mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
f9d16238c96c80afa84da59ffe6aa6e04b5520b8
librenms-librenms/doc/Support/Device-Notes/Routeros.md
viptampa f9d16238c9 Update Routeros.md (#15158) 
Provided clarity on how to install.
2023-07-24 18:43:09 -05:00

2.3 KiB
Raw Blame History

This agent script will allow LibreNMS to run a script on a Mikrotik device to gather the vlan information from both /interface/vlan/ and /interface/bridge/vlan/

Installation

Installation:

  1. Go to https://github.com/librenms/librenms-agent/tree/master/snmp/Routeros
  2. Copy and paste the contents of LNMS_vlans.scr file into a script within a RouterOS device. Name this script LNMS_vlans. (This is NOT the same thing as creating a txt file and importing it into the Files section of the device)
  3. If you're unsure how to create the script. Download the LNMS_vlans.scr file. Rename to remove the .scr extension. Copy this file onto all the Mikrotkk devices you want to monitor.
  4. Open a Terminal / CLI on each tik and run this. { :global txtContent [/file get LNMS_vlans contents]; /system/script/add name=LNMS_vlans owner=admin policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source=$txtContent ;} This will import the contents of that txt file into a script named LNMS_vlans
  5. Enable an SNMP community that has both READ and WRITE capabilities. This is important, otherwise LibreNMS will not be able to run the above script. It is recommended to use SNMP v3 for this.

It is strongly recommended that SNMP allowed address is narrowed down to the specific IP range your LibreNMS will be coming from. (usually /32 address) because the write permission could allow an attack on a device. (such as dropping all firewall filters or changing the admin credentials. 7) Discover / Force rediscover your Mikrotik devices. After discovery has been completed the vlans menu should appear within LibreNMS for the device.

Theory of operation:

Mikrotik vlan discovery plugin using the ability of ROS to "fire up" a script through SNMP At first, LibreNMS check for the existence of the script, and if it is present, it will start the LNMS_vlans script. The script will gather information from: a. /interface/bridge/vlan for tagged ports inside bridge b. /interface/bridge/vlan for currently untagged ports inside bridge c. /interface/bridge/port for ports PVID (untagged) inside bridge d. /interface/vlan for vlan interfaces

after the information is gathered, it is transmitted to LibreNMS over SNMP protocol is: type,vlanId,ifName

i.e: T,254,ether1 is translated to Tagged vlan 254 on port ether1 U,100,wlan2 is translated to Untagged vlan 100 on port wlan2

Reference in New Issue View Git Blame Copy Permalink