Home Explore Help
Register Sign In
Quagga
/
quagga-github-mirror
mirror of https://github.com/Quagga/quagga
Watch 2
Star 0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
quagga-githu...
/
doc
/
snmptrap.texi

snmptrap.texi 6.1 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212 
  1. @c Documentation on configuring Quagga and snmpd for SNMP traps
    2. 

  2. @c contributed by Jeroen Simonetti, jsimonetti@denit.net
    3. 

  3. 

  4. @node Handling SNMP Traps
    5. 

  5. @section Handling SNMP Traps
    6. 

  6. 

  7. To handle snmp traps make sure your snmp setup of quagga works
    8. 

  8. correctly as described in the quagga documentation in @xref{SNMP Support}.
    9. 

  9. 

  10. The BGP4 mib will send traps on peer up/down events. These should be
    11. 

  11. visible in your snmp logs with a message similar to:
    12. 

  12. 

  13. @samp{snmpd[13733]: Got trap from peer on fd 14}
    14. 

  14. 

  15. To react on these traps they should be handled by a trapsink. Configure
    16. 

  16. your trapsink by adding the following lines to @file{/etc/snmpd/snmpd.conf}:
    17. 

  17. 

  18. @example
    19. 

  19.   # send traps to the snmptrapd on localhost
    20. 

  20.   trapsink localhost
    21. 

  21. @end example
    22. 

  22. 

  23. This will send all traps to an snmptrapd running on localhost. You can
    24. 

  24. of course also use a dedicated management station to catch traps.
    25. 

  25. Configure the snmptrapd daemon by adding the following line to
    26. 

  26. @file{/etc/snmpd/snmptrapd.conf}:
    27. 

  27. 

  28. @c Documentation contributed by Jeroen Simonetti, jsimonetti@denit.net
    29. 

  29. 

  30. @example
    31. 

  31.   traphandle .1.3.6.1.4.1.3317.1.2.2 /etc/snmp/snmptrap_handle.sh
    32. 

  32. @end example
    33. 

  33. 

  34. This will use the bash script @file{/etc/snmp/snmptrap_handle.sh} to handle
    35. 

  35. the BGP4 traps. To add traps for other protocol daemons, lookup their
    36. 

  36. appropriate OID from their mib. (For additional information about which
    37. 

  37. traps are supported by your mib, lookup the mib on
    38. 

  38. @uref{http://www.oidview.com/mibs/detail.html}).
    39. 

  39. 

  40. Make sure snmptrapd is started.
    41. 

  41. 

  42. The snmptrap_handle.sh script I personally use for handling BGP4 traps
    43. 

  43. is below. You can of course do all sorts of things when handling traps,
    44. 

  44. like sound a siren, have your display flash, etc., be creative ;).
    45. 

  45. 

  46. @verbatim
    47. 

  47.   #!/bin/bash
    48. 

  48. 

  49.   # routers name
    50. 

  50.   ROUTER=`hostname -s`
    51. 

  51. 

  52.   #email address use to sent out notification
    53. 

  53.   EMAILADDR="john@doe.com"
    54. 

  54.   #email address used (allongside above) where warnings should be sent
    55. 

  55.   EMAILADDR_WARN="sms-john@doe.com"
    56. 

  56. 

  57.   # type of notification
    58. 

  58.   TYPE="Notice"
    59. 

  59. 

  60.   # local snmp community for getting AS belonging to peer
    61. 

  61.   COMMUNITY="<community>"
    62. 

  62. 

  63.   # if a peer address is in $WARN_PEERS a warning should be sent
    64. 

  64.   WARN_PEERS="192.0.2.1"
    65. 

  65. 

  66. 

  67.   # get stdin
    68. 

  68.   INPUT=`cat -`
    69. 

  69. 

  70.   # get some vars from stdin
    71. 

  71.   uptime=`echo $INPUT | cut -d' ' -f5`
    72. 

  72.   peer=`echo $INPUT | cut -d' ' -f8 | \
    73. 

  73. 	sed -e 's/SNMPv2-SMI::mib-2.15.3.1.14.//g'`
    74. 

  74.   peerstate=`echo $INPUT | cut -d' ' -f13`
    75. 

  75.   errorcode=`echo $INPUT | cut -d' ' -f9 | sed -e 's/\"//g'`
    76. 

  76.   suberrorcode=`echo $INPUT | cut -d' ' -f10 | sed -e 's/\"//g'`
    77. 

  77.   remoteas=`snmpget -v2c -c $COMMUNITY \
    78. 

  78. 		localhost SNMPv2-SMI::mib-2.15.3.1.9.$peer \
    79. 

  79. 		| cut -d' ' -f4`
    80. 

  80. 

  81.   WHOISINFO=`whois -h whois.ripe.net " -r AS$remoteas" | \
    82. 

  82. 		egrep '(as-name|descr)'`
    83. 

  83.   asname=`echo "$WHOISINFO" | grep "^as-name:" | \
    84. 

  84. 		sed -e 's/^as-name://g' -e 's/  //g' -e 's/^ //g' | uniq`
    85. 

  85.   asdescr=`echo "$WHOISINFO" | grep "^descr:" | \
    86. 

  86. 		sed -e 's/^descr://g' -e 's/  //g' -e 's/^ //g' | uniq`
    87. 

  87. 

  88.   # if peer address is in $WARN_PEER, the email should also
    89. 

  89.   # be sent to $EMAILADDR_WARN
    90. 

  90.   for ip in $WARN_PEERS; do
    91. 

  91.     if [ "x$ip" == "x$peer" ]; then
    92. 

  92.       EMAILADDR="$EMAILADDR,$EMAILADDR_WARN"
    93. 

  93.       TYPE="WARNING"
    94. 

  94.       break
    95. 

  95.     fi
    96. 

  96.   done
    97. 

  97.   
    98. 

  98. 

  99.   # convert peer state
    100. 

  100.   case "$peerstate" in
    101. 

  101.     1) peerstate="Idle" ;;
    102. 

  102.     2) peerstate="Connect" ;;
    103. 

  103.     3) peerstate="Active" ;;
    104. 

  104.     4) peerstate="Opensent" ;;
    105. 

  105.     5) peerstate="Openconfirm" ;;
    106. 

  106.     6) peerstate="Established" ;;
    107. 

  107.     *) peerstate="Unknown" ;;
    108. 

  108.   esac
    109. 

  109. 

  110.   # get textual messages for errors
    111. 

  111.   case "$errorcode" in
    112. 

  112.     00)
    113. 

  113.       error="No error"
    114. 

  114.       suberror=""
    115. 

  115.       ;;
    116. 

  116.     01)
    117. 

  117.       error="Message Header Error"
    118. 

  118.       case "$suberrorcode" in
    119. 

  119.         01) suberror="Connection Not Synchronized" ;;
    120. 

  120.         02) suberror="Bad Message Length" ;;
    121. 

  121.         03) suberror="Bad Message Type" ;;
    122. 

  122.         *) suberror="Unknown" ;;
    123. 

  123.       esac
    124. 

  124.       ;;
    125. 

  125.     02)    
    126. 

  126.       error="OPEN Message Error"
    127. 

  127.       case "$suberrorcode" in
    128. 

  128.         01) suberror="Unsupported Version Number" ;;
    129. 

  129.         02) suberror="Bad Peer AS" ;;
    130. 

  130.         03) suberror="Bad BGP Identifier" ;;
    131. 

  131.         04) suberror="Unsupported Optional Parameter" ;;
    132. 

  132.         05) suberror="Authentication Failure" ;;
    133. 

  133.         06) suberror="Unacceptable Hold Time" ;;
    134. 

  134.         *) suberror="Unknown" ;;
    135. 

  135.       esac
    136. 

  136.       ;;
    137. 

  137.     03)
    138. 

  138.       error="UPDATE Message Error"
    139. 

  139.       case "$suberrorcode" in
    140. 

  140.         01) suberror="Malformed Attribute List" ;;
    141. 

  141.         02) suberror="Unrecognized Well-known Attribute" ;;
    142. 

  142.         03) suberror="Missing Well-known Attribute" ;;
    143. 

  143.         04) suberror="Attribute Flags Error" ;;
    144. 

  144.         05) suberror="Attribute Length Error" ;;
    145. 

  145.         06) suberror="Invalid ORIGIN Attribute" ;;
    146. 

  146.         07) suberror="AS Routing Loop" ;;
    147. 

  147.         08) suberror="Invalid NEXT_HOP Attribute" ;;
    148. 

  148.         09) suberror="Optional Attribute Error" ;;
    149. 

  149.         10) suberror="Invalid Network Field" ;;
    150. 

  150.         11) suberror="Malformed AS_PATH" ;;
    151. 

  151.         *) suberror="Unknown" ;;
    152. 

  152.       esac
    153. 

  153.       ;;
    154. 

  154.     04)
    155. 

  155.       error="Hold Timer Expired"
    156. 

  156.       suberror=""
    157. 

  157.       ;;
    158. 

  158.     05)
    159. 

  159.       error="Finite State Machine Error"
    160. 

  160.       suberror=""
    161. 

  161.       ;;
    162. 

  162.     06)
    163. 

  163.       error="Cease"
    164. 

  164.       case "$suberrorcode" in
    165. 

  165.         01) suberror="Maximum Number of Prefixes Reached" ;;
    166. 

  166.         02) suberror="Administratively Shutdown" ;;
    167. 

  167.         03) suberror="Peer Unconfigured" ;;
    168. 

  168.         04) suberror="Administratively Reset" ;;
    169. 

  169.         05) suberror="Connection Rejected" ;;
    170. 

  170.         06) suberror="Other Configuration Change" ;;
    171. 

  171.         07) suberror="Connection collision resolution" ;;
    172. 

  172.         08) suberror="Out of Resource" ;;
    173. 

  173.         09) suberror="MAX" ;;
    174. 

  174.         *) suberror="Unknown" ;;
    175. 

  175.       esac
    176. 

  176.       ;;
    177. 

  177.     *)
    178. 

  178.       error="Unknown"
    179. 

  179.       suberror=""
    180. 

  180.       ;;
    181. 

  181.   esac
    182. 

  182. 

  183.   # create textual message from errorcodes
    184. 

  184.   if [ "x$suberror" == "x" ]; then
    185. 

  185.     NOTIFY="$errorcode ($error)"
    186. 

  186.   else
    187. 

  187.     NOTIFY="$errorcode/$suberrorcode ($error/$suberror)"
    188. 

  188.   fi
    189. 

  189.  
    190. 

  190. 

  191.   # form a decent subject
    192. 

  192.   SUBJECT="$TYPE: $ROUTER [bgp] $peer is $peerstate: $NOTIFY"
    193. 

  193.   # create the email body
    194. 

  194.   MAIL=`cat << EOF
    195. 

  195.   BGP notification on router $ROUTER.
    196. 

  196.   
    197. 

  197.   Peer: $peer
    198. 

  198.   AS: $remoteas
    199. 

  199.   New state: $peerstate
    200. 

  200.   Notification: $NOTIFY
    201. 

  201. 

  202.   Info:
    203. 

  203.   $asname
    204. 

  204.   $asdescr
    205. 

  205.  
    206. 

  206.   Snmpd uptime: $uptime
    207. 

  207.   EOF`
    208. 

  208. 

  209.   # mail the notification
    210. 

  210.   echo "$MAIL" | mail -s "$SUBJECT" $EMAILADDR
    211. 

  211. @end verbatim
    212. 

  212.