Код: Выделить всё
apt-get update
apt-get upgrade
Установка SNMP, SNMP-TRAP, MIBs
Код: Выделить всё
apt-get instal snmp snmp-mibs-downloader snmpd snmptrapd snmptt
snmp-mibs-downloader: Этот пакет позволяет загружать и устанавливать MIB-файлы, которые необходимы для интерпретации данных, получаемых от SNMP-агентов. Он упрощает процесс работы с MIB, обеспечивая доступ к необходимым определениям.
snmpd: Это пакет, содержащий SNMP-агент, который запускается на управляемых устройствах. В Debian он обычно устанавливается с помощью пакета snmpd, который позволяет настраивать мониторинг и управление устройствами в сети.
snmptrapd: Пакет snmptrapd предоставляет SNMP-демон для приема и обработки SNMP-траппов. Это позволяет системным администраторам получать уведомления о событиях и изменениях состояния устройств в реальном времени.
snmptt: Пакет snmptt (SNMP Trap Translator) используется для преобразования SNMP-траппов в более удобный формат и может интегрироваться с системами мониторинга, такими как Nagios, Zabbix. Он позволяет настраивать правила обработки и уведомления.
Стандартно MIB лежат в
Код: Выделить всё
cd /usr/share/snmp/mibs/
Код: Выделить всё
download-mibs
В файле конфигурации
Код: Выделить всё
mcedit /etc/snmp/snmp.conf
Код: Выделить всё
# As the snmp packages come without MIB files due to license reasons, loading
# of MIBs is disabled by default. If you added the MIBs you can reenable
# loading them by commenting out the following line.
#mibs :
mibs :ALL
# If you want to globally change where snmp libraries, commands and daemons
# look for MIBS, change the line below. Note you can set this for individual
# tools with the -M option or MIBDIRS environment variable.
#
# mibdirs /usr/share/snmp/mibs:/usr/share/snmp/mibs/iana:/usr/share/snmp/mibs/ietf
#mibdirs /root
Я включил всё сделав следующее Закомментировал #MIBS: и добавил строку mibs :ALL
mibs :ALL включает все, что не совсем хорошо. Рекомендую для каждого оборудования иметь папку с mib'ами, т.к. они могут отличаться из одной прошивки к другой.
Или же прописать конкретные mib в конфиг например: mibs :BRIDGE-MIB:Q-BRIDGE-MIB:IP-MIB:IF-MIB
Конкретно одну добавить mibs +CPQPOWER-MIB
Добавление сторонних MIB для конкретного пользователя
# Создайте свой личный каталог MIBs
mkdir -p $HOME/.snmp/mibs
echo "mibdirs + $HOME/.snmp/mibs" >> $HOME/.snmp/snmp.conf
snmpwalk -v 1 -c public -m + ваша mib: еще ваша mib Хост
Проверка свободности портов:
snmp
Код: Выделить всё
ss -tuln | grep :167
Код: Выделить всё
ss -tuln | grep :168
/etc/snmp/
Код: Выделить всё
mcedit /etc/snmp/snmp.conf
Код: Выделить всё
# mibdirs +/usr/share/snmp/mibs/Dlink-mgmt/
# mibdirs +/usr/share/snmp/mibs/Dlink-common-mgmt/
mibs :ALL
Код: Выделить всё
mcedit /etc/snmp/snmpd.conf
По умолчанию
Код: Выделить всё
sysLocation Sitting on the Dock of the Bay
sysContact Me <me@example.org>
sysServices 72
master agentx
agentaddress udp:127.0.0.1:167,udp6:[::1]:167
view systemonly included .1.3.6.1.2.1.1
view systemonly included .1.3.6.1.2.1.25.1
rocommunity public default -V systemonly
rocommunity6 public default -V systemonly
rouser authPrivUser authpriv -V systemonly
includeDir /etc/snmp/snmpd.conf.d
Код: Выделить всё
agentAddress udp:127.0.0.1:167
# только группы system + hrSystem
view systemonly included .1.3.6.1.2.1.1
view systemonly included .1.3.6.1.2.1.25.1
# Полный доступ с локального хоста
rocommunity kenspub localhost
# Доступ по умолчанию к основной информации о системе
rocommunity kenspub default -V systemonly
# rocommunity6 предназначен для IPv6
rocommunity6 kenspub default -V systemonly
# Полный доступ из локальной сети
# Настройте этот сетевой адрес в соответствии с вашим локальным адресом
# настройки, измените строку сообщества,
# и проверьте настройку "agentAddress" выше
# Полный доступ только для чтения для SNMPv3
rouser authOnlyUser
# Полный доступ на запись для зашифрованных запросов
# Не забудьте активировать строки "createUser" выше
sysLocation Sitting on the Dock of the Bay
sysContact Me <me@example.org>
# Приложения + конца в конец слоя + End-to-End layers
sysServices 72
# По крайней мере один процесс "mountd"
proc mountd
# Не более 4' ntalkd ' процессов - 0 в порядке
proc ntalkd 4
# По крайней мере один процесс "sendmail", но не более 10
proc sendmail 10 1
# Требует 10 Мб на корень диска, 5% Свободного на /ВАР, 10% бесплатно, на все остальные диски
disk / 10000
disk /var 5%
includeAllDisks 10%
# Недопустимые средние значения нагрузки за 1, 5 и 15 минут
load 12 10 5
# отправить SNMPv1 traps
# отправить SNMPv2c traps
trap2sink localhost zabpub
# отправить SNMPv2c INFORMs
# Не забудьте активировать строки "createUser" выше
iquerySecName internalUser
rouser internalUser
# генерация ловушек в условиях ошибок UCD
defaultMonitors yes
# создание traps на linkUp/Down
linkUpDownNotifications yes
extend test1 /bin/echo Hello, world!
extend-sh test2 echo Hello, world! ; echo Hi there ; exit 35
# Запуск от имени главного агента AgentX
master agentx
# Прослушивание сетевых подключений (от localhost)
# вместо именованного сокета по умолчанию /var/agentx/master
smuxpeer .1.3.6.1.4.1.674.10892.1
Код: Выделить всё
mcedit /etc/snmp/snmptrapd.conf
Код: Выделить всё
agentAddress udp:127.0.0.1:168
#perl do "/usr/lib/snmptt/zabbix_trap_receiver.pl";
authCommunity log,execute,net private
authCommunity log,execute,net public
Код: Выделить всё
mcedit /etc/snmp/snmptt.conf
Код: Выделить всё
EVENT coldStart .1.3.6.1.6.3.1.1.5.1 "Status Events" Normal
FORMAT Device reinitialized (coldStart)
SDESC
A coldStart trap signifies that the SNMPv2 entity, acting
in an agent role, is reinitializing itself and that its
configuration may have been altered.
EDESC
EVENT warmStart .1.3.6.1.6.3.1.1.5.2 "Status Events" Normal
FORMAT Device reinitialized (warmStart)
SDESC
A warmStart trap signifies that the SNMPv2 entity, acting
in an agent role, is reinitializing itself such that its
configuration is unaltered.
EDESC
EVENT linkDown .1.3.6.1.6.3.1.1.5.3 "Status Events" Normal
FORMAT Link down on interface $1. Admin state: $2. Operational state: $3
SDESC
A linkDown trap signifies that the SNMP entity, acting in
an agent role, has detected that the ifOperStatus object for
one of its communication links is about to enter the down
state from some other state (but not from the notPresent
state). This other state is indicated by the included value
of ifOperStatus.
EDESC
EVENT linkUp .1.3.6.1.6.3.1.1.5.4 "Status Events" Normal
FORMAT Link up on interface $1. Admin state: $2. Operational state: $3
SDESC
A linkUp trap signifies that the SNMP entity, acting in an
agent role, has detected that the ifOperStatus object for
one of its communication links left the down state and
transitioned into some other state (but not into the
notPresent state). This other state is indicated by the
included value of ifOperStatus.
EDESC
EVENT authenticationFailure .1.3.6.1.6.3.1.1.5.5 "Status Events" Normal
FORMAT SNMP athentication failure
SDESC
An authenticationFailure trap signifies that the SNMPv2
entity, acting in an agent role, has received a protocol
message that is not properly authenticated. While all
implementations of the SNMPv2 must be capable of generating
this trap, the snmpEnableAuthenTraps object indicates
whether this trap will be generated.
EDESC
EVENT general .* "General event" Normal
FORMAT ZBXTRAP $aA $1 $2 $3
Код: Выделить всё
mcedit /etc/snmp/snmptt.conf.dop
Код: Выделить всё
MIB: ADAPTEC-UNIVERSAL-STORAGE-MIB (file:/usr/share/snmp/mibs/ADAPTEC-UNIVERSAL-STORAGE-MIB.mib) converted on Tue Mar 17 11:38:26 2020 using snmpttconvertmib v1.4
EVENT ausTrapOtherInformational .1.3.6.1.4.1.795.14.1.0.1001 "Status Events" INFORMATIONAL
FORMAT Informational trap message: $1
SDESC
Other informational trap message
Variables:
1: ausTrapMessage
EDESC
EVENT ausTrapOtherWarning .1.3.6.1.4.1.795.14.1.0.1002 "Status Events" WARNING
FORMAT Warning trap message: $1
SDESC
Other warning trap message
Variables:
1: ausTrapMessage
EDESC
EVENT ausTrapOtherFatal .1.3.6.1.4.1.795.14.1.0.1003 "Status Events" FATAL
FORMAT Fatal trap message: $1
SDESC
Other fatal trap message
Variables:
1: ausTrapMessage
EDESC
EVENT ausTrapDeviceInformation .1.3.6.1.4.1.795.14.1.0.1010 "Status Events" INFORMATIONAL
FORMAT Informational status of a device: A device at row index $1 reports: $3
SDESC
Informational status of a device
Variables:
1: ausTrapObjectIndex
2: ausTrapDeviceStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapDeviceWarning .1.3.6.1.4.1.795.14.1.0.1011 "Status Events" WARNING
FORMAT Warning status of a device: A device at row index $1 warns: $3
SDESC
Warning status of a device
Variables:
1: ausTrapObjectIndex
2: ausTrapDeviceStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapDeviceFatal .1.3.6.1.4.1.795.14.1.0.1012 "Status Events" FATAL
FORMAT Fatal status of a device: A device at row index $1 has fatal error: $3
SDESC
Fatal status of a device
Variables:
1: ausTrapObjectIndex
2: ausTrapDeviceStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapEnclosureInformation .1.3.6.1.4.1.795.14.1.0.1020 "Status Events" INFORMATIONAL
FORMAT Informational status of an enclosure: An enclosure at row index $1 reports: $3 (enclosure object number: $4)
SDESC
Informational status of an enclosure
Variables:
1: ausTrapObjectIndex
2: ausTrapEnclosureStatus
3: ausTrapEnumAsText
4: ausTrapEnclosureObjectOrdinal
EDESC
EVENT ausTrapEnclosureWarning .1.3.6.1.4.1.795.14.1.0.1021 "Status Events" WARNING
FORMAT Warning status of an enclosure: An enclosure at row index $1 warns: $3 (enclosure object number: $4)
SDESC
Warning status of an enclosure
Variables:
1: ausTrapObjectIndex
2: ausTrapEnclosureStatus
3: ausTrapEnumAsText
4: ausTrapEnclosureObjectOrdinal
EDESC
EVENT ausTrapEnclosureFatal .1.3.6.1.4.1.795.14.1.0.1022 "Status Events" FATAL
FORMAT Fatal status of an enclosure: An enclosure at row index $1 has fatal error: $3 (enclosure object number: $4)
SDESC
Fatal status of an enclosure
Variables:
1: ausTrapObjectIndex
2: ausTrapEnclosureStatus
3: ausTrapEnumAsText
4: ausTrapEnclosureObjectOrdinal
EDESC
EVENT ausTrapArrayInformation .1.3.6.1.4.1.795.14.1.0.1030 "Status Events" INFORMATIONAL
FORMAT Informational status of an array: An array at row index $1 reports: $3
SDESC
Informational status of an array
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapArrayWarning .1.3.6.1.4.1.795.14.1.0.1031 "Status Events" WARNING
FORMAT Warning status of an array: An array at row index $1 warns: $3
SDESC
Warning status of an array
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapArrayFatal .1.3.6.1.4.1.795.14.1.0.1032 "Status Events" FATAL
FORMAT Fatal status of an array: An array at row index $1 has fatal error: $3
SDESC
Fatal status of an array
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapArrayTaskInformation .1.3.6.1.4.1.795.14.1.0.1040 "Status Events" INFORMATIONAL
FORMAT Informational status of an array task: An array at row index $1 reports task status: $3
SDESC
Informational status of an array task
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayTaskStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapArrayTaskWarning .1.3.6.1.4.1.795.14.1.0.1041 "Status Events" WARNING
FORMAT Warning status of an array task: An array at row index $1 warns task status: $3
SDESC
Warning status of an array task
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayTaskStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapArrayTaskFatal .1.3.6.1.4.1.795.14.1.0.1042 "Status Events" FATAL
FORMAT Fatal status of an array task: An array at row index $1 has fatal task status: $3
SDESC
Fatal status of an array task
Variables:
1: ausTrapObjectIndex
2: ausTrapArrayTaskStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapSpareInformation .1.3.6.1.4.1.795.14.1.0.1050 "Status Events" INFORMATIONAL
FORMAT Informational status of a spare: A spare at row index $1 reports: $3
SDESC
Informational status of a spare
Variables:
1: ausTrapObjectIndex
2: ausTrapSpareStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapSpareWarning .1.3.6.1.4.1.795.14.1.0.1051 "Status Events" WARNING
FORMAT Warning status of a spare: A spare at row index $1 warns: $3
SDESC
Warning status of a spare
Variables:
1: ausTrapObjectIndex
2: ausTrapSpareStatus
3: ausTrapEnumAsText
EDESC
EVENT ausTrapSpareFatal .1.3.6.1.4.1.795.14.1.0.1052 "Status Events" FATAL
FORMAT Fatal status of a spare: A spare at row index $1 has fatal error: $3
SDESC
Fatal status of a spare
Variables:
1: ausTrapObjectIndex
2: ausTrapSpareStatus
3: ausTrapEnumAsText
EDESC
MIB: DNS-340L-MIB (file:/usr/share/snmp/mibs/DNS-340L_MIB.mib) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT notifyPasswdChanged .1.3.6.1.4.1.171.50.1.10.1.1.200.1 "Status Events" Normal
FORMAT An indication that the Administrator's password has been changed. $*
SDESC
An indication that the Administrator's password has been changed.
Variables:
EDESC
EVENT notifyFirmwareUpgraded .1.3.6.1.4.1.171.50.1.10.1.1.200.2 "Status Events" Normal
FORMAT An indication that firmware has been upgraded. $*
SDESC
An indication that firmware has been upgraded.
Variables:
EDESC
EVENT notifyNetworkChanged .1.3.6.1.4.1.171.50.1.10.1.1.200.3 "Status Events" Normal
FORMAT An indication that the network settings has been changed. $*
SDESC
An indication that the network settings has been changed.
Variables:
EDESC
EVENT notifyTemperatureExceeded .1.3.6.1.4.1.171.50.1.10.1.1.200.4 "Status Events" Normal
FORMAT An indication that system temperature has exceeded. $*
SDESC
An indication that system temperature has exceeded.
Variables:
EDESC
MIB: GNOME-SMI (file:/usr/share/snmp/mibs/GNOME-SMI.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: IANA-ADDRESS-FAMILY-NUMBERS-MIB (file:/usr/share/snmp/mibs/IANA-ADDRESS-FAMILY-NUMBERS-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1 .4
MIB: IANAifType-MIB (file:/usr/share/snmp/mibs/IANAifType-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: IANA-LANGUAGE-MIB (file:/usr/share/snmp/mibs/IANA-LANGUAGE-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: IANA-RTPROTO-MIB (file:/usr/share/snmp/mibs/IANA-RTPROTO-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: LM-SENSORS-MIB (file:/usr/share/snmp/mibs/LM-SENSORS-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-AGENT-MIB (file:/usr/share/snmp/mibs/NET-SNMP-AGENT-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT nsNotifyStart .1.3.6.1.4.1.8072.4.0.1 "Status Events" Normal
FORMAT An indication that the agent has started running. $*
SDESC
An indication that the agent has started running.
Variables:
EDESC
EVENT nsNotifyShutdown .1.3.6.1.4.1.8072.4.0.2 "Status Events" Normal
FORMAT An indication that the agent is in the process of being shut down. $*
SDESC
An indication that the agent is in the process of being shut down.
Variables:
EDESC
EVENT nsNotifyRestart .1.3.6.1.4.1.8072.4.0.3 "Status Events" Normal
FORMAT An indication that the agent has been restarted. $*
SDESC
An indication that the agent has been restarted.
This does not imply anything about whether the configuration has
changed or not (unlike the standard coldStart or warmStart traps)
Variables:
EDESC
MIB: NET-SNMP-EXAMPLES-MIB (file:/usr/share/snmp/mibs/NET-SNMP-EXAMPLES-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT netSnmpExampleHeartbeatNotification .1.3.6.1.4.1.8072.2.3.0.1 "Status Events" Normal
FORMAT An example notification, used to illustrate the $*
SDESC
An example notification, used to illustrate the
definition and generation of trap and inform PDUs
(including the use of both standard and additional
varbinds in the notification payload).
This notification will typically be sent every
30 seconds, using the code found in the example module
agent/mibgroup/examples/notification.c
Variables:
1: netSnmpExampleHeartbeatRate
EDESC
MIB: NET-SNMP-EXTEND-MIB (file:/usr/share/snmp/mibs/NET-SNMP-EXTEND-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-MIB (file:/usr/share/snmp/mibs/NET-SNMP-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-MONITOR-MIB (file:/usr/share/snmp/mibs/NET-SNMP-MONITOR-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-PASS-MIB (file:/usr/share/snmp/mibs/NET-SNMP-PASS-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-PERIODIC-NOTIFY-MIB (file:/usr/share/snmp/mibs/NET-SNMP-PERIODIC-NOTIFY-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT nsNotifyPeriodicNotification .1.3.6.1.4.1.8072.3.1.5.4.0.1 "Status Events" Normal
FORMAT Data delivery notification from a configured list of periodic $*
SDESC
Data delivery notification from a configured list of periodic
data sets to deliver. See the snmpd.conf manual page for
details about configuring Net-SNMP agents for sending these
notifications out on a regular basis.
Variables:
EDESC
MIB: NET-SNMP-SYSTEM-MIB (file:/usr/share/snmp/mibs/NET-SNMP-SYSTEM-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-TC (file:/usr/share/snmp/mibs/NET-SNMP-TC.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: NET-SNMP-VACM-MIB (file:/usr/share/snmp/mibs/NET-SNMP-VACM-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: RFC-1215 (file:/usr/share/snmp/mibs/RFC-1215.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: SNMP-TLS-TM-MIB (file:/usr/share/snmp/mibs/SNMP-TLS-TM-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT snmpTlstmServerCertificateUnknown .1.3.6.1.2.1.198.0.1 "Status Events" Normal
FORMAT Notification that the server certificate presented by an SNMP $*
SDESC
Notification that the server certificate presented by an SNMP
over (D)TLS server was invalid because no configured
fingerprint or CA was acceptable to validate it. This may be
because there was no entry in the snmpTlstmAddrTable or
because no path could be found to known Certification
Authority.
To avoid notification loops, this notification MUST NOT be
sent to servers that themselves have triggered the
notification.
Variables:
1: snmpTlstmSessionUnknownServerCertificate
EDESC
EVENT snmpTlstmServerInvalidCertificate .1.3.6.1.2.1.198.0.2 "Status Events" Normal
FORMAT Notification that the server certificate presented by an SNMP $*
SDESC
Notification that the server certificate presented by an SNMP
over (D)TLS server could not be validated even if the
fingerprint or expected validation path was known. That is, a
cryptographic validation error occurred during certificate
validation processing.
To avoid notification loops, this notification MUST NOT be
sent to servers that themselves have triggered the
notification.
Variables:
1: snmpTlstmAddrServerFingerprint
2: snmpTlstmSessionInvalidServerCertificates
EDESC
MIB: SNMP-TSM-MIB (file:/usr/share/snmp/mibs/SNMP-TSM-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-DEMO-MIB (file:/usr/share/snmp/mibs/UCD-DEMO-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-DISKIO-MIB (file:/usr/share/snmp/mibs/UCD-DISKIO-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-DLMOD-MIB (file:/usr/share/snmp/mibs/UCD-DLMOD-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-IPFILTER-MIB (file:/usr/share/snmp/mibs/UCD-IPFILTER-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-IPFWACC-MIB (file:/usr/share/snmp/mibs/UCD-IPFWACC-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-SNMP-MIB-OLD (file:/usr/share/snmp/mibs/UCD-SNMP-MIB-OLD.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
MIB: UCD-SNMP-MIB (file:/usr/share/snmp/mibs/UCD-SNMP-MIB.txt) converted on Tue Mar 17 11:38:27 2020 using snmpttconvertmib v1.4
EVENT ucdStart .1.3.6.1.4.1.2021.251.1 "Status Events" Normal
FORMAT This trap could in principle be sent when the agent start $*
SDESC
This trap could in principle be sent when the agent start
Variables:
EDESC
EVENT ucdShutdown .1.3.6.1.4.1.2021.251.2 "Status Events" Normal
FORMAT This trap is sent when the agent terminates $*
SDESC
This trap is sent when the agent terminates
Variables:
EDESC
EVENT general .* "General event" Normal
FORMAT ZBXTRAP $aA $1 $2 $3
Код: Выделить всё
mcedit /etc/snmp/snmptt.ini
Код: Выделить всё
[General]
snmptt_system_name =
mode = daemon
multiple_event = 1
dns_enable = 0
strip_domain = 0
strip_domain_list = <<END
domain.com
END
resolve_value_ip_addresses = 0
net_snmp_perl_enable = 1
net_snmp_perl_cache_enable = 0
net_snmp_perl_best_guess = 0
translate_log_trap_oid = 0
translate_value_oids = 1
translate_enterprise_oid_format = 1
translate_trap_oid_format = 1
translate_varname_oid_format = 1
translate_integers = 1
mibs_environment = ALL
wildcard_expansion_separator = " "
allow_unsafe_regex = 0
remove_backslash_from_quotes = 0
dynamic_nodes = 0
description_mode = 0
description_clean = 1
threads_enable = 0
threads_max = 10
date_time_format = %H:%M:%S %Y/%m/%d
[DaemonMode]
daemon_fork = 1
daemon_uid = snmptt
pid_file = /var/run/snmptt.pid
spool_directory = /var/spool/snmptt/
sleep = 5
use_trap_time = 1
keep_unlogged_traps = 1
duplicate_trap_window = 300
[Logging]
stdout_enable = 0
log_enable = 1
log_file = /var/log/snmptt/snmptt.log
log_system_enable = 0
log_system_file = /var/log/snmptt/snmpttsystem.log
unknown_trap_log_enable = 1
unknown_trap_log_file = /var/log/snmptt/snmpttunknown.log
statistics_interval = 0
syslog_enable = 1
syslog_facility = local0
syslog_level_debug = <<END
END
syslog_level_info = <<END
END
syslog_level_notice = <<END
END
syslog_level_warning = <<END
END
syslog_level_err = <<END
END
syslog_level_crit = <<END
END
syslog_level_alert = <<END
END
syslog_level = warning
syslog_system_enable = 1
syslog_system_facility = local0
syslog_system_level = warning
[SQL]
db_translate_enterprise = 0
db_unknown_trap_format = '$-*'
sql_custom_columns = <<END
END
sql_custom_columns_unknown = <<END
END
mysql_dbi_enable = 0
mysql_dbi_host = localhost
mysql_dbi_port = 3306
mysql_dbi_database = snmptt
mysql_dbi_table = snmptt
mysql_dbi_table_unknown = snmptt_unknown
mysql_dbi_table_statistics =
mysql_dbi_username = snmpttuser
mysql_dbi_password = password
mysql_ping_on_insert = 1
mysql_ping_interval = 300
postgresql_dbi_enable = 0
postgresql_dbi_module = 0
postgresql_dbi_hostport_enable = 0
postgresql_dbi_host = localhost
postgresql_dbi_port = 5432
postgresql_dbi_database = snmptt
postgresql_dbi_table_unknown = snmptt_unknown
postgresql_dbi_table_statistics =
postgresql_dbi_table = snmptt
postgresql_dbi_username = snmpttuser
postgresql_dbi_password = password
postgresql_ping_on_insert = 1
postgresql_ping_interval = 300
dbd_odbc_enable = 0
dbd_odbc_dsn = snmptt
dbd_odbc_table = snmptt
dbd_odbc_table_unknown = snmptt_unknown
dbd_odbc_table_statistics =
dbd_odbc_username = snmptt
dbd_odbc_password = password
dbd_odbc_ping_on_insert = 1
dbd_odbc_ping_interval = 300
[Exec]
exec_enable = 1
pre_exec_enable = 1
unknown_trap_exec =
unknown_trap_exec_format =
exec_escape = 1
[Debugging]
DEBUGGING = 0
DEBUGGING_FILE =
DEBUGGING_FILE_HANDLER =
[TrapFiles]
snmptt_conf_files = <<END
/etc/snmp/snmptt.conf
/etc/snmp/snmptt.conf.dop
END
/etc/snmp/snmpd.conf.d/
Примеры использования
Можно протестировать внутри роутера задав ip 127.0.0.1 или ip-роутера
Запрос с помощью OID
Код: Выделить всё
snmpwalk -v 2c -c public 192.168.0.183 .1.3.6.1.2.1.2.2.1.2
iso.3.6.1.2.1.2.2.1.2.2 = STRING: "sit0"
iso.3.6.1.2.1.2.2.1.2.3 = STRING: "eth0"
iso.3.6.1.2.1.2.2.1.2.4 = STRING: "eth1"
Запросим таблицу 1 столбец это будет Индекс
Код: Выделить всё
snmptable -v 2c -c public -Os -Ci 192.168.0.183 .1.3.6.1.2.1.2.2.1.2
Код: Выделить всё
snmptable -v 2c -c public -Os -Ciw 80 192.168.0.183 .1.3.6.1.2.1.2.2.1.2
Код: Выделить всё
snmptable -h
Код: Выделить всё
snmpwalk -v 2c -c public 192.168.0.183 IF-MIB::ifDescr
IF-MIB::ifDescr.2 = STRING: sit0
IF-MIB::ifDescr.3 = STRING: eth0
IF-MIB::ifDescr.4 = STRING: eth1
работает только при условиях:
Библиотека лежит тут ./usr/share/snmp/mibs/IF-MIB
расширение указывать не нужно (.mib .txt)
Код: Выделить всё
snmpwalk -v 2c 192.168.0.183 -c public Имя Mib библиотеки::Имя запроса ключа
Код: Выделить всё
snmpwalk -v 2c -c public 192.168.0.183 ifDescr
Код: Выделить всё
snmpwalk -v 2c 192.168.0.183 -c public Имя запроса ключа
Библиотека лежит тут ./usr/share/snmp/mibs/DNS-340L-MIB.mib
Код: Выделить всё
snmpwalk -v 2c -c public 192.168.0.150 DNS-340L-MIB::dns340LVolumeName
Код: Выделить всё
snmpwalk -v 2c -c public 192.168. Имя Mib библиотеки::Имя запроса ключа
Код: Выделить всё
snmpwalk -v 2c -c public 192.168.0.101 .1.3.6.1.4.1.232.165.3.1 -m CPQPOWER-MIB
Код: Выделить всё
snmpwalk -v 2c -c public -m /usr/share/snmp/mibs/DNS-340L_MIB.TXT 192.168.0.101 dns340LHostName
Он применит все найденные mib
Код: Выделить всё
snmpwalk -v 2c -c public -M ./ -Ln -m ALL 192.168.0.101
Опция Cc делает это: "не проверять, что возвращенные OID увеличиваются
Код: Выделить всё
snmpwalk -v 2c -Cc -c public -M ./ -Ln -m ALL 192.168.0.101
Пример для snmpwalk -v 3
Основные ключи для запроса:
-a Протокол аутентификации (MD5 или SHA) (При настройке удаленного хоста может быть None , SHA1 , SHA256 , SHA512)
-l Уровень безопасности (noAuthNoPriv или authNoPriv или authPriv)
-u Имя пользователя для аутентификации
-A Пароль аутентификации
-x Определить алгоритм шифрования протокол конфиденциальности (DES или AES) (При настройке удаленного хоста может быть None ,AES-128 , AES-192 , AES-192 Ex , AES-256 , AES-256 Ex)
-X Пароль шифрования (Обратите внимание, что для повышения безопасности убедитесь, что вы используете разные пароли для аутентификации и шифрования)
Так же должен быть дан доступ Тип доступа: Disable (Отключен) , Read (Чтение) , Read/Write (Чтение Запись)
Код: Выделить всё
snmpwalk -v3 -a MD5 -l authPriv -u Пользователь -A Пароль -x DES -X Пароль 192.168.1.11 IF-MIB::ifDescr
Более подробно можно посмотреть
Пример создания шаблона SNMP для Zabbix
Настройка SNMP Traps в zabbix Debian