mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
Tony Murray
0a5c174f4f
* AuthSSOTest: clear roles cache * PollingJob: When a poller module doesn't exist, return null instead of false. Skip all other checks and disable polling in that case. * Sensors: Guess high and low limits separately as needed * Sensors: drac test psu current data was wrong, referencing the snmprec, 8 / 10 and 0 / 10 should be the values NOTE: drac is messed up and runs a billion snmp queriess for no reason * please phpstan * Sensors: limits reference old code move to "creating" * Fix gw-eydfa accidental assignment * Fix ies5000 test data now that the bad state is removed * Fix ies5000 test data part 2 * Move sensor discovery reset into discover_device() * infinera remove duplicate sensor (also a lot of trailing whitespace apparently) * Fix innovaphone bad yaml discovery * module tests should be using null when test data doesn't exist, not an empty array * When discovery or polling is not supported, dump null instead of an array. Account for nulls in testing * update ISE serial * Janitza was seemingly wrong before * Remove some private data * bgp-peers requires ipv4-addresses and ipv6-addresses for bgpPeerIface * fix polycomLens broken state sensor discovery * Raritan pdu and pdu2 test data was combined in one test file, split it out * scs-ks duplicate temperature sensor indexes * sentry3 someone tried to avoid breaking stuff but just broke things more * smartos-dcp-m fix incorrect numeric oids * ssu2000 apparently test data was wrong, must have fixed a bug in the code. * timos remove duplicate dbm sensor definitions * bgpPeerIface is working in tests now * Fix moxa-etherdevice when mibs are a bit different * xw_to_dbm negative values should return null * Update cisco test data due previous fixes/changes * One more bgpPeerIface * Add orderBy to ospf module db dumps * Remove links test data for now * Improve handling of bad data in ipv6-addresses module
147 lines
4.9 KiB
PHP
147 lines
4.9 KiB
PHP
<?php
|
|
/**
|
|
* Nac.php
|
|
*
|
|
* network access controls module
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*
|
|
* @link https://www.librenms.org
|
|
*
|
|
* @copyright 2018 Tony Murray
|
|
* @author Tony Murray <murraytony@gmail.com>
|
|
*/
|
|
|
|
namespace LibreNMS\Modules;
|
|
|
|
use App\Models\Device;
|
|
use App\Models\PortsNac;
|
|
use App\Observers\ModuleModelObserver;
|
|
use Illuminate\Support\Facades\DB;
|
|
use LibreNMS\Interfaces\Data\DataStorageInterface;
|
|
use LibreNMS\Interfaces\Module;
|
|
use LibreNMS\Interfaces\Polling\NacPolling;
|
|
use LibreNMS\OS;
|
|
use LibreNMS\Polling\ModuleStatus;
|
|
|
|
class Nac implements Module
|
|
{
|
|
/**
|
|
* @inheritDoc
|
|
*/
|
|
public function dependencies(): array
|
|
{
|
|
return ['ports'];
|
|
}
|
|
|
|
public function shouldDiscover(OS $os, ModuleStatus $status): bool
|
|
{
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Discover this module. Heavier processes can be run here
|
|
* Run infrequently (default 4 times a day)
|
|
*
|
|
* @param Os $os
|
|
*/
|
|
public function discover(OS $os): void
|
|
{
|
|
// not implemented
|
|
}
|
|
|
|
public function shouldPoll(OS $os, ModuleStatus $status): bool
|
|
{
|
|
return $status->isEnabledAndDeviceUp($os->getDevice()) && $os instanceof NacPolling;
|
|
}
|
|
|
|
/**
|
|
* Poll data for this module and update the DB / RRD.
|
|
* Try to keep this efficient and only run if discovery has indicated there is a reason to run.
|
|
* Run frequently (default every 5 minutes)
|
|
*
|
|
* @param \LibreNMS\OS $os
|
|
*/
|
|
public function poll(OS $os, DataStorageInterface $datastore): void
|
|
{
|
|
if ($os instanceof NacPolling) {
|
|
// discovery output (but don't install it twice (testing can can do this)
|
|
ModuleModelObserver::observe(PortsNac::class);
|
|
|
|
$nac_entries = $os->pollNac()->keyBy('mac_address');
|
|
//filter out historical entries
|
|
$existing_entries = $os->getDevice()->portsNac()
|
|
->where('historical', 0)
|
|
->get()->keyBy('mac_address');
|
|
|
|
// update existing models
|
|
foreach ($nac_entries as $nac_entry) {
|
|
if ($existing = $existing_entries->get($nac_entry->mac_address)) {
|
|
// we have the same mac_address once again. Let's decide if we should keep the existing as history or not.
|
|
if (($nac_entry->port_id == $existing->port_id) ||
|
|
($nac_entry->method == $existing->method) ||
|
|
($nac_entry->vlan == $existing->vlan) ||
|
|
($nac_entry->authz_by == $existing->authz_by) ||
|
|
($nac_entry->authz_status == $existing->authz_status) ||
|
|
($nac_entry->ip_address == $existing->ip_address) ||
|
|
($nac_entry->username == $existing->username)) {
|
|
// if everything is similar, we update current entry. If not, we duplicate+history
|
|
$nac_entries->put($nac_entry->mac_address, $existing->fill($nac_entry->attributesToArray()));
|
|
}
|
|
}
|
|
}
|
|
|
|
// persist to DB
|
|
$os->getDevice()->portsNac()->saveMany($nac_entries);
|
|
|
|
$age = $existing_entries->diffKeys($nac_entries)->pluck('ports_nac_id');
|
|
if ($age->isNotEmpty()) {
|
|
$count = PortsNac::query()->whereIntegerInRaw('ports_nac_id', $age)->update(['historical' => true, 'updated_at' => DB::raw('updated_at')]);
|
|
d_echo('Aged ' . $count, str_repeat('-', $count));
|
|
}
|
|
}
|
|
}
|
|
|
|
public function dataExists(Device $device): bool
|
|
{
|
|
return $device->portsNac()->exists();
|
|
}
|
|
|
|
/**
|
|
* Remove all DB data for this module.
|
|
* This will be run when the module is disabled.
|
|
*/
|
|
public function cleanup(Device $device): int
|
|
{
|
|
return $device->portsNac()->delete();
|
|
}
|
|
|
|
/**
|
|
* @inheritDoc
|
|
*/
|
|
public function dump(Device $device, string $type): ?array
|
|
{
|
|
if ($type == 'discovery') {
|
|
return null;
|
|
}
|
|
|
|
return [
|
|
'ports_nac' => $device->portsNac()->orderBy('ports.ifIndex')->orderBy('mac_address')
|
|
->leftJoin('ports', 'ports_nac.port_id', 'ports.port_id')
|
|
->select(['ports_nac.*', 'ifIndex'])
|
|
->get()->map->makeHidden(['ports_nac_id', 'device_id', 'port_id', 'updated_at', 'created_at']),
|
|
];
|
|
}
|
|
}
|