Hi
When running ./poller.php -v -h 10.0.0.6 -m cisco-ipsec-flow-monitor | grep ActiveTunnels
I get the following output
cipSecGlobalActiveTunnels.0 = 34
but LibreNMS only lists 4 active tunnels.
IPSEC Tunnels (4)
When running ./poller.php -v -h 10.0.0.6 -m cipsec-tunnels
I get the following output:
SQL[SELECT * FROM ipsec_tunnels
WHERE device_id
= ‘2’]
Tunnel 464 ()
Address
Tunnel 489 ()
Address
Tunnel 599 ()
Address
Tunnel 600 ()
Address
Tunnel 611 ()
Address
Tunnel 612 ()
Address
Tunnel 634 ()
Address
Tunnel 654 ()
Address
Tunnel 671 ()
Address
Tunnel 679 ()
Address
Tunnel 686 ()
Address
Tunnel 687 ()
Address
Tunnel 689 ()
Address
Tunnel 715 ()
Address
Tunnel 720 (62862)
Address 1.2.3.4
SQL[UPDATE ipsec_tunnels
set tunnel_status
=‘active’,tunnel_name
=RO01.net’,local_addr
=‘2.3.4.5’ WHERE tunnel_id
= ‘103230’]
HC RRD[update /opt/librenms/rrd/10.0.0.6/ipsectunnel-2.3.4.5.rrd N:1090265:1090265:14567:0:0:14567:0:14567:0:1303633:1303633:14569:1:14569:0:14569:0]
RRDtool Output: OK u:0.00 s:0.00 r:0.46
OK u:0.00 s:0.00 r:3.03
Tunnel 721 (62864)
Address 077.234.176.067
SQL[UPDATE ipsec_tunnels
set tunnel_status
=‘active’,tunnel_name
=‘RO01.net’,local_addr
=‘x.y.z’ WHERE tunnel_id
= ‘103231’]
HC RRD[update /opt/librenms/rrd/10.0.0.6/ipsectunnel-x.y.z.rrd N:35598679:35598679:158748:0:0:158748:0:158748:0:1303211:1303211:14565:1:14565:0:14565:0]
RRDtool Output: OK u:0.00 s:0.00 r:3.04
Tunnel 725 (63044)
Address x.y.z
SQL[UPDATE ipsec_tunnels
set tunnel_status
=‘active’,tunnel_name
=‘RO01.net’,local_addr
=‘x.y.z’ WHERE tunnel_id
= ‘106612’]
HC RRD[update /opt/librenms/rrd/10.0.0.6/ipsectunnel-x.y.z.rrd N:467781:467781:6250:0:0:6250:0:6250:0:562045:562045:6248:1:6248:0:6248:0]
RRDtool Output: OK u:0.00 s:0.00 r:3.06
Tunnel 726 (63124)
Address x.y.z
SQL[UPDATE ipsec_tunnels
set tunnel_status
=‘active’,tunnel_name
=‘RO01.net’,local_addr
=‘x.y.z’ WHERE tunnel_id
= ‘108633’]
HC RRD[update /opt/librenms/rrd/10.0.0.6/ipsectunnel-x.y.z.rrd N:195176:195176:2607:0:0:2607:0:2607:0:238797:238797:2666:1:2666:0:2666:0]
RRDtool Output: OK u:0.00 s:0.00 r:3.08
Array
(
[0] => 103230
[1] => 103231
[2] => 106612
[3] => 108633
)
SQL[DELETE FROM ipsec_tunnels
WHERE tunnel_id
NOT IN (103230,103231,106612,108633) AND device_id
=‘2’]
Seems like only 4 tunnels have IP adresses, even though that isn’t the case.
==========================================================
Component | Version |
---|---|
LibreNMS | 737865c94f9ac5f5874c71db7cbe91823601570d |
DB Schema | 182 |
PHP | 7.0.15-0ubuntu0.16.04.4 |
MySQL | 5.7.17-0ubuntu0.16.04.2 |
RRDTool | 1.5.5 |
SNMP | NET-SNMP 5.7.3 |
==========================================================
[OK] Database connection successful
[WARN] Your local git branch is not master, this will prevent automatic updates.
------------- New Comment ---------------
Seems like the ipsec tunnel should check for
cipSecTunStatus.464 = active
cipSecTunStatus.489 = active
cipSecTunStatus.599 = active
cipSecTunStatus.600 = active
cipSecTunStatus.611 = active
cipSecTunStatus.612 = active
cipSecTunStatus.634 = active
cipSecTunStatus.654 = active
cipSecTunStatus.671 = active
cipSecTunStatus.679 = active
cipSecTunStatus.686 = active
cipSecTunStatus.687 = active
cipSecTunStatus.689 = active
cipSecTunStatus.715 = active
cipSecTunStatus.720 = active
cipSecTunStatus.721 = active
cipSecTunStatus.730 = active
cipSecTunStatus.736 = active
instead of
cipSecTunIkeTunnelAlive.464 = false
cipSecTunIkeTunnelAlive.489 = false
cipSecTunIkeTunnelAlive.599 = false
cipSecTunIkeTunnelAlive.600 = false
cipSecTunIkeTunnelAlive.611 = false
cipSecTunIkeTunnelAlive.612 = false
cipSecTunIkeTunnelAlive.634 = false
cipSecTunIkeTunnelAlive.654 = false
cipSecTunIkeTunnelAlive.671 = false
cipSecTunIkeTunnelAlive.679 = false
cipSecTunIkeTunnelAlive.686 = false
cipSecTunIkeTunnelAlive.687 = false
cipSecTunIkeTunnelAlive.689 = false
cipSecTunIkeTunnelAlive.715 = false
cipSecTunIkeTunnelAlive.720 = false
cipSecTunIkeTunnelAlive.721 = false
cipSecTunIkeTunnelAlive.730 = true
cipSecTunIkeTunnelAlive.736 = true