Forum @ Linux.Or.Id

by **Fish** » Mon Nov 21, 2005 11:29 am

guna export MIBFILES="/etc/squid/mib.txt" apa ya ???

biar squid bisa di baca oleh snmp

itu sepertinya cacti nya ngga bisa create rrdnya,
coba cek permission nya, di sesuaikan dgn user pollernya
pas crontab.

by **schatje** » Tue Nov 22, 2005 3:54 pm

drwxr-xr-x 2 cacti cacti 4096 Jul 1 11:45 log
drwxr-xr-x 2 cacti cacti 4096 Nov 4 10:20 rra

untuk traffic lain, vsat dan localhost bisa jalan, tapi untuk squid saja yang masalah, saya liat dibagian device ada tulisan SNMP error, tapi ketika saya coba snmpwalk ke port 3401 nggak ada masalah, berikut cuplikannya:

[root@proxy htb]# snmpwalk -civo -v1 192.168.xx.253:3401 .1.3.6.1.4.1.3495.1
SQUID-MIB::cacheSysVMsize.0 = INTEGER: 74860
SQUID-MIB::cacheSysStorage.0 = INTEGER: 6695184
SQUID-MIB::cacheUptime.0 = Timeticks: (10498959) 1 day, 5:09:49.59
SQUID-MIB::cacheAdmin.0 = STRING: xxzcxx@royalperspective.com
SQUID-MIB::cacheSoftware.0 = STRING: squid
SQUID-MIB::cacheVersionId.0 = STRING: "2.5.STABLE10"
SQUID-MIB::cacheLoggingFacility.0 = STRING: ALL,1
....
SQUID-MIB::cacheClientAddr.192.168.xx.190 = IpAddress: 192.168.xx.190
SQUID-MIB::cacheClientAddr.192.168.xx.109 = IpAddress: 192.168.xx.109
Error: OID not increasing: SQUID-MIB::cacheClientAddr.192.168.xx.190
>= SQUID-MIB::cacheClientAddr.192.168.xx.109

Ada ide lain lagi, kira2 apanya penyebab error diatas ??

Thanks
Schatje

by **Fish** » Tue Nov 22, 2005 9:56 pm

kalo poller nya cacti di jalanin manual ada keluar error ngga ?
btw itu untuk squid terpisah device nya ?
kalo menurut kata bung masterpop3, itu lebih baik jadi
satu dengan device host yg sudah ada, dalam artian mending
untuk squid dibikin device yg standar ( port 161, ngga usah 3401 )
bukan di squid.conf nya lho! tapi di bagian device, jadi skalian
trap interface juga bisa karena nantinya untuk trap squid
melalui snmpd.conf. lebih pas lagi net-snmp nya yg versi
5.1.3.1 ke atas, soalnya aku punya masalah gara2 pake
net-snmp 5.1... hehehe

by **mqueue** » Tue May 23, 2006 10:12 am

Mungkin webservernya belum diinstall dgn benar atau konfigurasi httpd.conf dan atau peletakkan direktori cacti tidak sesuai.
NTOP atau Webmin menggunakan port yg unik.

by **battossai** » Fri Jun 16, 2006 5:09 pm

masalah gua lain ....
so far kayaknya udah bener ... cuman
snmp squid lom bisa diterima mesin cacti ...
kl saya coba snmpwalk dari mesin squid ... ok
kl snmpwalk dari mesin cacti ... timeout no response

kira2 apa ya ??? mungkin ngga karena cacti di lingkungan https ???

mohon infonya,

by **Fish** » Fri Jun 16, 2006 10:47 pm

di conf squid nya sudah di set untuk snmp nya belum ?

by **battossai** » Sat Jun 17, 2006 11:54 am

Fish wrote:di conf squid nya sudah di set untuk snmp nya belum ?

sudah pak ... aku snmpwalk dari mesin squid udah ada hasilnya kok ...
masalah nya sih mesin cacti lom bisa terima ....

thanks

by **Fish** » Sat Jun 17, 2006 12:44 pm

nah ip mesin cacti sudah di allow di squid.conf belum ?

by **battossai** » Mon Jun 19, 2006 4:56 pm

udah terselesaikan .....
salahnya aku minta mesin cacti untuk capture paket snmp squid di port 3401
atas panduan pak guru firewaxx aku ganti port 161 .... hehehehhe

thanks everybody

by **Fish** » Sat Jul 08, 2006 3:38 am

buat yg masih penasaran cara menginstall snmp :

Code: Select all: [ <pts/0> root@tequila ~ ]# tar zxvf net-snmp-5.1.3.tar.gz [ <pts/0> root@tequila ~ ]# cd net-snmp-5.1.3 [ <pts/0> root@tequila net-snmp-5.1.3 ]# ./configure --prefix=/usr \ --sysconfdir=/etc \ --with-libwrap \ --with-perl-modules \ --with-default-snmp-version="3" \ --with-sys-contact="nobody@nowhere.org" \ --with-sys-location="somewhere" \ --with-logfile="/var/log/snmpd.log" \ --with-persistent-directory="/var/net-snmp" [ <pts/0> root@tequila net-snmp-5.1.3 ]# make && make install ... lots of output ... [ <pts/0> root@tequila net-snmp-5.1.3 ]# mkdir /etc/snmp [ <pts/0> root@tequila net-snmp-5.1.3 ]# cd /etc/snmp [ <pts/0> root@tequila /etc/snmp ]# touch snmpd.conf

berikut contoh snmpd.conf menyesuaikan settingan utk squid :

Code: Select all: com2sec local localhost public com2sec mynetwork aaa.aaa.aaa.aaa/aa public group MyRWGroup v1 local group MyRWGroup v2c local group MyRWGroup usm local group MyROGroup v1 mynetwork group MyROGroup v2c mynetwork group MyROGroup usm mynetwork view all included .1 80 access MyROGroup "" any noauth exact all none none access MyRWGroup "" any noauth exact all all none syslocation somewhere syscontact nobody@nowhere.org proxy -v 1 -c public localhost:3401 .1.3.6.1.4.1.3495.1

yg lebih sederhana lagi :

Code: Select all: rwcommunity public localhost rocommunity public aaa.aaa.aaa.aaa/aa syslocation somewhere syscontact nobody@nowhere.org proxy -v 1 -c public localhost:3401 .1.3.6.1.4.1.3495.1

jalankan snmp daemon dengan perintah :

Code: Select all: [ <pts/0> root@tequila /etc/snmp ]# /usr/sbin/snmpd

kemudian test apakah snmp sudah berjalan

Code: Select all: [ <pts/0> root@tequila /etc/snmp ]# snmpwalk -v1 -c public localhost

kalau sukses keluar output macam gini :

Code: Select all: SNMPv2-MIB::sysDescr.0 = STRING: OpenBSD Purwosari.netindoo.co.id 3.9 Antares#2 i386 SNMPv2-MIB::sysObjectID.0 = OID: NET-SNMP-MIB::netSnmpAgentOIDs.255 DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (105490375) 12 days, 5:01:43.75 SNMPv2-MIB::sysContact.0 = STRING: nobody@nowhere.org SNMPv2-MIB::sysName.0 = STRING: Purwosari.netindoo.co.id SNMPv2-MIB::sysLocation.0 = STRING: somewhere SNMPv2-MIB::sysORLastChange.0 = Timeticks: (32) 0:00:00.32 ... lots of output ...

brati sudah sukses .. kalo belum coba cek di snmpd.log nya
note : rw utk read and write, ro utk read only. sesuaikan ip dan community auth nya dengan kebutuhan anda

by **ree_bood** » Thu Aug 31, 2006 11:16 pm

thx semuanya yaa bosss sekarang cactiku dah bisa buat ngetrap squid nya. mantap dehh

OpenBSD 3.9
Squid 2.5.STABLE14
mysql-server-5.0.21
cacti-0.8.6h
SquidStats v0.1

mantapp dahhhh..... :-)

by **badboy** » Sat Nov 11, 2006 3:35 pm

Thanks nih, cacti untuk squidnya udah berhasil di implementasikan :-)

by **slackware** » Thu Feb 08, 2007 11:12 pm

mas fish saya udah mencoba install seperti yang mas fish ajarkan
tetapi mengapa begini ya ..

[<pts> root@proxy /root]$ /usr/bin/snmpwalk -v1 -c public localhost
Timeout: No Response from localhost
[<pts> root@proxy /root]$ /usr/bin/snmpwalk -v1 -c public 127.0.0.1
Timeout: No Response from 127.0.0.1

[<pts> root@proxy /root]$ /usr/bin/snmpwalk -v 1 -c public localhost .1.3.6.1.4.1.2021.100.6.0
Timeout: No Response from localhost
[<pts> root@proxy /root]$

by **Fish** » Fri Feb 09, 2007 1:23 am

snmpd nya dah running ? trus config nya dah bener ?
biasanya kalau no respon ya kalau ngga blun running
snmpdnya ya config nya ada yg salah atau mungkin
firewall ?

by **slackware** » Fri Feb 09, 2007 1:28 am

ini mas saya coba ya :

[<pts> root@proxy /root]$ ps aux|grep snmpd
root 1244 0.0 0.9 4184 2364 ? S Feb08 0:00 /usr/sbin/snmpd -c /etc/snmpd.conf
root 1399 0.0 0.2 1884 604 pts/0 R+ 01:24 0:00 grep snmpd
[<pts> root@proxy /root]$

trus :

[<pts> root@proxy /root]$ cat /etc/snmpd.conf
com2sec local localhost public
com2sec mynetwork 192.168.93.0/27 public

group MyRWGroup v1 local
group MyRWGroup v2c local
group MyRWGroup usm local
group MyROGroup v1 mynetwork
group MyROGroup v2c mynetwork
group MyROGroup usm mynetwork

view all included .1 80

access MyROGroup ** any noauth exact all none none
access MyRWGroup ** any noauth exact all all none

syslocation Karanganyar City
syscontact namaku@andiajikristian.com

proxy -v 1 -c public localhost:3401 .1.3.6.1.4.1.3495.1
[<pts> root@proxy /root]$

trus :

[<pts> root@proxy /root]$ netstat -pln
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:37 0.0.0.0:* LISTEN 893/inetd
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 1146/httpd
tcp 0 0 0.0.0.0:113 0.0.0.0:* LISTEN 1053/oidentd
tcp 0 0 0.0.0.0:8022 0.0.0.0:* LISTEN 898/sshd
tcp 0 0 192.168.93.1:2007 0.0.0.0:* LISTEN 1154/named
tcp 0 0 222.124.162.187:2007 0.0.0.0:* LISTEN 1154/named
tcp 0 0 127.0.0.1:2007 0.0.0.0:* LISTEN 1154/named
tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 1061/(squid)
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 1154/named
udp 0 0 0.0.0.0:512 0.0.0.0:* 893/inetd
udp 0 0 0.0.0.0:1025 0.0.0.0:* 1154/named
udp 0 0 0.0.0.0:161 0.0.0.0:* 1244/snmpd
udp 0 0 0.0.0.0:37 0.0.0.0:* 893/inetd
udp 0 0 0.0.0.0:3130 0.0.0.0:* 1061/(squid)
udp 0 0 0.0.0.0:3401 0.0.0.0:* 1061/(squid)
udp 0 0 192.168.93.1:2007 0.0.0.0:* 1154/named
udp 0 0 222.124.162.187:2007 0.0.0.0:* 1154/named
udp 0 0 127.0.0.1:2007 0.0.0.0:* 1154/named
udp 0 0 0.0.0.0:4827 0.0.0.0:* 1061/(squid)
Active UNIX domain sockets (only servers)
Proto RefCnt Flags Type State I-Node PID/Program name Path
unix 2 [ ACC ] STREAM LISTENING 2275 924/acpid /var/run/acpid.socket
unix 2 [ ACC ] STREAM LISTENING 2527 1129/mysqld /tmp/mysql.sock
[<pts> root@proxy /root]$

mungkin ada yang salah dengan itu mas ??...

untuk firewall nya :

for PORT_UDP_accept in 113 2007 3401 888 5000:5100 6891:6900
do
iptables -A udp_inbound -p UDP -s 0/0 --dport $PORT_UDP_accept -j ACCEPT
done
iptables -A udp_inbound -p UDP -j RETURN

mohon revisinya ... >:o

apa mungkin port 161 perlu di buka ?

Forum @ Linux.Or.Id

TRAP SQUID PROSES dengan CACTI

uuhuiiii akhirnya squid ku bisa ditrap dari cacti

Who is online