ldap_connections
Sadly there is no documentation for this plugin.
#!/bin/sh
#
# Plugin to monitor the number of open connexions to LDAP
#
# $Log: ldap_connections,v $
# Revision 1.9 2008/05/20 21:30:34 cvserver
# Corrections de bugs
#
# Revision 1.8 2007/09/03 09:35:37 cvserver
# Correction2 pour OpenBSD
#
# Revision 1.7 2007/09/03 09:01:07 cvserver
# Modif pour OpenBSD
#
# Revision 1.6 2007/03/02 07:52:52 cvserver
# pas LISTEN pour les IPs utilisées (en cas de *:389)
#
# Revision 1.5 2007/03/01 16:06:53 cvserver
# corrections:
# - reinitialisation de $IPS_BOUND au debut de la fonction find_ip_bound
# - precision dans le grep (LISTEN)
#
# Revision 1.4 2006/09/27 11:56:54 cvserver
# + sockets
#
# Revision 1.3 2006/06/24 23:38:30 cvserver
# correction
#
# Revision 1.2 2006/06/24 23:24:30 cvserver
# correction
#
# Revision 1.1 2006/06/24 23:15:25 cvserver
# connexions LDAP pour munin
#
#
# plugin-conf.d/-options:
#
# netstat -- path to netstat executable
# ports -- ldap ports used (389 and 636)
# only used ones are graphed
# socket -- ldapi socket (default: /var/run/openldap/ldapi)
#
# Parameters:
#
# config (required)
# autoconf (optional - used by munin-config)
#
# Magic markers (Used by munin-config and some installation scripts.
# Optional):
#
#%# family=contrib
#%# capabilities=autoconf
NETSTAT=${netstat:-`which netstat`}
NETSTAT=${NETSTAT:-/usr/bin/netstat}
PORTS=${ports:-389 636}
TEMP_FILE=$(mktemp /tmp/munin_ldap.XXXXXX)
trap "rm -f ${TEMP_FILE}" EXIT
PATH=/bin:/usr/bin:/usr/local/bin
SOCKET=${socket:-/var/run/openldap/ldapi}
case $(uname -s) in
*BSD)
NETSTAT_ARGS="-an -ptcp"
FAMILYMARK="-f "
;;
Linux)
NETSTAT_ARGS="-alnt"
FAMILYMARK="--"
;;
*)
NETSTAT_ARGS="-an"
FAMILYMARK="-f "
;;
esac
$NETSTAT $NETSTAT_ARGS > $TEMP_FILE
# arg: port
find_ips_bound() {
port=$1
IPS_BOUND=""
for i in $(grep "^tcp[46]\{0,1\}\([[:space:]]\{1,\}[[:digit:]]\{1,\}\)\{2\}[[:space:]]\{1,\}\(\([0-9]\)\{1,3\}\.\)\{3\}[0-9]\{1,3\}[\.:]$port[[:space:]].*" $TEMP_FILE | awk '{print $4}' | sed "s/^\(.*\)[\.:]$port$/\1/"); do
echo $IPS_BOUND | grep "$i" > /dev/null || IPS_BOUND=$IPS_BOUND" $i"
done
echo $IPS_BOUND
}
# see which port(s) is/are really bound
LISTENING_PORTS=""
for port in $PORTS; do
find_ips_bound $port > /dev/null && LISTENING_PORTS="$LISTENING_PORTS$port "
done
if [ "$1" = "autoconf" ]; then
ONE_LISTENING=""
for port in $PORTS; do
ONE_LISTENING=${ONE_LISTENING}$(find_ips_bound $port)
done
if [ -n "$ONE_LISTENING" ]; then
echo "yes"
else
echo "no (no slapd listening on $PORTS)"
fi
exit 0
fi
if [ "$1" = "config" ]; then
echo 'graph_title LDAP connections'
echo 'graph_args -l 0'
echo 'graph_vlabel active connections to ldap by port'
echo 'graph_category network'
for port in $LISTENING_PORTS; do
for ip in $(find_ips_bound $port | sed 's/\./_/g'); do
echo "${ip}_${port}.label ${ip}:${port}"
done
done
if [ -e $SOCKET ]; then
if [ $($NETSTAT -an ${FAMILYMARK}unix | grep $SOCKET | wc -l) -gt 0 ]; then
echo "socket.label ldapi"
fi
fi
exit 0
fi
for port in $LISTENING_PORTS; do
for ip in $(find_ips_bound $port); do
label=$(printf "%s_%d" "$(echo $ip | tr ':.' '_')" "$port")
connections=$(
awk -v ip_port="${ip}:${port}" \
'BEGIN { counter=0 }
$1 ~ /tcp[46]?/ && $4 == ip_port && $6 == "ESTABLISHED" { counter++ }
END { print counter }' \
$TEMP_FILE
)
printf "%s.value %d\n" "$label" "$connections"
done
done
if [ -e "$SOCKET" ]; then
echo "socket.value $($NETSTAT -an ${FAMILYMARK}unix | grep $SOCKET | wc -l | sed 's/[[:space:]]*//g')"
fi