Difference between revisions of "NeDI: Instalasi di Ubuntu"

From OnnoWiki
Jump to navigation Jump to search
 
(3 intermediate revisions by the same user not shown)
Line 1: Line 1:
1. Install dependencies:
+
==Install dependency==
  
 
  sudo apt-get install apache2 libapache2-mod-php5 mysql-server libnet-snmp-perl php5-mysql \
 
  sudo apt-get install apache2 libapache2-mod-php5 mysql-server libnet-snmp-perl php5-mysql \
 
  libnet-telnet-cisco-perl php5-snmp php5-gd libalgorithm-diff-perl rrdtool librrds-perl
 
  libnet-telnet-cisco-perl php5-snmp php5-gd libalgorithm-diff-perl rrdtool librrds-perl
  
Note: The command listed above needs to be on one line
 
  
2. Setup SSL on the Apache2 webserver:
+
==Setup SSL di Apache2 webserver==
  
IMPORTANT – You should always use SSL because Nedi contains a great amount of information about your network. Here is a great step-by-step tutorial on How to setup SSL in Ubuntu
+
PENTING _ Sebaiknya anda menggunakan SSL karena NeDi membawa banyak informasi tentang jaringan anda.
  
3. Download Nedi:
+
 
 +
==Download NeDi==
  
 
  wget http://www.nedi.ch/pub/nedi-1.0.8.tgz
 
  wget http://www.nedi.ch/pub/nedi-1.0.8.tgz
  
4. Uncompress and extract the archive:
+
==Uncompress dan extract==
  
 
  tar -xzf nedi-1.0-rc6.tgz
 
  tar -xzf nedi-1.0-rc6.tgz
  
5. Move Nedi directory to /opt and fix permissions:
+
==Move Nedi ke directory /opt dan perbaiki permissions==
  
 
  sudo mv nedi /opt/
 
  sudo mv nedi /opt/
Line 24: Line 24:
 
  sudo chmod 775 /opt/nedi/html/log/
 
  sudo chmod 775 /opt/nedi/html/log/
  
6. Create a link to the webserver root:
+
==Buat link ke webserver root==
  
 
  sudo ln -s /opt/nedi/html/ /var/www/
 
  sudo ln -s /opt/nedi/html/ /var/www/
  
7. Create a link to the configuration file:
+
==Buat link ke file konfigurasi==
  
 
  sudo ln -s /opt/nedi/nedi.conf /etc/nedi.conf
 
  sudo ln -s /opt/nedi/nedi.conf /etc/nedi.conf
  
8. Create a MySQL database password:
+
==Buat MySQL database password==
  
 
  sudo mysqladmin -u root -p password "YourPasswordGoesHere"
 
  sudo mysqladmin -u root -p password "YourPasswordGoesHere"
  
9. Initialize the Nedi database:
+
==Inisialisasi database NeDi==
  
 
  cd /opt/nedi/
 
  cd /opt/nedi/
 
  ./nedi.pl -i
 
  ./nedi.pl -i
  
10. Answer these prompts:
+
==Jawab prompts berikut==
 
 
    MySQL admin user: root
 
  
    MySQL admin pass: <enter the password you created in step #8>  
+
MySQL admin user: root
 +
MySQL admin pass: <masukan password di step #8>  
  
11. Edit /opt/nedi/nedi.conf:
+
==Edit /opt/nedi/nedi.conf==
  
    List your SNMP read-only passwords (one per line)
+
List your SNMP read-only passwords (one per line)
    List your telnet usernames and passwords (one pair per line)  
+
List your telnet usernames and passwords (one pair per line)  
  
12. Optional - Edit /opt/nedi/seedlist and add your network devices:
+
==Optional - Edit /opt/nedi/seedlist dan tambahkan network device anda==
  
 
  List the IP addresses of your devices (one per line)
 
  List the IP addresses of your devices (one per line)
  
13. Restart the webserver (Apache2):
+
==Restart webserver (Apache2)==
  
 
  sudo /etc/init.d/apache2 restart
 
  sudo /etc/init.d/apache2 restart
  
14. Run a discovery of your network and gather your device configurations
+
==Run discovery dari network anda dan kumpulkan konfigurasi device==
  
 
  cd /opt/nedi/
 
  cd /opt/nedi/
 
  ./nedi.pl -pob
 
  ./nedi.pl -pob
  
15. Login to your Nedi website:
+
==Login ke NeDi website==
  
 
  http://localhost/html/
 
  http://localhost/html/
 
  User: admin
 
  User: admin
 
  Password: admin
 
  Password: admin
  IMPORTANT - Change the admin password NOW!
+
  PENTING - ubah admin password SEKARANG JUGA!
  
16. Create a script to start/stop Nedi:
+
==Buat script untuk start/stop Nedi:
  
 
  nano /opt/nedi/startnedi.sh
 
  nano /opt/nedi/startnedi.sh
  
17. Paste this text into that file:
+
Masukan
  
 
  #start nedi from crontab. Creates logfiles
 
  #start nedi from crontab. Creates logfiles
Line 94: Line 93:
 
  echo "#$now stop" >> $LASTRUN'
 
  echo "#$now stop" >> $LASTRUN'
  
Press “Control-O” and then “Enter” to save these changes.
+
Tekan “Control-O” dan “Enter” simpan perubahan
  
18. Make “startnedi.sh” an executable file, and create a directory to hold Nedi log files:
+
==Buat “startnedi.sh” dan directory Nedi log==
  
 
  chmod +x /opt/nedi/startnedi.sh
 
  chmod +x /opt/nedi/startnedi.sh
Line 102: Line 101:
 
  me=`whoami`;sudo chown $me:$me /var/log/nedi
 
  me=`whoami`;sudo chown $me:$me /var/log/nedi
  
19. Schedule Nedi to run periodically (every 4 hours) using cron:
+
==Jadwalkan Nedi untuk jalan secara periodik (setiap 4 jam) menggunakan cron:==
  
 
  crontab -e
 
  crontab -e
 
  15 */4 * * * /opt/nedi/startnedi.sh  # Discover and gather device configurations
 
  15 */4 * * * /opt/nedi/startnedi.sh  # Discover and gather device configurations
  
Press “Control-O” and then “Enter” to save these changes.
+
Tekan “Control-O” dan “Enter” untuk menyimpan.
  
-or-
+
-atau-
  
Create a file in /etc/cron.d/ containing this information:
+
Buat sebuah file di /etc/cron.d/ berisi informasi berikut:
  
 
  15 */4 * * *    root  /opt/nedi/startnedi.sh  # Discover and gather device configurations
 
  15 */4 * * *    root  /opt/nedi/startnedi.sh  # Discover and gather device configurations
  
Both of these methods will cause the script to run every 4 hours at :15 past the hour beginning with 4:00am.
+
Kedua cara ini akan menyebabkan script di jalankan setiap 4 hour pada menit ke :15 mulai jam 4:00 pagi.
 
 
 
 
 
 
 
 
You can get it running on Debian/Ubuntu within 5 minutes (more details in Generic Installation Procedure):
 
 
 
sudo apt-get install apache2 libapache2-mod-php5 mysql-server libnet-snmp-perl libcrypt-hcesha-perl \
 
libcrypt-des-perl libdigest-hmac-perl libio-pty-perl libnet-telnet-perl libalgorithm-diff-perl \
 
librrds-perl php5-mysql php5-snmp php5-gd php5-mcrypt rrdtool libsocket6-perl
 
 
 
Optional (read below for details): libweb-simple-perl libnet-ntp-perl libnet-dns-perl
 
 
 
Then perform the following steps:
 
 
 
    create a /nedi folder somewhere (preferable in /var) and extract the tarball. Change permission to www-data
 
    In /etc edit apache2/sites-enabled/000-default.conf and adjust document root to /var/nedi/html
 
    edit apache2/apache2.conf and change /var/www to /var/nedi/html as well
 
    Optionally adjust php5/apache2/php.ini to increase max upload and post size
 
    run nedi -i and you should be able to login with admin/admin
 
    For security reasons, you should at least limit access to SSL and prohibit showing directory indexes…
 
 
 
 
 
Generic Installation Procedure
 
 
 
    Satisfy the dependencies listed below.
 
    Extract the NeDi archive (e.g. to /var/nedi). Move the files in html to your webserver’s document root (e.g. /var/www/htdocs) or adjust the document root.
 
    Edit nedi.conf to fit your needs (Please use the new one as copying your existing config may lead to errors, if new items are missing). If you get ‘Dude, where is nedi.conf?’ link it to /etc.
 
    Cd to /var/nedi (or whatever you chose) and type ./nedi.pl -i to initialize the backend. Starting with NeDi 1.4, you can use -i nodrop for updating an existing DB structure without the need for DB admin credentials. Alternatively -i updatedb will do just that without any loss of data.
 
    The monitoring daemon moni.pl can be started from commandline, startup script or the GUI.
 
    Since syslog.pl requires a priviledged port (514) a simple workaround (to avoid running it as root) would be to forward a high port via system’s FW. This means something like this for Linux: iptables -A PREROUTING -t nat -p udp –dport 514 -j REDIRECT –to-port 1514. Just set $port in syslog.pl to 1514 (or whatever you chose the port to be). Now you can even restart it from the GUI with System-Services.
 
    A similar setup can be implemented for snmptrapd: iptables -A PREROUTING -t nat -p udp –dport 162 -j REDIRECT –to-port 1162.
 
 
 
 
 
 
 
 
 
Hardware Requirements
 
 
 
The computer requirements depend on the size of your network (surprised?). A single 2GHz core and 1GB Ram will do fine for networks with 500 devices and 10’000 nodes. You may consider increasing this for larger networks…
 
 
 
The NeDi script itself uses up to 150MB of RAM on a discovery run. If you want to include Tobi’s RRDtool, you’ll need ~200KB disk storage per interface (can be adjusted with rrdsize in nedi.conf).
 
 
 
 
 
Software Requirements
 
 
 
The discovery part is programmed in Perl and needs those additional modules:
 
 
 
    Net::SNMP
 
    Net::Telnet
 
    Algorithm::Diff
 
    DBI
 
    DBD::MySQL
 
    RRDs
 
    Socket6
 
    LWP::UserAgent (optional HTTP service monitoring and getting info from Cisco phones)
 
    Net::DNS::Resolver (optional DNS service monitoring)
 
    Net::NTP (optional NTP service monitoring, e.g monitor actual stratum)
 
    IO::Tty (optional SSH support)
 
    libnet (provides Net::SMTP for alerts)
 
 
 
The frontend requires a webserver providing PHP with the following addons:
 
 
 
    SQL
 
    SNMP
 
    SESSION
 
    GD (for Topology-Map)
 
    MCRYPT for SHA256 password encryption
 
 
 
 
 
 
 
 
 
 
 
 
 
  
 
==Referensi==
 
==Referensi==

Latest revision as of 07:03, 27 July 2015

Install dependency

sudo apt-get install apache2 libapache2-mod-php5 mysql-server libnet-snmp-perl php5-mysql \
libnet-telnet-cisco-perl php5-snmp php5-gd libalgorithm-diff-perl rrdtool librrds-perl


Setup SSL di Apache2 webserver

PENTING _ Sebaiknya anda menggunakan SSL karena NeDi membawa banyak informasi tentang jaringan anda.


Download NeDi

wget http://www.nedi.ch/pub/nedi-1.0.8.tgz

Uncompress dan extract

tar -xzf nedi-1.0-rc6.tgz

Move Nedi ke directory /opt dan perbaiki permissions

sudo mv nedi /opt/
sudo chown -R www-data:www-data /opt/nedi
sudo chmod 775 /opt/nedi/html/log/

Buat link ke webserver root

sudo ln -s /opt/nedi/html/ /var/www/

Buat link ke file konfigurasi

sudo ln -s /opt/nedi/nedi.conf /etc/nedi.conf

Buat MySQL database password

sudo mysqladmin -u root -p password "YourPasswordGoesHere"

Inisialisasi database NeDi

cd /opt/nedi/
./nedi.pl -i

Jawab prompts berikut

MySQL admin user: root
MySQL admin pass: <masukan password di step #8>

Edit /opt/nedi/nedi.conf

List your SNMP read-only passwords (one per line)
List your telnet usernames and passwords (one pair per line)

Optional - Edit /opt/nedi/seedlist dan tambahkan network device anda

List the IP addresses of your devices (one per line)

Restart webserver (Apache2)

sudo /etc/init.d/apache2 restart

Run discovery dari network anda dan kumpulkan konfigurasi device

cd /opt/nedi/
./nedi.pl -pob

Login ke NeDi website

http://localhost/html/
User: admin
Password: admin
PENTING - ubah admin password SEKARANG JUGA!

==Buat script untuk start/stop Nedi: 

nano /opt/nedi/startnedi.sh

Masukan 

#start nedi from crontab. Creates logfiles
opts="-pob"
CMD="./nedi.pl $opts"
LOGPATH="/var/log/nedi"
LOGFILE="$LOGPATH/nedi.log"
LASTRUN="$LOGPATH/lastrun.log"
cd /opt/nedi
now=`date +%Y%m%d:%H%M`
echo "#$now start # $CMD" > $LASTRUN
echo "#$now start" >> $LOGFILE
$($CMD >> $LASTRUN)
tail -8 $LASTRUN >> $LOGFILE
now=`date +%Y%m%d:%H%M`
echo "#$now stop" >> $LOGFILE
echo "#$now stop" >> $LASTRUN'

Tekan “Control-O” dan “Enter” simpan perubahan

Buat “startnedi.sh” dan directory Nedi log

chmod +x /opt/nedi/startnedi.sh
sudo mkdir /var/log/nedi
me=`whoami`;sudo chown $me:$me /var/log/nedi

Jadwalkan Nedi untuk jalan secara periodik (setiap 4 jam) menggunakan cron:

crontab -e
15 */4 * * * /opt/nedi/startnedi.sh  # Discover and gather device configurations

Tekan “Control-O” dan “Enter” untuk menyimpan.

-atau-

Buat sebuah file di /etc/cron.d/ berisi informasi berikut: 

15 */4 * * *    root   /opt/nedi/startnedi.sh  # Discover and gather device configurations

Kedua cara ini akan menyebabkan script di jalankan setiap 4 hour pada menit ke :15 mulai jam 4:00 pagi.

Referensi

Retrieved from "https://onnocenter.or.id/wiki/index.php?title=NeDI:_Instalasi_di_Ubuntu&oldid=44111"