Getting the system information =============================== ntec23:/tmp> snmpwalk ntec25 read_community system system.sysDescr.0 = Linux ntec25 2.2.14-12 #1 Tue Apr 25 13:04:07 EDT 2000 i686 system.sysObjectID.0 = OID: enterprises.ucdavis.ucdSnmpAgent.linux system.sysUpTime.0 = Timeticks: (569483) 1:34:54.83 system.sysContact.0 = Alan S H Lam system.sysName.0 = ntec25 system.sysLocation.0 = NTEC Network system.sysORLastChange.0 = Timeticks: (0) 0:00:00.00 Getting the network interface I/O traffic count ================================================ ntec25:/etc/snmp> ifconfig -a eth0 Link encap:Ethernet HWaddr 00:D0:09:1D:B9:3C inet addr:192.168.64.25 Bcast:192.168.64.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:867008 errors:0 dropped:0 overruns:0 frame:0 TX packets:141845 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 Interrupt:3 Base address:0xc000 ntec23:/tmp> snmpwalk ntec25 Read_Community Interfaces interfaces.ifNumber.0 = 2 interfaces.ifTable.ifEntry.ifIndex.1 = 1 interfaces.ifTable.ifEntry.ifIndex.2 = 2 interfaces.ifTable.ifEntry.ifDescr.1 = lo0 interfaces.ifTable.ifEntry.ifDescr.2 = eth0 interfaces.ifTable.ifEntry.ifType.1 = softwareLoopback(24) interfaces.ifTable.ifEntry.ifType.2 = ethernetCsmacd(6) interfaces.ifTable.ifEntry.ifMtu.1 = 3924 interfaces.ifTable.ifEntry.ifMtu.2 = 1500 interfaces.ifTable.ifEntry.ifSpeed.1 = Gauge: 10000000 interfaces.ifTable.ifEntry.ifSpeed.2 = Gauge: 10000000 interfaces.ifTable.ifEntry.ifPhysAddress.1 = interfaces.ifTable.ifEntry.ifPhysAddress.2 = 0:d0:9:1d:b9:3c HWaddr interfaces.ifTable.ifEntry.ifAdminStatus.1 = up(1) interfaces.ifTable.ifEntry.ifAdminStatus.2 = up(1) interfaces.ifTable.ifEntry.ifOperStatus.1 = up(1) interfaces.ifTable.ifEntry.ifOperStatus.2 = up(1) interfaces.ifTable.ifEntry.ifInOctets.1 = 73295 interfaces.ifTable.ifEntry.ifInOctets.2 = 0 interfaces.ifTable.ifEntry.ifInUcastPkts.1 = 795 interfaces.ifTable.ifEntry.ifInUcastPkts.2 = 867175 RX packets interfaces.ifTable.ifEntry.ifInErrors.1 = 0 interfaces.ifTable.ifEntry.ifInErrors.2 = 0 interfaces.ifTable.ifEntry.ifOutOctets.1 = 73295 interfaces.ifTable.ifEntry.ifOutOctets.2 = 0 interfaces.ifTable.ifEntry.ifOutUcastPkts.1 = 795 interfaces.ifTable.ifEntry.ifOutUcastPkts.2 = 141960 TX packets interfaces.ifTable.ifEntry.ifOutDiscards.1 = 0 interfaces.ifTable.ifEntry.ifOutDiscards.2 = 0 interfaces.ifTable.ifEntry.ifOutErrors.1 = 0 interfaces.ifTable.ifEntry.ifOutErrors.2 = 0 interfaces.ifTable.ifEntry.ifOutQLen.1 = Gauge: 0 interfaces.ifTable.ifEntry.ifOutQLen.2 = Gauge: 0 Getting the process check ========================== in snmpd.conf: # Make sure mountd is running proc mountd # Make sure there are no more than 4 ntalkds running, but 0 is ok too. proc ntalkd 4 # Make sure at least one sendmail, but less than or equal to 10 are running. proc sendmail 10 1 ntec23:/tmp> snmpwalk -v 1 ntec25 read_community .1.3.6.1.4.1.2021.2 enterprises.ucdavis.prTable.prEntry.prIndex.1 = 1 enterprises.ucdavis.prTable.prEntry.prIndex.2 = 2 enterprises.ucdavis.prTable.prEntry.prIndex.3 = 3 enterprises.ucdavis.prTable.prEntry.prNames.1 = mountd enterprises.ucdavis.prTable.prEntry.prNames.2 = ntalkd enterprises.ucdavis.prTable.prEntry.prNames.3 = sendmail enterprises.ucdavis.prTable.prEntry.prMin.1 = 0 enterprises.ucdavis.prTable.prEntry.prMin.2 = 0 enterprises.ucdavis.prTable.prEntry.prMin.3 = 1 enterprises.ucdavis.prTable.prEntry.prMax.1 = 0 enterprises.ucdavis.prTable.prEntry.prMax.2 = 4 enterprises.ucdavis.prTable.prEntry.prMax.3 = 10 enterprises.ucdavis.prTable.prEntry.prCount.1 = 0 enterprises.ucdavis.prTable.prEntry.prCount.2 = 0 enterprises.ucdavis.prTable.prEntry.prCount.3 = 1 enterprises.ucdavis.prTable.prEntry.prErrorFlag.1 = 1 enterprises.ucdavis.prTable.prEntry.prErrorFlag.2 = 0 enterprises.ucdavis.prTable.prEntry.prErrorFlag.3 = 0 enterprises.ucdavis.prTable.prEntry.prErrMessage.1 = No mountd process running. enterprises.ucdavis.prTable.prEntry.prErrMessage.2 = enterprises.ucdavis.prTable.prEntry.prErrMessage.3 = enterprises.ucdavis.prTable.prEntry.prErrFix.1 = 0 enterprises.ucdavis.prTable.prEntry.prErrFix.2 = 0 enterprises.ucdavis.prTable.prEntry.prErrFix.3 = 0 enterprises.ucdavis.prTable.prEntry.prErrFixCmd.1 = enterprises.ucdavis.prTable.prEntry.prErrFixCmd.2 = enterprises.ucdavis.prTable.prEntry.prErrFixCmd.3 = Getting the disk information ============================= ntec25:/etc/snmp> df -k Filesystem 1k-blocks Used Available Use% Mounted on /dev/hda3 1984044 1409800 471832 75% / ntec23:/tmp> snmpwalk -v 1 ntec25 read_community .1.3.6.1.4.1.2021.9 enterprises.ucdavis.dskTable.dskEntry.dskIndex.1 = 1 enterprises.ucdavis.dskTable.dskEntry.dskPath.1 = / enterprises.ucdavis.dskTable.dskEntry.dskDevice.1 = /dev/hda3 enterprises.ucdavis.dskTable.dskEntry.dskMinimum.1 = 10000 enterprises.ucdavis.dskTable.dskEntry.dskMinPercent.1 = -1 enterprises.ucdavis.dskTable.dskEntry.dskTotal.1 = 1984044 enterprises.ucdavis.dskTable.dskEntry.dskAvail.1 = 471832 enterprises.ucdavis.dskTable.dskEntry.dskUsed.1 = 1409800 enterprises.ucdavis.dskTable.dskEntry.dskPercent.1 = 75 enterprises.ucdavis.dskTable.dskEntry.dskPercentNode.1 = 17 enterprises.ucdavis.dskTable.dskEntry.dskErrorFlag.1 = 0 enterprises.ucdavis.dskTable.dskEntry.dskErrorMsg.1 = Getting the Load information ============================ ntec25:/etc/snmp> uptime 5:11pm up 6 days, 55 min, 2 users, load average: 0.00, 0.00, 0.00 ntec23:/tmp> snmpwalk -v 1 ntec25 read_community .1.3.6.1.4.1.2021.10 enterprises.ucdavis.laTable.laEntry.laIndex.1 = 1 enterprises.ucdavis.laTable.laEntry.laIndex.2 = 2 enterprises.ucdavis.laTable.laEntry.laIndex.3 = 3 enterprises.ucdavis.laTable.laEntry.laNames.1 = Load-1 enterprises.ucdavis.laTable.laEntry.laNames.2 = Load-5 enterprises.ucdavis.laTable.laEntry.laNames.3 = Load-15 enterprises.ucdavis.laTable.laEntry.laLoad.1 = 0.00 enterprises.ucdavis.laTable.laEntry.laLoad.2 = 0.00 enterprises.ucdavis.laTable.laEntry.laLoad.3 = 0.00 enterprises.ucdavis.laTable.laEntry.laConfig.1 = 12.00 enterprises.ucdavis.laTable.laEntry.laConfig.2 = 14.00 enterprises.ucdavis.laTable.laEntry.laConfig.3 = 14.00 enterprises.ucdavis.laTable.laEntry.laLoadInt.1 = 0 enterprises.ucdavis.laTable.laEntry.laLoadInt.2 = 0 enterprises.ucdavis.laTable.laEntry.laLoadInt.3 = 0 enterprises.ucdavis.laTable.laEntry.laLoadFloat.1 = Opaque: Float: 0.000000 enterprises.ucdavis.laTable.laEntry.laLoadFloat.2 = Opaque: Float: 0.000000 enterprises.ucdavis.laTable.laEntry.laLoadFloat.3 = Opaque: Float: 0.000000 enterprises.ucdavis.laTable.laEntry.laErrorFlag.1 = 0 enterprises.ucdavis.laTable.laEntry.laErrorFlag.2 = 0 enterprises.ucdavis.laTable.laEntry.laErrorFlag.3 = 0 enterprises.ucdavis.laTable.laEntry.laErrMessage.1 = enterprises.ucdavis.laTable.laEntry.laErrMessage.2 = enterprises.ucdavis.laTable.laEntry.laErrMessage.3 = Getting the proccess table and netstat information ==================================================== In snmpd.conf file: exec .1.3.6.1.4.1.2021.50 pstable /bin/ps -ef exec .1.3.6.1.4.1.2021.51 netstat /bin/netstat ntec23:/tmp> snmpwalk -v 1 ntec25 read_community .1.3.6.1.4.1.2021.50 enterprises.ucdavis.50.1.1 = 1 enterprises.ucdavis.50.2.1 = "pstable" enterprises.ucdavis.50.3.1 = "/bin/ps -ef" enterprises.ucdavis.50.100.1 = 0 enterprises.ucdavis.50.101.1 = "UID PID PPID C STIME TTY TIME CMD." enterprises.ucdavis.50.101.2 = "root 1 0 0 Sep21 ? 00:00:05 init [3]." enterprises.ucdavis.50.101.3 = "root 2 1 0 Sep21 ? 00:00:00 [kflushd]." enterprises.ucdavis.50.101.4 = "root 3 1 0 Sep21 ? 00:00:00 [kupdate]." enterprises.ucdavis.50.101.5 = "root 4 1 0 Sep21 ? 00:00:00 [kpiod]." enterprises.ucdavis.50.101.6 = "root 5 1 0 Sep21 ? 00:00:00 [kswapd]." enterprises.ucdavis.50.101.7 = "root 6 1 0 Sep21 ? 00:00:00 [mdrecoveryd]." enterprises.ucdavis.50.101.8 = "bin 346 1 0 Sep21 ? 00:00:00 [portmap]." enterprises.ucdavis.50.101.9 = "root 361 1 0 Sep21 ? 00:00:00 [lockd]." enterprises.ucdavis.50.101.10 = "root 362 361 0 Sep21 ? 00:00:00 [rpciod]." enterprises.ucdavis.50.101.11 = "root 371 1 0 Sep21 ? 00:00:00 [rpc.statd]." enterprises.ucdavis.50.101.12 = "root 385 1 0 Sep21 ? 00:00:00 [apmd]." enterprises.ucdavis.50.101.13 = "root 467 1 0 Sep21 ? 00:00:00 syslogd -m 0." enterprises.ucdavis.50.101.14 = "root 476 1 0 Sep21 ? 00:00:00 klogd." enterprises.ucdavis.50.101.15 = "nobody 490 1 0 Sep21 ? 00:00:00 identd -e -o." enterprises.ucdavis.50.101.16 = "nobody 493 490 0 Sep21 ? 00:00:00 identd -e -o." enterprises.ucdavis.50.101.17 = "nobody 494 493 0 Sep21 ? 00:00:00 identd -e -o." enterprises.ucdavis.50.101.18 = "nobody 496 493 0 Sep21 ? 00:00:00 identd -e -o." enterprises.ucdavis.50.101.19 = "nobody 497 493 0 Sep21 ? 00:00:00 identd -e -o." enterprises.ucdavis.50.101.20 = "daemon 508 1 0 Sep21 ? 00:00:00 /usr/sbin/atd." enterprises.ucdavis.50.101.21 = "root 522 1 0 Sep21 ? 00:00:00 crond." enterprises.ucdavis.50.101.22 = "root 540 1 0 Sep21 ? 00:00:00 inetd." enterprises.ucdavis.50.101.23 = "root 554 1 0 Sep21 ? 00:00:00 [lpd]." enterprises.ucdavis.50.101.24 = "root 602 1 0 Sep21 ? 00:00:00 sendmail: accepting connections ." enterprises.ucdavis.50.101.25 = "root 617 1 0 Sep21 ? 00:00:00 gpm -t ps/2." enterprises.ucdavis.50.101.26 = "root 631 1 0 Sep21 ? 00:00:00 httpd." enterprises.ucdavis.50.101.27 = "xfs 710 1 0 Sep21 ? 00:00:00 xfs -droppriv -daemon -port -1." enterprises.ucdavis.50.101.28 = "root 750 1 0 Sep21 ? 00:00:04 /usr/local/sbin/sshd." enterprises.ucdavis.50.101.29 = "root 762 1 0 Sep21 ? 00:00:00 xntpd -A." enterprises.ucdavis.50.101.30 = "root 778 1 0 Sep21 ? 00:00:00 [ypbind]." enterprises.ucdavis.50.101.31 = "root 784 778 0 Sep21 ? 00:00:00 [ypbind]." enterprises.ucdavis.50.101.32 = "root 834 1 0 Sep21 ? 00:00:00 /usr/sbin/automount --timeout 60." ent ntec23:/tmp> snmpwalk -v 1 ntec25 read_community .1.3.6.1.4.1.2021.51 enterprises.ucdavis.51.1.1 = 1 enterprises.ucdavis.51.2.1 = "netstat" enterprises.ucdavis.51.3.1 = "/bin/netstat" enterprises.ucdavis.51.100.1 = 0 enterprises.ucdavis.51.101.1 = "Active Internet connections (w/o servers)." enterprises.ucdavis.51.101.2 = "Proto Recv-Q Send-Q Local Address Foreign Address State ." enterprises.ucdavis.51.101.3 = "tcp 0 0 ntec25:ssh ntec4.ie.cuhk.edu.:1020 ESTABLISHED ." enterprises.ucdavis.51.101.4 = "tcp 0 0 ntec25:ssh ntec4.ie.cuhk.edu.:1023 ESTABLISHED ." enterprises.ucdavis.51.101.5 = "Active UNIX domain sockets (w/o servers)." enterprises.ucdavis.51.101.6 = "Proto RefCnt Flags Type State I-Node Path." enterprises.ucdavis.51.101.7 = "unix 0 [ ] STREAM CONNECTED 205 @0000001c." enterprises.ucdavis.51.101.8 = "unix 11 [ ] DGRAM 489 /dev/log." enterprises.ucdavis.51.101.9 = "unix 0 [ ] DGRAM 34740 ." enterprises.ucdavis.51.101.10 = "unix 0 [ ] DGRAM 33383 ." enterprises.ucdavis.51.101.11 = "unix 0 [ ] DGRAM 823 ." enterprises.ucdavis.51.101.12 = "unix 0 [ ] DGRAM 747 ." enterprises.ucdavis.51.101.13 = "unix 0 [ ] DGRAM 730 ." enterprises.ucdavis.51.101.14 = "unix 0 [ ] DGRAM 707 ." enterprises.ucdavis.51.101.15 = "unix 0 [ ] DGRAM 647 ." enterprises.ucdavis.51.101.16 = "unix 0 [ ] DGRAM 629 ." enterprises.ucdavis.51.101.17 = "unix 0 [ ] DGRAM 576 ." enterprises.ucdavis.51.101.18 = "unix 0 [ ] DGRAM 512 ."