Repository
Munin (contrib)
Last change
2020-11-26
Graph Categories
Family
snmpauto
Capabilities
Keywords
Language
Python (3.x)
License
GPL-2.0-only
Authors

snmp__juniper_spu

Name

snmp__juniper_spu - Network monitoring plugin for the SPU’s in Juniper firewalls.

Configuration

Make sure your Juniper device is accessible via SNMP (e.g. via snmpwalk) and the munin-node has been configured correctly.

Version

0.0.1

Bugs

Open a ticket at https://github.com/ercpe/contrib if you find one.

Author

Copyright (C) 2014 Johann Schmitz johann@j-schmitz.net

License

This program is free software; you can redistribute it and/or modify it under the terms of the GNU Library General Public License as published by the Free Software Foundation; version 2 only

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public License for more details.

You should have received a copy of the GNU Library General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.

SPDX-License-Identifier: GPL-2.0-only

Magic Markers

#%# family=snmpauto
#%# capabilities=snmpconf

#!/usr/bin/env python3
"""
=head1 NAME

snmp__juniper_spu - Network monitoring plugin for the SPU's in Juniper firewalls.

=head1 CONFIGURATION

Make sure your Juniper device is accessible via SNMP (e.g. via snmpwalk) and the munin-node
has been configured correctly.

=head1 VERSION

0.0.1

=head1 BUGS

Open a ticket at https://github.com/ercpe/contrib if you find one.

=head1 AUTHOR

Copyright (C) 2014 Johann Schmitz <johann@j-schmitz.net>


=head1 LICENSE

This program is free software; you can redistribute it and/or modify
it under the terms of the GNU Library General Public License as published by
the Free Software Foundation; version 2 only

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU Library General Public License for more details.

You should have received a copy of the GNU Library General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.

SPDX-License-Identifier: GPL-2.0-only


=head1 MAGIC MARKERS

 #%# family=snmpauto
 #%# capabilities=snmpconf

=cut
"""

import re
import sys
import os
import logging

from pysnmp.entity.rfc3413.oneliner import cmdgen

host = None
port = os.getenv('port', 161)
community = os.getenv('community', "public")

debug = bool(os.getenv('MUNIN_DEBUG', os.getenv('DEBUG', 0)))

if debug:
    logging.basicConfig(level=logging.DEBUG, format='%(asctime)s %(levelname)-7s %(message)s')

try:
    match = re.search(r"^(?:|.*/)snmp_([^_]+)_juniper_spu$", sys.argv[0])
    host = match.group(1)
    request = match.group(2)
    match = re.search(r"^([^:]+):(\d+)$", host)
    if match is not None:
        host = match.group(1)
        port = match.group(2)
except Exception:
    pass

jnxJsSPUMonitoringObjectsTable = '1.3.6.1.4.1.2636.3.39.1.12.1.1'
# jnxJsSPUMonitoringIndex = jnxJsSPUMonitoringObjectsTable + '.1.1'
# jnxJsSPUMonitoringFPCIndex = jnxJsSPUMonitoringObjectsTable + '.1.2'
# jnxJsSPUMonitoringSPUIndex = jnxJsSPUMonitoringObjectsTable + '.1.3'
# jnxJsSPUMonitoringCPUUsage = jnxJsSPUMonitoringObjectsTable + '.1.4'
# jnxJsSPUMonitoringMemoryUsage = jnxJsSPUMonitoringObjectsTable + '.1.5'
jnxJsSPUMonitoringCurrentFlowSession = jnxJsSPUMonitoringObjectsTable + '.1.6'
jnxJsSPUMonitoringMaxFlowSession = jnxJsSPUMonitoringObjectsTable + '.1.7'
jnxJsSPUMonitoringCurrentCPSession = jnxJsSPUMonitoringObjectsTable + '.1.8'
jnxJsSPUMonitoringMaxCPSession = jnxJsSPUMonitoringObjectsTable + '.1.9'
# jnxJsSPUMonitoringNodeIndex = jnxJsSPUMonitoringObjectsTable + '.1.10'
jnxJsSPUMonitoringNodeDescr = jnxJsSPUMonitoringObjectsTable + '.1.11'
jnxJsSPUMonitoringFlowSessIPv4 = jnxJsSPUMonitoringObjectsTable + '.1.12'
jnxJsSPUMonitoringFlowSessIPv6 = jnxJsSPUMonitoringObjectsTable + '.1.13'
jnxJsSPUMonitoringCPSessIPv4 = jnxJsSPUMonitoringObjectsTable + '.1.14'
jnxJsSPUMonitoringCPSessIPv6 = jnxJsSPUMonitoringObjectsTable + '.1.15'


class JunOSSnmpClient(object):

    def __init__(self, host, port, community):
        self.hostname = host
        self.transport = cmdgen.UdpTransportTarget((host, int(port)))
        self.auth = cmdgen.CommunityData('test-agent', community)
        self.gen = cmdgen.CommandGenerator()

    def get_data(self):
        errorIndication, errorStatus, errorIndex, varBindTable = self.gen.bulkCmd(
            self.auth,
            self.transport,
            0, 10,
            jnxJsSPUMonitoringObjectsTable)
        # the line below is only available with pysnmp >= 4.2.4 (?) and broken anyway
        # ignoreNonIncreasingOids=True)

        if errorIndication:
            logging.error("SNMP bulkCmd for devices failed: %s, %s, %s"
                          % (errorIndication, errorStatus, errorIndex))
            return {}

        devices = {}
        values = {}
        for row in varBindTable:
            for name, value in row:
                if not str(name).startswith(jnxJsSPUMonitoringObjectsTable):
                    continue

                oid = str(name)

                nodeid = oid[oid.rindex('.'):]

                idx = oid[len(jnxJsSPUMonitoringObjectsTable) + 3:]
                idx = idx[:idx.index('.')]

                if oid.startswith(jnxJsSPUMonitoringNodeDescr):
                    devices[nodeid] = str(value)
                    continue

                values[oid] = int(value)
        return devices, values

    def print_config(self):
        devices, data = self.get_data()

        data_def = [
            ('flow', self.hostname, 'Flow sessions', '--base 1000', '# of sessions',
             jnxJsSPUMonitoringMaxFlowSession),
            ('cp', self.hostname, 'Central point sessions', '--base 1000', '# of sessions',
             jnxJsSPUMonitoringMaxCPSession),
        ]

        for datarow, hostname, title, args, vlabel, max_prefix in data_def:
            print("""multigraph juniper_{datarow}
host_name {hostname}
graph_title {title}
graph_vlabel {vlabel}
graph_args {args}
graph_category network
graph_info {title}""".format(datarow=datarow, hostname=hostname, title=title, args=args,
                             vlabel=vlabel))

            for suffix, node in devices.items():
                ident = "%s_%s" % (datarow, node)
                print("""{label}.info {title} on {node}
{label}.label {node}
{label}.type GAUGE
{label}.max {max}""".format(title=title, label=ident, node=node,
                            max=data.get(max_prefix + suffix)))

            for suffix, node in devices.items():
                print("""
multigraph juniper_{datarow}.{node}
host_name {hostname}
graph_title {title} on {node}
graph_vlabel {vlabel}
graph_args {args}
graph_category network
graph_info {title}
{datarow}V4.info Current IPv4 {datarow} sessions
{datarow}V4.label IPv4
{datarow}V4.draw AREASTACK
{datarow}V4.type GAUGE
{datarow}V6.info Current IPv6 {datarow} sessions
{datarow}V6.label IPv6
{datarow}V6.draw AREASTACK
{datarow}V6.type GAUGE
{datarow}Current.info Current total {datarow} sessions
{datarow}Current.label Total
{datarow}Current.draw LINE1
{datarow}Current.type GAUGE
{datarow}Current.colour 000000
{datarow}Max.info Max. {datarow} sessions supported by the device(s)
{datarow}Max.label Max
{datarow}Max.draw LINE0
{datarow}Max.type GAUGE
""".format(datarow=datarow, hostname=hostname, title=title, args=args, vlabel=vlabel, node=node))

    def execute(self):
        devices, data = self.get_data()
        print("multigraph juniper_flow")
        for suffix, node in devices.items():
            print("flow_%s.value %s"
                  % (node, data.get(jnxJsSPUMonitoringCurrentFlowSession + suffix, 0)))

        for suffix, node in devices.items():
            print("multigraph juniper_flow.%s" % node)
            print("flowV4.value %s" % data.get(jnxJsSPUMonitoringFlowSessIPv4 + suffix, 0))
            print("flowV6.value %s" % data.get(jnxJsSPUMonitoringFlowSessIPv6 + suffix, 0))
            print("flowCurrent.value %s"
                  % data.get(jnxJsSPUMonitoringCurrentFlowSession + suffix, 0))
            print("flowMax.value %s" % data.get(jnxJsSPUMonitoringMaxFlowSession + suffix, 0))

        print("multigraph juniper_cp")
        for suffix, node in devices.items():
            print("cp_%s.value %s"
                  % (node, data.get(jnxJsSPUMonitoringCurrentCPSession + suffix, 0)))

        for suffix, node in devices.items():
            print("multigraph juniper_cp.%s" % node)
            print("cpV4.value %s" % data.get(jnxJsSPUMonitoringCPSessIPv4 + suffix, 0))
            print("cpV6.value %s" % data.get(jnxJsSPUMonitoringCPSessIPv6 + suffix, 0))
            print("cpCurrent.value %s" % data.get(jnxJsSPUMonitoringCurrentCPSession + suffix, 0))
            print("cpMax.value %s" % data.get(jnxJsSPUMonitoringMaxCPSession + suffix, 0))


c = JunOSSnmpClient(host, port, community)


if "snmpconf" in sys.argv[1:]:
    print("require %s" % (jnxJsSPUMonitoringObjectsTable, ))
    sys.exit(0)
else:
    if not (host and port and community):
        print("# Bad configuration. Cannot run with Host=%s, port=%s and community=%s"
              % (host, port, community), file=sys.stderr)
        sys.exit(1)

    if "config" in sys.argv[1:]:
        c.print_config()
    else:
        c.execute()