RE: Frustration with Disk Monitoring
This is a discussion on RE: Frustration with Disk Monitoring within the SNMP Users forums, part of the Networking and Network Related category; Good day, This is selinux complaining about access, not snmpd. You can either use selinux's audit2allow command to allow ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
12-15-2005
|
|||
|
|||
RE: Frustration with Disk Monitoring
Good day,
This is selinux complaining about access, not snmpd. You can either use selinux's audit2allow command to allow this access, = or set the selinux policy to let snmpd access whatever it needs (I know = there is a flag someplace just for the snmpd daemon). If you have any = further questions on this, they should be directed to a selinux forum. FYI, =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3 D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D Darren Gamble Planner, Regional Services Shaw Cablesystems GP 630 - 3rd Avenue SW Calgary, Alberta, Canada T2P 4L4 (403) 781-4948 =A0 -----Original Message----- From: net-snmp-users-admin@lists.sourceforge.net = [mailto:net-snmp-users-admin@lists.sourceforge.net] On Behalf Of = Palmadesso Jack IT743 Sent: Thursday, December 15, 2005 12:51 PM To: net-snmp-users@lists.sourceforge.net Subject: Frustration with Disk Monitoring Hello all,=20 =A0I've been messing around with the RHEL 4 installation of Net-SNMP and = after reading the docs ( man snmpd.conf ) I've tried to monitor the = disks on my system.=A0 Its been failing miserably with "token" = errors.=A0 I guessed that I need to compile my own version of net-snmp = so I did and did so with these options. ../configure --with-perl-modules --with-mib-modules=3D"disman/event-mib"=20 I was hoping that by using this it would work but now I'm getting = slightly different errors.=A0 Seems like progress though. Dec 15 14:45:20 w72l-tux kernel: audit(1134675920.917:0): avc:=A0 = denied=A0 { getattr } for=A0 pid=3D9101 exe=3D/usr/sbin/snmpd = path=3D/home dev=3Dhda4 ino=3D2 scontext=3Droot:system_r:snmpd_t = tcontext=3Dsystem_u:object_r:home_root_t tclass=3Ddir I really have no idea what it is complaining about.=A0 Can anybody tell = me ? Here is my snmpd.conf=20 ################################################## #######################= ##=20 #=20 # snmpd.conf=20 #=20 #=A0=A0 - created by the snmpconf configuration program=20 #=20 ################################################## #######################= ##=20 # SECTION: Trap Destinations=20 #=20 #=A0=A0 Here we define who the agent will send traps to.=20 # trap2sink: A SNMPv2c trap receiver=20 #=A0=A0 arguments: host [community] [portnum]=20 trap2sink=A0 netcool=20 trap2sink=A0 209.243.240.105=20 # informsink: A SNMPv2c inform (acknowledged trap) receiver=20 #=A0=A0 arguments: host [community] [portnum]=20 informsink=A0 209.243.240.105=20 # trapcommunity: Default trap sink community to use=20 #=A0=A0 arguments: community-string=20 trapcommunity=A0 SPG-UnxVisi0n=20 trapcommunity=A0 public=20 # authtrapenable: Should we send traps when authentication failures = occur=20 #=A0=A0 arguments: 1 | 2=A0=A0 (1 =3D yes, 2 =3D no)=20 authtrapenable=A0 1=20 ################################################## #######################= ##=20 # SECTION: System Information Setup=20 #=20 #=A0=A0 This section defines some of the information reported in=20 #=A0=A0 the "system" mib group in the mibII tree.=20 # syslocation: The [typically physical] location of the system.=20 #=A0=A0 Note that setting this value here means that when trying to=20 #=A0=A0 perform an snmp SET operation to the sysLocation.0 variable will = make=20 #=A0=A0 the agent return the "notWritable" error code.=A0 IE, including=20 #=A0=A0 this token in the snmpd.conf file will disable write access to=20 #=A0=A0 the variable.=20 #=A0=A0 arguments:=A0 location_string=20 syslocation=A0 "Siemens Power Generation"=20 # syscontact: The contact information for the administrator=20 #=A0=A0 Note that setting this value here means that when trying to=20 #=A0=A0 perform an snmp SET operation to the sysContact.0 variable will = make=20 #=A0=A0 the agent return the "notWritable" error code.=A0 IE, including=20 #=A0=A0 this token in the snmpd.conf file will disable write access to=20 #=A0=A0 the variable.=20 #=A0=A0 arguments:=A0 contact_string=20 syscontact=A0=A0=A0=A0=A0 "PG IT Root itroot@swpc.siemens.com"=20 ################################################## #######################= ##=20 # SECTION: Monitor Various Aspects of the Running Host=20 #=20 #=A0=A0 The following check up on various aspects of a host.=20 # disk: Check for disk space usage of a partition.=20 #=A0=A0 The agent can check the amount of available disk space, and make = #=A0=A0 sure it is above a set limit.=20 #=20 #=A0=A0=A0 disk PATH [MIN=3D100000]=20 #=20 #=A0=A0=A0 PATH:=A0 mount path to the disk in question.=20 #=A0=A0=A0 MIN:=A0=A0 Disks with space below this value will have the = Mib's errorFlag set.=20 #=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0 Can be a raw byte value or a percentage = followed by the %=20 #=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0 symbol.=A0 Default value =3D 100000.=20 #=20 #=A0=A0 The results are reported in the dskTable section of the = UCD-SNMP-MIB tree=20 disk=A0 /home 90%=20 agentSecName internal=20 rouser internal=20 monitor=A0=A0 -o dskPath -o dskErrorMsg "dskTable" dskErrorFlag !=3D 0=20 #monitor -u root -i -r 30 -o dskPath.1 -o dskErrorMsg.1 "home file = system" dskErrorFlag.1 !=3D0=20 # load: Check for unreasonable load average values.=20 #=A0=A0 Watch the load average levels on the machine.=20 #=20 #=A0=A0=A0 load [1MAX=3D12.0] [5MAX=3D12.0] [15MAX=3D12.0]=20 #=20 #=A0=A0=A0 1MAX:=A0=A0 If the 1 minute load average is above this limit = at query=20 #=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0 time, the errorFlag will be set.=20 #=A0=A0=A0 5MAX:=A0=A0 Similar, but for 5 min average.=20 #=A0=A0=A0 15MAX:=A0 Similar, but for 15 min average.=20 #=20 #=A0=A0 The results are reported in the laTable section of the = UCD-SNMP-MIB tree=20 # load=A0 5.5 5.5 5.5=20 ################################################## #######################= ##=20 # SECTION: Access Control Setup=20 #=20 #=A0=A0 This section defines who is allowed to talk to your running=20 #=A0=A0 snmp agent.=20 # rocommunity: a SNMPv1/SNMPv2c read-only access community name=20 #=A0=A0 arguments:=A0 community [default|hostname|network/bits] [oid]=20 rocommunity xxxx localhost=20 rocommunity xxxx pg-mon-01=20 rocommunity xxxx pg-mon-02=20 rocommunity xxxx pg-mon-03=20 rocommunity xxxx pg-mon-04=20 rocommunity xxxx pg-mon-05=20 rocommunity xxxx pg-mon-06=20 rocommunity xxxx pg-mon-07=20 rocommunity xxxx pg-mon-08=20 rocommunity xxxx pg-mon-09=20 rocommunity xxxx pg-mon-10=20 rocommunity xxxx netcool=20 rocommunity xxxx nnm=20 rocommunity xxxx ehealth=20 Jack=20 ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ Net-snmp-users mailing list Net-snmp-users@lists.sourceforge.net Please see the following page to unsubscribe or change other options: https://lists.sourceforge.net/lists/...net-snmp-users 
|
Linear Mode
