Re: [mrtg] Large Master Config Vulnerability

#1 (**permalink**) 04-17-2008

This is a multi-part message in MIME format.

--===============1014657637==
Content-Class: urn:content-classes:message
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01C8A0AE.172B7D5E"
Content-Transfer-Encoding: 7bit

This is a multi-part message in MIME format.

------_=_NextPart_001_01C8A0AE.172B7D5E
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

I have all my configs in one directory and run mrtg as a cron job with
the following script.
=20
#! /bin/bash
=20
for fn in /etc/mrtg/*.cfg; do
env LANG=3DC /usr/bin/mrtg "$fn" &
done
=20
Maybe this will would for you. I have been down the include route and I
agree it does cause problems.
=20

________________________________

From: mrtg-bounces@lists.oetiker.ch
[mailto:mrtg-bounces@lists.oetiker.ch] On Behalf Of Anson Rinesmith
Sent: Thursday, April 17, 2008 11:47 AM
To: 'Brad Lodgen'; mrtg@lists.oetiker.ch
Subject: Re: [mrtg] Large Master Config Vulnerability

You could always limit the number of retries.

A second option is to break up the master config file into other smaller
files, and therefore when something breaks only that smaller portion is
broken and the rest of your polls proceed without error.

=20

________________________________

From: mrtg-bounces@lists.oetiker.ch
[mailto:mrtg-bounces@lists.oetiker.ch] On Behalf Of Brad Lodgen
Sent: Thursday, April 17, 2008 11:39 AM
To: mrtg@lists.oetiker.ch
Subject: [mrtg] Large Master Config Vulnerability

=20

Hi everyone,

I'm running a master config with hundreds of include lines and thousands
of targets. This type of setup is vulnerable to errors in config files
and/or changes made in the field not being immediately updated within
the configs. If there are a few errors or changes out in the field to
ports causing them to become 'unpollable', it causes the MRTG polling
interval to go over five minutes because it's retrying those interfaces.
At the moment, with only about 30 error lines in my log(equating to
about 15 interfaces/targets), it's causing MRTG to take 7-9 minutes to
complete polling. As this is a very small percentage compared to the
total amount of targets being polled, I'm trying to figure out a way to
get around this, if possible, or at least to minimize the effects.

Is anyone else running a system like this or does anyone have
suggestions to try?

Thanks in advance for any help!
Brad

Please consider the environment before printing this e-mail.

CONFIDENTIAL NOTICE:
This e-mail message and any attachment(s) (collectively, this 'Email') =
are intended
only for the confidential use of the recipient(s) named above. If the =
reader of this
message is not the intended recipient named above or an agent =
responsible for
delivering it to the intended recipient named above, you have received =
this Email in error.
Please notify the sender immediately and permanently delete this Email =
and any copies thereof.

------_=_NextPart_001_01C8A0AE.172B7D5E
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML xmlns=3D"http://www.w3.org/TR/REC-html40" xmlns:v =3D=20
"urn:schemas-microsoft-com:vml" xmlns:o =3D=20
"urn:schemas-microsoft-com:office:office" xmlns:w =3D=20
"urn:schemas-microsoft-com:office:word"><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<META content=3D"MSHTML 6.00.2900.3268" name=3DGENERATOR>
<STYLE>@font-face {
font-family: Tahoma;
}
@page Section1 {size: 8.5in 11.0in; margin: 1.0in 1.25in 1.0in 1.25in; }
P.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"
}
LI.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"
}
DIV.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0in 0in 0pt; FONT-FAMILY: "Times New Roman"
}
A:link {
COLOR: blue; TEXT-DECORATION: underline
}
SPAN.MsoHyperlink {
COLOR: blue; TEXT-DECORATION: underline
}
A:visited {
COLOR: purple; TEXT-DECORATION: underline
}
SPAN.MsoHyperlinkFollowed {
COLOR: purple; TEXT-DECORATION: underline
}
SPAN.EmailStyle17 {
COLOR: navy; FONT-FAMILY: Arial; mso-style-type: personal-reply
}
DIV.Section1 {
page: Section1
}
</STYLE>
</HEAD>
<BODY lang=3DEN-US vLink=3Dpurple link=3Dblue>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008>I have all my configs in one directory and =
run mrtg as=20
a cron job with the following script.</SPAN></FONT></DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008></SPAN></FONT> </DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008>#! /bin/bash</SPAN></FONT></DIV>
<DIV> </DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008>for fn in /etc/mrtg/*.cfg;=20
do<BR>        env LANG=3DC =
/usr/bin/mrtg "$fn"=20
&<BR>done</SPAN></FONT></DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008></SPAN></FONT> </DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008>Maybe this will would for you.  I have =
been down=20
the include route and I agree it does cause =
problems.</SPAN></FONT></DIV>
<DIV dir=3Dltr align=3Dleft><FONT face=3DArial color=3D#0000ff =
size=3D2><SPAN=20
class=3D375220917-17042008></SPAN></FONT> </DIV><BR>
<DIV class=3DOutlookMessageHeader lang=3Den-us dir=3Dltr align=3Dleft>
<HR tabIndex=3D-1>
<FONT face=3DTahoma size=3D2><B>From:</B> mrtg-bounces@lists.oetiker.ch=20
[mailto:mrtg-bounces@lists.oetiker.ch] <B>On Behalf Of </B>Anson=20
Rinesmith<BR><B>Sent:</B> Thursday, April 17, 2008 11:47 =
AM<BR><B>To:</B> 'Brad=20
Lodgen'; mrtg@lists.oetiker.ch<BR><B>Subject:</B> Re: [mrtg] Large =
Master Config=20
Vulnerability<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV class=3DSection1>
<P class=3DMsoNormal><FONT face=3DArial color=3Dnavy size=3D2><SPAN=20
style=3D"FONT-SIZE: 10pt; COLOR: navy; FONT-FAMILY: Arial">You could =
always limit=20
the number of retries.<o:p></o:p></SPAN></FONT></P>
<P class=3DMsoNormal><FONT face=3DArial color=3Dnavy size=3D2><SPAN=20
style=3D"FONT-SIZE: 10pt; COLOR: navy; FONT-FAMILY: Arial">A second =
option is to=20
break up the master config file into other smaller files, and therefore =
when=20
something breaks only that smaller portion is broken and the rest of =
your polls=20
proceed without error.<o:p></o:p></SPAN></FONT></P>
<P class=3DMsoNormal><FONT face=3DArial color=3Dnavy size=3D2><SPAN=20
style=3D"FONT-SIZE: 10pt; COLOR: navy; FONT-FAMILY: =
Arial"><o:p> </o:p></SPAN></FONT></P>
<DIV>
<DIV class=3DMsoNormal style=3D"TEXT-ALIGN: center" align=3Dcenter><FONT =

face=3D"Times New Roman" size=3D3><SPAN style=3D"FONT-SIZE: 12pt">
<HR tabIndex=3D-1 align=3Dcenter width=3D"100%" SIZE=3D2>
</SPAN></FONT></DIV>
<P class=3DMsoNormal><B><FONT face=3DTahoma size=3D2><SPAN=20
style=3D"FONT-WEIGHT: bold; FONT-SIZE: 10pt; FONT-FAMILY: =
Tahoma">From:</SPAN></FONT></B><FONT=20
face=3DTahoma size=3D2><SPAN style=3D"FONT-SIZE: 10pt; FONT-FAMILY: =
Tahoma">=20
mrtg-bounces@lists.oetiker.ch [mailto:mrtg-bounces@lists.oetiker.ch] =
<B><SPAN=20
style=3D"FONT-WEIGHT: bold">On Behalf Of </SPAN></B>Brad =
Lodgen<BR><B><SPAN=20
style=3D"FONT-WEIGHT: bold">Sent:</SPAN></B> Thursday, April 17, 2008 =
11:39=20
AM<BR><B><SPAN style=3D"FONT-WEIGHT: bold">To:</SPAN></B>=20
mrtg@lists.oetiker.ch<BR><B><SPAN style=3D"FONT-WEIGHT: =
bold">Subject:</SPAN></B>=20
[mrtg] Large Master Config =
Vulnerability</SPAN></FONT><o:p></o:p></P></DIV>
<P class=3DMsoNormal><FONT face=3D"Times New Roman" size=3D3><SPAN=20
style=3D"FONT-SIZE: 12pt"><o:p> </o:p></SPAN></FONT></P>
<P class=3DMsoNormal><FONT face=3D"Times New Roman" size=3D3><SPAN=20
style=3D"FONT-SIZE: 12pt">Hi everyone,<BR><BR>I'm running a master =
config with=20
hundreds of include lines and thousands of targets. This type of setup =
is=20
vulnerable to errors in config files and/or changes made in the field =
not being=20
immediately updated within the configs. If there are a few errors or =
changes out=20
in the field to ports causing them to become 'unpollable', it causes the =
MRTG=20
polling interval to go over five minutes because it's retrying those =
interfaces.=20
At the moment, with only about 30 error lines in my log(equating to =
about 15=20
interfaces/targets), it's causing MRTG to take 7-9 minutes to complete =
polling.=20
As this is a very small percentage compared to the total amount of =
targets being=20
polled, I'm trying to figure out a way to get around this, if possible, =
or at=20
least to minimize the effects.<BR><BR>Is anyone else running a system =
like this=20
or does anyone have suggestions to try?<BR><BR>Thanks in advance for any =

help!<BR>Brad<o:p></o:p></SPAN></FONT></P></DIV><p></p><p>Please =
consider the environment before printing this e-mail. <br><br> =
CONFIDENTIAL NOTICE:<br>This e-mail message and any attachment(s) =
(collectively, this 'Email') are intended <br>only for the confidential =
use of the recipient(s) named above. If the reader of this <br>message =
is not the intended recipient named above or an agent responsible for =
<br>delivering it to the intended recipient named above, you have =
received this Email in error. <br>Please notify the sender immediately =
and permanently delete this Email and any copies thereof.</BODY></HTML>

------_=_NextPart_001_01C8A0AE.172B7D5E--

--===============1014657637==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
mrtg mailing list
mrtg@lists.oetiker.ch
https://lists.oetiker.ch/cgi-bin/listinfo/mrtg

--===============1014657637==--

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode