[mrtg] Lack of Response from system MRTG (port 161) SNMP
Bill Parker
dogbert at netnevada.net
Tue May 30 00:09:55 MEST 2000
Hi All,
Since I have run stronger firewalling rules and linux, and am now running
portsentry 1.0 on my linux system, I can no longer get information from
MRTG polls as 161 appears to be blocked by portsentry or my firewall rules...
in checking portsentry.conf, here is what I ran across in the file:
this is the original:
# ** X-Windows Users **: If you are running X on your box, you need to be sure
# you are not binding PortSentry to port 6000 (or port 2000 for OpenWindows
users).
# Doing so will prevent the X-client from starting properly.
#
# These port bindings are *ignored* for Advanced Stealth Scan Detection Mode.
#
# Un-comment these if you are really anal:
#TCP_PORTS="1,7,9,11,15,70,79,80,109,110,111,119,138,139,143,512,513,514,515
,540,635,1080,
1524,2000,2001,4000,4001,5742,6000,6001,6667,12345,12346,20034,30303,32771,3
2772,32773,327
74,31337,40421,40425,49724,54320"
#UDP_PORTS="1,7,9,66,67,68,69,111,137,138,161,162,474,513,517,518,635,640,64
1,666,700,2049
,32770,32771,32772,32773,32774,31337,54321"
#
# Use these if you just want to be aware:
TCP_PORTS="1,11,15,79,111,119,143,540,635,1080,1524,2000,5742,6667,12345,123
46,20034,31337
,32771,32772,32773,32774,40421,49724,54320"
UDP_PORTS="1,7,9,69,513,635,640,641,700,32770,32771,32772,32773,32774,31337,
54321"
#
# Use these for just bare-bones
#TCP_PORTS="1,11,15,110,111,143,540,635,1080,524,2000,12345,12346,20034,3277
1,32772,32773,
32774,49724,54320"
#UDP_PORTS="1,7,9,69,161,162,513,640,700,32770,32771,32772,32773,32774,31337
,54321"
in the modified file, I omit 161 and 162 in the 2nd set of params to allow
MRTG to grab this information, but it leaves it open...now these machines
have actual class C addresses, is it possible to specify that my class C
not be blocked via portsentry? (example: machine one xxx.xxx.xxx.25,
machine 2 is
xxx.xxx.xxx.25, final machine is xxx.xxx.xxx.55)...or can this not be done?
-Bill
--
Unsubscribe mailto:mrtg-request at list.ee.ethz.ch?subject=unsubscribe
Archive http://www.ee.ethz.ch/~slist/mrtg
FAQ http://faq.mrtg.org Homepage http://www.mrtg.org
More information about the mrtg
mailing list