Low-level discovery is used to discover dynamic items, for example, you can’t monitor disk space usage of a volume by static binding, because the index number of the volume is dynamic.
The customized application in this example, is a shell script to check database and web service, it outputs to stdout, which follows “key=value” format and it contains with string and numeric values.
db-status= [OK]
web-status=[OK]: http-code: 200
web-time=42
db-time=40
The goal is to create monitoring entry and trigger for each item automatically
Execute the script by SNMP
Net-snmp allows you to execute any arbitrary command by “exec” parameter. Edit /etc/snmp/snmpd.conf and map OID to the script. exec .1.3.6.1.4.1.2021.200 testscript1 /usr/local/bin/script1.sh The lines of output are in MIBIOD.101.x ( .1.3.6.1.4.1.2021.200.101), which can be retrieved by snmpwalk on .1.3.6.1.4.1.2021.200.101
What is Low Level discovery?
https://www.zabbix.com/documentation/2.0/manual/discovery/low_level_discovery
Discovery of SNMP OIDs
It is possible to automatically add the script by SNMP OID LLD, but it has drawbacks: once LLD is completed, the 4 lines of output will be added as 4 items, each value of item is retrieved by snmpget, which means the script will be executed 4 times.
Discovery item JSON format
https://www.zabbix.com/documentation/2.0/manual/discovery/low_level_discovery
Zabbix also supports LLD by parsing output in JSON format. This method can overcome the drawbacks of SNMP OID LLD, the idea is to run an external script to do snmpwalk on the OID then save outputs to a text file on local server, the other script retrieve value of each item by simply reading the text file. This script will be still executed 4 times, but it is executed locally and doesn’t do remote connections.
There are two scripts to execute snmpwalk for different output values, one for string and the other for numeric. If you don’t need to do graphing of the numeric value, one script is enough.
#retrieve string values with “-s” and output in JSON format#The macro name KEY/VALUE is arbitrary[root@zabbix:externalscripts]# ./snmpwalk.pl -s server1{"data":[{"{#KEY}":"db-status","{#VALUE}":" [OK]"},{"{#KEY}":"web-status","{#VALUE}":"[OK]: http-code: 200"}]}
#Item prototype details for scripts-getstringoutput
Column “Name” is _{#KEY}, {#KEY} is macro in JSON output, _ is just simply prefixed to make it a valid name. Column “Key” (actually, it is value) is retrieved by getvalue.pl
[root@zabbix:externalscripts]#./getvalue.pl -s server1 web-status[OK]: http-code: 200
Just link the template to a host, the keys and values of the items will be discovered automatically.
LLD is such an amazing feature, even there are hundreds of items, they can be automatically discovered in few minutes.
Some tips in Zabbix implementation:
1) Define global macro for SNMP community string in administration->General->Macros, the macro can also be defined in template or host level.
2) Items won’t be updated straightaway after being added, it has to wait for next update specified in update interval
3) Define regular expressions in administration->General->Expressions
For example there are some virtual interfaces you want to exclude create regular expression called
“Real Adapters” with expression: (^lo$|^Microsoft|^RAS|^WAN|-0000$|^Teredo Tunneling|^Software Loopback|^sit)
And refer to the macro by @Real Adapters in the default “Template SNMP Interfaces”
The snmpwalk.pl script:
#!/usr/bin/perl -wuse warnings;use FileHandle;###---------- main ----------------------my ($cdir)=$0=~m|(.*)/|;my $type=$ARGV[0];my $host=$ARGV[1];my $oid='200.101';my $fname="${cdir}/logs/${host}";my $afname="${fname}a.out"; $ifname="${fname}i.out"; $sfname="${fname}s.out";my $timegap=120;if ( ! defined $host ) {print "hostname is required\n Usage: $0 [-i|-s] hostname \n";exit 1;}my $mtime = (stat($afname))[9];my $ctime=time;#no need to do snmpwalk, if the file is recentif ( ( ($ctime - $mtime) > $timegap ) or (! defined $mtime ) ) {@output=&snmprun ("$host", "$oid");map (s/^STRING: "//,@output);map (s/\"$//,@output);#all valuesopen(OUTFILE, ">$afname") or die "Can't write to $fname: $!";print OUTFILE @output;close (OUTFILE);#numberic valuesopen(OUTFILE, ">$ifname") or die "Can't write to $fname: $!";print OUTFILE grep(/.*=\s*\d+\.*\d+$/, @output);close (OUTFILE);#string valuesopen(OUTFILE, ">$sfname") or die "Can't write to $fname: $!";print OUTFILE grep(/.*=.*[a-zA-Z]/, @output);close (OUTFILE);}($type)=$type=~m/-(i|s)/;&printjson ( "${fname}${type}.out" );sub snmprun {my $host=$_[0];my $oid=$_[1];$ucdprefix='.1.3.6.1.4.1.2021.';$snmpwalk='/usr/bin/snmpwalk -v 2c -O v -c public';$fulloid=${ucdprefix}.${oid};@rt0=`$snmpwalk $host $fulloid 2>&1`;return @rt0;}#Read a file and print out in JSON formatsub printjson {$first = 1;open (INFILE,"$_[0]") or die "Can't open $_[0] $!";print "{\n";print "\t\"data\":[\n\n";while (<INFILE>){($key, $value) = split (/=/,$_,2);print "\t,\n" if not $first;$first = 0;print "\t{\n";print "\t\t\"{#KEY}\":\"$key\",\n";print "\t\t\"{#VALUE}\":\"$value\"\n";print "\t}\n";}print "\n\t]\n";print "}\n";}
The getvalue.pl script:
#!/usr/bin/perl -wuse warnings;use FileHandle;my $type=$ARGV[0];my $host=$ARGV[1];my $key=$ARGV[2];my ($cdir)=$0=~m|(.*)/|;my $timegap=600;if ( $#ARGV != 2 ) {print "\nUsage: [-i|-s} hostname key \n";exit 1;}($type)=$type=~m/-(i|s)/;$fname="${cdir}/logs/${host}${type}.out";open(INFILE, "<$fname") or die "Can't open $fname: $!";my $mtime = (stat($fname))[9];my $ctime=time;if ( ($ctime-$mtime) > $timegap ) {print "$key=<CRITICAL>: $fname hasn't been updated for > $timegap seconds, the outdated value will not be retrieved\n";exit 1}@lines=<INFILE>;@line1=grep(/$key=/, @lines);#print "@line1\n";if ( ! defined ( @line1 )) {print "key $key is not found in $fname\n";exit 1}($value)=$line1[0]=~m/$key=(.*)/;print "$value \n";
Posts
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.