nmap

Hari Sekhon hpsekhon at googlemail.com
Thu Aug 17 19:45:24 CEST 2006
Previous message: nmap
Next message: nmap
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Marc Powell wrote:
>   
>> -----Original Message-----
>> From: nagios-users-bounces at lists.sourceforge.net [mailto:nagios-users-
>> bounces at lists.sourceforge.net] On Behalf Of Brian Loe
>> Sent: Thursday, August 17, 2006 11:01 AM
>> Cc: nagios-users at lists.sourceforge.net
>> Subject: Re: [Nagios-users] nmap
>>
>> Couldn't you write a script that diffs nmap results and report "0" if
>> diff doesn't come back with anything and "1" otherwise? nmap could be
>> cronned to run hourly - or so - and the results diffed with a baseline
>> file resulting in the code which nagios can cat... or something.
>>
>> Sorry, not a developer but this seems easy enough for someone who is,
>> and I'd like to have it myself. :)
>>
>> On 8/17/06, Hari Sekhon <hpsekhon at googlemail.com> wrote:
>>     
>>> Robin-David Hammond%KB3IEN wrote:
>>>       
>>>> Has anyone used nagios to track changes in the open ports on
>>>>         
> remote
>   
>> hosts?
>>     
>
>
> /nagios-plugins-1.4.3/contrib. --
>
> [contrib]$ ./check_nmap.py --help
>
> check_nmap plugin for Nagios
> Copyright (c) 2000 Jacob Lundqvist (jaclu at galdrion.com)
> License: GPL
> Version: 1.21
>
> Usage: check_ports [-v|--debug] [-H|--host host] [-V|--version]
> [-h|--help]
>                    [-o|--optional port1,port2,port3 ...] [-r|--range
> range]
>                    [-p|--port port1,port2,port3 ...] [-t|--timeout
> timeout]
>
> Options:
>  -h         = help (this screen ;-)
>  -v         = debug mode, show some extra output
>  -H host    = host to check (name or IP#)
>  -o ports   = optional ports that can be open (one or more),
>               no warning is given if optional port is closed
>  -p ports   = ports that should be open (one or more)
>  -r range   = port range to feed to nmap.  Example: :1024,2049,3000:7000
>  -t timeout = timeout in seconds, default 10
>  -V         = Version info
>
> This plugin attempts to verify open ports on the specified host.
>
> If all specified ports are open, OK is returned.
> If any of them are closed, WARNING is returned (except for optional
> ports)
> If other ports are open, CRITICAL is returned
>
> If possible, supply an IP address for the host address,
> as this will bypass the DNS lookup.
> --
> Marc
>
> -------------------------------------------------------------------------
> Using Tomcat but need to do more? Need to support web services, security?
> Get stuff done quickly with pre-integrated technology to make your job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
> http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________
> Nagios-users mailing list
> Nagios-users at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/nagios-users
> ::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
> ::: Messages without supporting info will risk being sent to /dev/null
>
>   
good idea to have this python wrapper to nmap plugin.

I was actually thinking more of one pass for the whole network alerting 
you to what has changed. I think I will write this in bash to start off 
with since that's the fastest language to do this kind of stuff in.

I can see how this does fit in very well with the nagios way of doing 
things since the macros can be used to automate part of it, but you 
still need to specify all the ports that should be open.

I think I may give this a python plugin try when I have some spare time...


Hari

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20060817/8a2fed1d/attachment.html>
-------------- next part --------------
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null
Previous message: nmap
Next message: nmap
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
More information about the Users mailing list