Hey,
I'v been working non stop since I posted this thread [and allot longer before] and iv still got no where... well some where.. iv now got to the stage where i think its an authentication issue...
On the monitoring server I am currently recurving the bellow traps...
Code:
Fri Feb 3 16:35:09 GMT 2012
192.168.2.13
UDP: [192.168.2.13]:34163->[192.168.2.51]
iso.3.6.1.2.1.1.3.0 0:12:44:14.57
iso.3.6.1.6.3.1.1.4.1.0 iso.3.6.1.6.3.1.1.5.5
iso.3.6.1.6.3.1.1.4.3.0 iso.3.6.1.4.1.8072.3.2.10
Fri Feb 3 16:35:14 GMT 2012
192.168.2.13
UDP: [192.168.2.13]:34163->[192.168.2.51]
iso.3.6.1.2.1.1.3.0 0:12:44:14.57
iso.3.6.1.6.3.1.1.4.1.0 iso.3.6.1.6.3.1.1.5.5
iso.3.6.1.6.3.1.1.4.3.0 iso.3.6.1.4.1.8072.3.2.10
Fri Feb 3 16:35:25 GMT 2012
192.168.2.13
UDP: [192.168.2.13]:51625->[192.168.2.51]
iso.3.6.1.2.1.1.3.0 0:12:44:16.62
iso.3.6.1.6.3.1.1.4.1.0 iso.3.6.1.6.3.1.1.5.5
iso.3.6.1.6.3.1.1.4.3.0 iso.3.6.1.4.1.8072.3.2.10
Fri Feb 3 16:35:30 GMT 2012
192.168.2.13
UDP: [192.168.2.13]:51625->[192.168.2.51]
iso.3.6.1.2.1.1.3.0 0:12:44:16.62
iso.3.6.1.6.3.1.1.4.1.0 iso.3.6.1.6.3.1.1.5.5
iso.3.6.1.6.3.1.1.4.3.0 iso.3.6.1.4.1.8072.3.2.10
These basically translate into:
Code:
DISMAN-EVENT-MIB::sysUpTimeInstance 0:12:44:16.62
SNMPv2-MIB::snmpTrapOID.0 SNMPv2-MIB::authenticationFailure
SNMPv2-MIB::snmpTrapEnterprise.0 NET-SNMP-MIB::netSnmpAgentOIDs.10
Its the 'SNMPv2-MIB::snmpTrapOID.0 SNMPv2-MIB::authenticationFailure' bit that is giving it away for me :P
Dose anyone have any idea how to fix this???
My current train of thought is that its something to do with 'authCommunity log,execute,net public' in the snmptrapd.conf on the monitoring server..
or possibly the permissions on the snmpd.conf on the web-server
Code:
-rw------- 1 root root 4.9K 2012-02-03 03:36 snmpd.conf
if anyone can help here and stop me from going down the complete wrong track id be very grateful!!
Here is an update on what I currently have changed since my original post
On the web-server I have used 'sudo snmpconf -g basic_setup' again as I believe its the best chance of getting this thing working.
The output of this command is bellow
Code:
creature@newNode:/etc/snmp$ sudo cat snmpd.conf
[sudo] password for creature:
###########################################################################
#
# snmpd.conf
#
# - created by the snmpconf configuration program
#
###########################################################################
# SECTION: Trap Destinations
#
# Here we define who the agent will send traps to.
# trapsink: A SNMPv1 trap receiver
# arguments: host [community] [portnum]
trapsink 192.168.2.51 public
# trap2sink: A SNMPv2c trap receiver
# arguments: host [community] [portnum]
trap2sink 192.168.2.51 public
# informsink: A SNMPv2c inform (acknowledged trap) receiver
# arguments: host [community] [portnum]
informsink 192.168.2.51 public
# trapcommunity: Default trap sink community to use
# arguments: community-string
trapcommunity public
# authtrapenable: Should we send traps when authentication failures occur
# arguments: 1 | 2 (1 = yes, 2 = no)
authtrapenable 1
###########################################################################
# SECTION: Access Control Setup
#
# This section defines who is allowed to talk to your running
# snmp agent.
# rwuser: a SNMPv3 read-write user
# arguments: user [noauth|auth|priv] [restriction_oid]
rwuser creature auth
rwuser public auth
# rwcommunity: a SNMPv1/SNMPv2c read-write access community name
# arguments: community [default|hostname|network/bits] [oid]
rwcommunity public 192.168.2.51
###########################################################################
# SECTION: System Information Setup
#
# This section defines some of the information reported in
# the "system" mib group in the mibII tree.
# syslocation: The [typically physical] location of the system.
# Note that setting this value here means that when trying to
# perform an snmp SET operation to the sysLocation.0 variable will make
# the agent return the "notWritable" error code. IE, including
# this token in the snmpd.conf file will disable write access to
# the variable.
# arguments: location_string
syslocation project
# syscontact: The contact information for the administrator
# Note that setting this value here means that when trying to
# perform an snmp SET operation to the sysContact.0 variable will make
# the agent return the "notWritable" error code. IE, including
# this token in the snmpd.conf file will disable write access to
# the variable.
# arguments: contact_string
syscontact davd@the-ward-network.com
###########################################################################
# SECTION: Monitor Various Aspects of the Running Host
#
# The following check up on various aspects of a host.
# proc: Check for processes that should be running.
# proc NAME [MAX=0] [MIN=0]
#
# NAME: the name of the process to check for. It must match
# exactly (ie, http will not find httpd processes).
# MAX: the maximum number allowed to be running. Defaults to 0.
# MIN: the minimum number to be running. Defaults to 0.
#
# The results are reported in the prTable section of the UCD-SNMP-MIB tree
# Special Case: When the min and max numbers are both 0, it assumes
# you want a max of infinity and a min of 1.
proc httpd 1 1
proc ssh 1 5
# disk: Check for disk space usage of a partition.
# The agent can check the amount of available disk space, and make
# sure it is above a set limit.
#
# disk PATH [MIN=100000]
#
# PATH: mount path to the disk in question.
# MIN: Disks with space below this value will have the Mib's errorFlag set.
# Can be a raw integer value (units of kB) or a percentage followed by the %
# symbol. Default value = 100000.
#
# The results are reported in the dskTable section of the UCD-SNMP-MIB tree
disk /var 10%
disk / 10%
# load: Check for unreasonable load average values.
# Watch the load average levels on the machine.
#
# load [1MAX=12.0] [5MAX=12.0] [15MAX=12.0]
#
# 1MAX: If the 1 minute load average is above this limit at query
# time, the errorFlag will be set.
# 5MAX: Similar, but for 5 min average.
# 15MAX: Similar, but for 15 min average.
#
# The results are reported in the laTable section of the UCD-SNMP-MIB tree
load 15 10 5
I have also dropped the firewall on both the monitoring server and web-server using
Code:
creature@newNode:/etc/snmp$ sudo ufw disable
Firewall stopped and disabled on system startup