Want an exciting career in an emerging field? Earn your MS in Cybersecurity and get certified in ethical hacking or computer forensic investigation. WGU’s MSCSIA degree program was designed to meet the most recent U.S. Department of Homeland Security (DHS) and NSA guidelines.
How to detect when a server stops being pinged by another device?
My workplace has a Windows network with about 60 PCs running Windows 7. I'm in the process of configuring a Linux-based monitoring server that will be running Nagios and Cacti. I also have access to a cloud-based VPS running Ubuntu.
I'd like to use the VPS to monitor the monitoring server and issue an alert if the monitoring server goes down. As it stands now, the monitoring server will not be visible outside the LAN, and I don't want to make any changes to the firewall. My thought is to have the monitoring server continuously ping the VPS. If the pinging stops, the VPS will send me an alert via email.
I've done some Googling, but I can't find any information about a way to issue an alert when a server stops receiving pings from another machine.
I'm a Linux newbie, and any help would be appreciated. Thanks!
I'd like to use the VPS to monitor the monitoring server and issue an alert if the monitoring server goes down. As it stands now, the monitoring server will not be visible outside the LAN, and I don't want to make any changes to the firewall. My thought is to have the monitoring server continuously ping the VPS. If the pinging stops, the VPS will send me an alert via email.
I've done some Googling, but I can't find any information about a way to issue an alert when a server stops receiving pings from another machine.
I'm a Linux newbie, and any help would be appreciated. Thanks!
Asked:
-
2
-
2
3 Solutions
You will want to make sure you stop the process and delete myfile.output every now and then or it will continue to grow forever.
xterm, I installed tcpdump, and it's detecting the pings. Thanks for that. What do you suggest for a script? Something in BASH that checks the size of the myfile.output file once per minute, and then sends an email alert if the size didn't change from the previous cycle? Or is there a simpler way? Thanks again.
Here's a little shell script that will do what you need:
Keep in mind though, you might want to have it exit after it mails you (add a line with "exit 0" below that line) otherwise you will get an email every 30 seconds until the pings resume again.
And of course, every once in a while you probably want to remove the output file and re-run the script because it will keep growing over time.
#!/bin/sh
FILE_TO_WATCH="myfile.output"
if [ ! -f $FILE_TO_WATCH ]; then
echo "Capture file not found, please edit value FILE_TO_WATCH in this script"
exit 1
fi
EMAILRCPT="you@youraddress.com"
OLDSIZE=0
while :;
do
MYFILESIZE=`du -b $FILE_TO_WATCH | awk '{print $1}'`
if [ $OLDSIZE -eq $MYFILESIZE ]; then
mail -s "Ping capture file did not grow" $EMAILRCPT < /dev/null
else
OLDSIZE=$MYFILESIZE
fi
sleep 30
done
Keep in mind though, you might want to have it exit after it mails you (add a line with "exit 0" below that line) otherwise you will get an email every 30 seconds until the pings resume again.
And of course, every once in a while you probably want to remove the output file and re-run the script because it will keep growing over time.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Featured Post
Tackle projects and never again get stuck behind a technical roadblock.
Join Now
tcpdump -w myfile.output icmp and host <ip address of monitoring server>
Then you can just script something else to watch myfile.output and tell you if it stops growing.