SNMPGET Timeout: No Response from
 

Hi,
I'm running crasy. i just finish a nagios installation.
Everything run fine until i decide to monitor my AS400.

I'm getting the following error when i run the following command from my Nagios server (CentOS 6.4 64bit, SElinux disabled):
The same command on a switch , it's ok
From my windows station i get a positive reply:
The AS400 return a filtered UDP port on 161 from nmap but i don't thing it should be an issue since i get an answer from my windows workstation.
I also try to poweroff my nagios and set my windows station with the ip of Nagios...and it's work !

All hosts are on the same LAN, the only difference is that Nagios is hosted on VMware ESXi 4.1.

Any idea would be gratefully appreciated !

Laurent

No need for that.


No need for being root either.


No need to do that either...


Firewall on the AS400?

Hi unSpawn,

i wanted to make it functional first then run as is should be, and at it was at first (permissive SElinux, logged as user).

If it were a firewall issue on the AS400, then i shouldn't be able to run a snmpget command from another box that had, temporally, the same IP of my nagios box ? am i right ?
Well as i said, when i tryed with my windows box, it's work !
AS400 IP: 10.84.1.11/22
original Nagios IP: 10.84.1.39/22
Windows box IP: 10.84.3.232/22

i did:
1-poweroff nagios
2-change windows box from 10.84.3.232/22 to 10.84.1.39/22
3-run the following command from my windows box and get a result:
4-change back windows box to original from 10.84.1.39/22 to 10.84.3.232/22
5-start my nagios box, run again the command and get this result:
I will test today with 2 other distro (Fedora and Debian) from the same LAN.

Laurent

How about selective IP filtering then? ;-p After all "filtered" means filtered. (Dunno if snmpd would honour tcp wrappers or if your AS/400 has any.) Maybe check and describe what access restrictions your AS/400 actually has (if any) instead of doing remote checks only?

Hi unSpawn, Thanks for the feedback.
I check and the AS400 do have a trap setup with a public community. I even created a new one 'nagios' setting up the ip of my nagios box. but still dramatically failed from my nagios box and success from my windows box.
I test also the snmpget from another workstation, feroda 18 and centos 6.4, but still failed, even i give them the ip of my windows box.

so, following your advise, i found this link , i will carefully read it and check those setting on my AS400.

"i'll be back"

Solved
 

I finally found the reason why i did have the time out while querying SNMP on my AS400.
First the nagios OS firewall was still ON while i thought i did actually stop it for the test.
Second point the AS400 did not actually reply to SNMP using the port UDP:161.

I realized that when i wanted to analyzed the network packet from my nagios box to the AS400 using tcpdump.
i get this at first:
I saw that the AS400(10.84.1.11) reply to the SNMP query using a different UDP port than 161, while other device replied to UDP:161, like this one:
Solution: i temporally add a new input rule on the nagios box iptables that allow any incoming UDP packet from my AS400 IP Address.

Now i have to found out why my AS400 do not reply from the port UDP:161.
Thanks to all for the reply anyway.