self->SUPER::run (\&PandoraFMS::SNMPServer::pandora_snmptrapd); } ########################################################################## # Process SNMP log file. ########################################################################## sub pandora_snmptrapd { my $self = shift; my $pa_config = $self->getConfig (); eval { # Connect to the DB my $dbh = db_connect ($pa_config->{'dbengine'}, $pa_config->{'dbname'}, $pa_config->{'dbhost'}, 3306, $pa_config->{'dbuser'}, $pa_config->{'dbpass'}); $self->setDBH ($dbh); # Wait for the SNMP log file to be available my $log_file = $pa_config->{'snmp_logfile'}; sleep ($pa_config->{'server_threshold'}) while (! -e $log_file); open (SNMPLOGFILE, $log_file) or return; # Process index file, if available my ($idx_file, $last_line, $last_size) = ($log_file . '.index', 0, 0); if (-e $idx_file) { open (INDEXFILE, $idx_file) or return; my $idx_data = ; close INDEXFILE; ($last_line, $last_size) = split(/\s+/, $idx_data); } my $log_size = (stat ($log_file))[7]; # New SNMP log file found if ($log_size < $last_size) { unlink ($idx_file); ($last_line, $last_size) = (0, 0); } # Skip already processed lines readline SNMPLOGFILE for (1..$last_line); # Main loop while (1) { while (my $line = ) { $last_line++; $last_size = (stat ($log_file))[7]; chomp ($line); # Update index file open INDEXFILE, '>' . $idx_file; print INDEXFILE $last_line . ' ' . $last_size; close INDEXFILE; # Skip Headers next if ($line =~ m/NET-SNMP/); # Unknown data next if ($line !~ m/\[\*\*\]/ || matches_filter ($dbh, $pa_config, $line) == 1); logger($pa_config, "Reading trap '$line'", 10); my ($date, $time, $source, $oid, $type, $type_desc, $value, $data) = ('', '', '', '', '', '', '', ''); ($date, $time, $source, $oid, $type, $type_desc, $value, $data) = split(/\[\*\*\]/, $line); my $timestamp = $date . ' ' . $time; $value = limpia_cadena ($value); my ($custom_oid, $custom_type, $custom_value) = ('', '', ''); # custom_type, custom_value is not used since 4.0 version, all custom data goes on custom_oid $custom_oid = $data; # Try to save as much information as possible if the trap could not be parsed $oid = $type_desc if ($oid eq '' || $oid eq '.'); # Insert the trap into the DB if (! defined(enterprise_hook ('snmp_insert_trap', [$pa_config, $source, $oid, $type, $value, $custom_oid, $custom_value, $custom_type, $timestamp, $self->getServerID (), $dbh]))) { my $trap_id = db_insert ($dbh, 'id_trap', 'INSERT INTO ttrap (timestamp, source, oid, type, value, oid_custom, value_custom, type_custom) VALUES (?, ?, ?, ?, ?, ?, ?, ?)', $timestamp, $source, $oid, $type, $value, $custom_oid, $custom_value, $custom_type); logger ($pa_config, "Received SNMP Trap from $source", 4); # Evaluate alerts for this trap pandora_evaluate_snmp_alerts ($pa_config, $trap_id, $source, $oid, $oid, $value, $custom_oid, $dbh); } } sleep ($pa_config->{'server_threshold'}); } }; if ($@) { $self->setErrStr ($@); } } ######################################################################################## # Stop the server, killing snmptrapd before. ######################################################################################## sub stop () { my $self = shift; system ('kill -9 `cat /var/run/ 2> /dev/null`'); unlink ('/var/run/'); $self->SUPER::stop (); } ######################################################################################## # Returns 1 if the given string matches any SNMP filter, 0 otherwise. ######################################################################################## sub matches_filter ($$$) { my ($dbh, $pa_config, $string) = @_; # Get filters my @filters = get_db_rows ($dbh, 'SELECT filter FROM tsnmp_filter'); foreach my $filter (@filters) { my $regexp = $filter->{'filter'}; if ($string =~ m/$regexp/i) { logger($pa_config, "Trap '$string' matches filter '$regexp'. Discarding...", 10); return 1; } } return 0; } 1; __END__