From f017d32860bdcec83fb001cb17cf08982997679d Mon Sep 17 00:00:00 2001 From: Moritz Kraus Date: Thu, 8 Sep 2016 16:59:53 +0200 Subject: [PATCH] added CiscoIPS Class --- Info.pm | 4 + Info/Layer7/CiscoIPS.pm | 218 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 222 insertions(+) create mode 100644 Info/Layer7/CiscoIPS.pm diff --git a/Info.pm b/Info.pm index f0676e14..fb501997 100644 --- a/Info.pm +++ b/Info.pm @@ -1912,6 +1912,10 @@ sub device_type { $objtype = 'SNMP::Info::Layer2::NWSS2300' if ( $desc =~ /^(Nortel\s)??Wireless\sSecurity\sSwitch\s23[568][012]\b/); + + # Cisco IPS, older version which doesn't report layer 3 functionality + $objtype = 'SNMP::Info::Layer7::CiscoIPS' + if ( $soid =~ /\.1\.3\.6\.1\.4\.1\.9\.1\.1545/i ); # Generic device classification based upon sysObjectID if ( defined($id) and $objtype eq 'SNMP::Info') { diff --git a/Info/Layer7/CiscoIPS.pm b/Info/Layer7/CiscoIPS.pm new file mode 100644 index 00000000..b00a8351 --- /dev/null +++ b/Info/Layer7/CiscoIPS.pm @@ -0,0 +1,218 @@ +# SNMP::Info::Layer::CiscoIPS +# $Id$ +# +# Copyright (c) 2013 Moe Kraus +# All rights reserved. +# +# Redistribution and use in source and binary forms, with or without +# modification, are permitted provided that the following conditions are met: +# +# * Redistributions of source code must retain the above copyright notice, +# this list of conditions and the following disclaimer. +# * Redistributions in binary form must reproduce the above copyright +# notice, this list of conditions and the following disclaimer in the +# documentation and/or other materials provided with the distribution. +# * Neither the name of the University of California, Santa Cruz nor the +# names of its contributors may be used to endorse or promote products +# derived from this software without specific prior written permission. +# +# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" +# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE +# ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE +# LIABLE FOR +# ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF +# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS +# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN +# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) +# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE +# POSSIBILITY OF SUCH DAMAGE. + +package SNMP::Info::Layer7::CiscoIPS; + +use strict; +use warnings; +use Exporter; +use SNMP::Info::CiscoStats; +use SNMP::Info::Layer7; +use SNMP::Info::Entity; + +@SNMP::Info::Layer7::CiscoIPS::ISA = qw/ + SNMP::Info::CiscoStats + SNMP::Info::Layer7 + Exporter/; +@SNMP::Info::Layer7::CiscoIPS::EXPORT_OK = qw//; + +use vars qw/$VERSION %GLOBALS %MIBS %FUNCS %MUNGE/; + +$VERSION = '3.33'; + +%MIBS = ( %SNMP::Info::Layer3::MIBS, %SNMP::Info::Entity::MIBS, ); + +%GLOBALS + = ( %SNMP::Info::Layer3::GLOBALS, %SNMP::Info::Entity::GLOBALS, ); + +%FUNCS = ( + %SNMP::Info::Layer7::FUNCS, + %SNMP::Info::Entity::FUNCS, + 'mac_table' => 'ifPhysAddress', +); + +%MUNGE = ( + %SNMP::Info::Layer7::MUNGE, + %SNMP::Info::Entity::MUNGE, + 'mac_table' => \&SNMP::Info::munge_mac, +); + +my ($serial, $descr, $model); + +sub _fetch_info { + my $self = shift; + foreach my $id ( keys %{ $self->e_id() } ){ + + if ( + $self->e_name->{$id} =~ m/^Module$/ and + $self->e_model->{$id} =~ m/IPS/ + ) { + $serial = $self->e_serial->{$id}; + $descr = $self->e_descr->{$id}; + $model = $self->e_model->{$id}; + } + + } + +} + +sub layers { + return '01001000'; +} +sub serial { + my $self = shift; + _fetch_info($self) unless defined $serial; + return $serial; +} + +sub sysdescr { + my $self = shift; + _fetch_info($self) unless defined $descr; + return $descr; +} + +sub model { + my $self = shift; + _fetch_info($self) unless defined $descr; + $descr =~ s/ Security Services Processor//g; + $descr =~ s/ /-/g; + return $descr; +} + +sub b_mac { + my ( $self ) = shift; + + foreach my $mac ( values %{$self->mac_table()} ){ + + next unless defined $mac; + next unless $mac =~ m/^e4:d3:f1/; + return $mac; + } + + return ''; +} + + + +1; +__END__ + +=head1 NAME + +SNMP::Info::Layer7::CiscoASA - Cisco Adaptive Security Appliance + +=head1 AUTHOR + +Moe Kraus + +=head1 SYNOPSIS + + # Let SNMP::Info determine the correct subclass for you. + my $cisco = new SNMP::Info( + AutoSpecify => 1, + Debug => 1, + # These arguments are passed directly to SNMP::Session + DestHost => 'myswitch', + Community => 'public', + Version => 2 + ) + or die "Can't connect to DestHost.\n"; + + my $class = $ips->class(); + print "SNMP::Info determined this device to fall under subclass: $class\n"; + +=head1 DESCRIPTION + +Subclass for Cisco ASA Devices + +=head2 Inherited Classes + +=over + +=item SNMP::Info::CiscoStats + +=item SNMP::Info::Layer3 + +=back + +=head2 Required MIBs + +=over + +=item Inherited Classes' MIBs + +See L for its own MIB requirements. + +See L for its own MIB requirements. + +=back + +=head1 GLOBALS + +These are methods that return scalar value from SNMP + +=over + +=item $asa->b_mac() + +Returns base mac. +Overrides base mac function in L. + +=item $asa->i_description() + +Overrides base interface description function in L to return the +configured interface name instead of "Adaptive Security Appliance +'$configured interface name' interface". + +=back + +=head2 Globals imported from SNMP::Info::CiscoStats + +See documentation in L for details. + +=head2 Global Methods imported from SNMP::Info::Layer3 + +See documentation in L for details. + +=head1 TABLE METHODS + +These are methods that return tables of information in the form of a +reference to a hash. + +=head2 Table Methods imported from SNMP::Info::CiscoStats + +See documentation in L for details. + +=head2 Table Methods imported from SNMP::Info::Layer3 + +See documentation in L for details. + +=cut