2 netmon - a simple network connectivity monitor
3 Copyright © 2008-2016 Mikko Rasa, Mikkosoft Productions
4 Distributed under the GPL
15 #include <sys/socket.h>
18 #include <net/ethernet.h>
19 #include <netinet/in.h>
20 #include <netinet/ip.h>
21 #include <netinet/ip_icmp.h>
22 #include <netinet/ip6.h>
24 #include <arpa/inet.h>
25 #include <pcap/pcap.h>
27 typedef unsigned long long Time;
31 struct sockaddr_storage address;
32 struct sockaddr_storage mask;
43 int connection_status;
44 Time connection_down_time;
59 const char *target_name;
60 struct sockaddr_in target_addr;
72 int monitor_init(Monitor *);
73 void monitor_check(Monitor *, Time);
74 void capture_handler(uint8_t *, const struct pcap_pkthdr *, const uint8_t *);
75 int trigger_init(Trigger *);
76 void trigger_check(Trigger *, Time);
77 int get_inet_scope(uint32_t, const Address *);
78 int get_inet6_scope(const struct in6_addr *, const Address *);
79 int pinger_init(Pinger *);
80 void pinger_check(Pinger *, Time);
81 unsigned checksum(const char *, unsigned);
82 void send_ping(Pinger *);
83 pid_t run_command(const char *);
88 int main(int argc, char **argv)
95 Time stats_interval = 1800000000ULL;
99 monitor.interface_name = NULL;
100 trigger.monitor = &monitor;
101 trigger.delay = 60000000ULL;
102 trigger.interval = 600000000ULL;
103 pinger.target_name = NULL;
106 while((o = getopt(argc, argv, "fvs:t:c:i:p:"))!=-1)
116 stats_interval = strtoul(optarg, NULL, 10)*1000000;
119 trigger.delay = strtoul(optarg, &endp, 10)*1000000;
121 trigger.interval = strtoul(endp+1, NULL, 10)*1000000;
123 trigger.interval = trigger.delay;
126 trigger.command = optarg;
129 monitor.interface_name = strdup(optarg);
132 pinger.target_name = strdup(optarg);
136 if(monitor.interface_name)
138 monitor_init(&monitor);
141 trigger_init(&trigger);
144 if(pinger.target_name)
145 pinger_init(&pinger);
147 if(!no_daemon && daemon(1, 0)==-1)
150 openlog("netmon", 0, LOG_LOCAL7);
152 Time next_stats = current_time()+stats_interval;
155 Time time = current_time();
157 if(monitor.interface_name)
159 monitor_check(&monitor, time);
162 trigger_check(&trigger, time);
165 if(pinger.target_name)
167 pinger_check(&pinger, time);
173 float loss_ratio = (float)pinger.lost/pinger.count;
175 printf("Packet loss: %.2f%%\n", loss_ratio*100);
177 syslog(LOG_INFO, "Packet loss: %.2f%%", loss_ratio*100);
182 next_stats += stats_interval;
195 gettimeofday(&tv, NULL);
196 return tv.tv_sec*1000000ULL+tv.tv_usec;
199 int monitor_init(Monitor *monitor)
201 char err[PCAP_ERRBUF_SIZE];
203 if(pcap_findalldevs(&devs, err)==-1)
205 fprintf(stderr, "pcap_findalldevs: %s\n", err);
209 monitor->pcap = pcap_open_live(monitor->interface_name, 64, 0, 10, err);
212 fprintf(stderr, "pcap_findalldevs: %s\n", err);
216 if(pcap_setnonblock(monitor->pcap, 1, err)==-1)
218 fprintf(stderr, "pcap_findalldevs: %s\n", err);
222 monitor->n_addresses = 0;
223 monitor->addresses = NULL;
224 for(pcap_if_t *d=devs; d; d=d->next)
225 for(pcap_addr_t *a=d->addresses; a; a=a->next)
226 if(a->addr->sa_family==AF_INET || a->addr->sa_family==AF_INET6)
228 monitor->addresses = (Address *)realloc(monitor->addresses, (monitor->n_addresses+1)*sizeof(Address));
229 unsigned size = (a->addr->sa_family==AF_INET6 ? sizeof(struct sockaddr_in6) : sizeof(struct sockaddr_in));
230 memcpy(&monitor->addresses[monitor->n_addresses].address, a->addr, size);
231 memcpy(&monitor->addresses[monitor->n_addresses].mask, a->netmask, size);
232 ++monitor->n_addresses;
235 pcap_freealldevs(devs);
237 monitor->last_receive = 0;
238 monitor->last_transmit = 0;
239 monitor->connection_status = 1;
244 void monitor_check(Monitor *monitor, Time timestamp)
246 pcap_dispatch(monitor->pcap, -1, &capture_handler, (uint8_t *)monitor);
248 if(monitor->last_transmit && monitor->last_receive)
250 /* If packets have been transmitted more recently than received, there
251 might be a problem */
252 if(monitor->last_transmit>monitor->last_receive)
254 if(monitor->connection_status && timestamp>=monitor->last_receive+10000000)
256 monitor->connection_status = 0;
257 monitor->connection_down_time = monitor->last_receive;
259 printf("Connection is down\n");
261 syslog(LOG_INFO, "Connection is down");
264 else if(!monitor->connection_status)
266 Time duration = timestamp-monitor->connection_down_time;
267 monitor->connection_status = 1;
269 printf("Connection is up (was down for %lld seconds)\n", duration/1000000);
271 syslog(LOG_INFO, "Connection is up (was down for %lld seconds)", duration/1000000);
276 void capture_handler(uint8_t *user, const struct pcap_pkthdr *header, const uint8_t *data)
278 Monitor *monitor = (Monitor *)user;
279 const struct ether_header *eth = (const struct ether_header *)(data);
283 int proto = ntohs(eth->ether_type);
284 if(proto==ETHERTYPE_IP)
286 const struct ip *ip = (const struct ip *)(eth+1);
287 if(ntohl(ip->ip_dst.s_addr)>>28==14)
290 for(unsigned i=0; i<monitor->n_addresses; ++i)
291 if(monitor->addresses[i].address.ss_family==AF_INET)
293 int s = get_inet_scope(ip->ip_src.s_addr, &monitor->addresses[i]);
297 s = get_inet_scope(ip->ip_dst.s_addr, &monitor->addresses[i]);
302 else if(proto==ETHERTYPE_IPV6)
304 const struct ip6_hdr *ip6 = (const struct ip6_hdr *)(eth+1);
305 for(unsigned i=0; i<monitor->n_addresses; ++i)
306 if(monitor->addresses[i].address.ss_family==AF_INET6)
308 int s = get_inet6_scope(&ip6->ip6_src, &monitor->addresses[i]);
312 s = get_inet6_scope(&ip6->ip6_dst, &monitor->addresses[i]);
318 Time timestamp = header->ts.tv_sec*1000000ULL+header->ts.tv_usec;
319 if(src_scope==0 && dst_scope>0)
320 monitor->last_receive = timestamp;
321 else if(src_scope>0 && dst_scope==0)
322 monitor->last_transmit = timestamp;
325 int trigger_init(Trigger *trigger)
327 trigger->next = trigger->delay;
328 trigger->child_pid = 0;
333 void trigger_check(Trigger *trigger, Time time)
335 Monitor *monitor = trigger->monitor;
337 if(monitor->connection_status)
338 trigger->next = trigger->delay;
339 else if(time>=monitor->last_receive+trigger->next)
342 printf("Running %s\n", trigger->command);
344 syslog(LOG_INFO, "Running %s", trigger->command);
345 trigger->child_pid = run_command(trigger->command);
346 trigger->next += trigger->interval;
349 /* Reap any finished child process */
350 if(trigger->child_pid)
352 if(waitpid(trigger->child_pid, NULL, WNOHANG)==trigger->child_pid)
353 trigger->child_pid = 0;
357 int get_inet_scope(uint32_t addr, const Address *local_addr)
359 uint32_t diff = addr^((struct sockaddr_in *)&local_addr->address)->sin_addr.s_addr;
362 else if(!(diff&((struct sockaddr_in *)&local_addr->mask)->sin_addr.s_addr))
368 int get_inet6_scope(const struct in6_addr *addr, const Address *local_addr)
371 for(unsigned i=0; i<16; ++i)
373 uint8_t diff = addr->s6_addr[i]^((struct sockaddr_in6 *)&local_addr->address)->sin6_addr.s6_addr[i];
376 diff &= ((struct sockaddr_in6 *)&local_addr->mask)->sin6_addr.s6_addr[i];
387 int pinger_init(Pinger *pinger)
389 if(!pinger->target_name)
392 struct hostent *host;
394 host = gethostbyname(pinger->target_name);
397 herror("gethostbyname");
401 if(host->h_addrtype!=AF_INET)
403 fprintf(stderr, "Got a hostent, but it doesn't have an IPv4 address");
407 pinger->target_addr.sin_family = AF_INET;
408 pinger->target_addr.sin_addr = *(struct in_addr *)host->h_addr_list[0];
413 inet_ntop(AF_INET, &pinger->target_addr.sin_addr, buf, sizeof(buf));
414 printf("Ping target is %s\n", buf);
417 pinger->socket = socket(PF_INET, SOCK_RAW, IPPROTO_ICMP);
418 if(pinger->socket==-1)
425 pinger->id = getpid();
431 pinger->pfd.fd = pinger->socket;
432 pinger->pfd.events = POLLIN;
437 void pinger_check(Pinger *pinger, Time time)
439 if(poll(&pinger->pfd, 1, 10)>0)
441 struct sockaddr_in addr;
442 socklen_t alen = sizeof(addr);
444 /* Receive a packet */
446 int len = recvfrom(pinger->socket, data, sizeof(data), 0, (struct sockaddr *)&addr, &alen);
448 fprintf(stderr, "recvfrom error: %s\n", strerror(errno));
451 struct ip *ip = (struct ip *)data;
452 if(ip->ip_p==IPPROTO_ICMP)
454 struct icmp *icmp = (struct icmp *)(ip+1);
455 if(icmp->icmp_type==ICMP_ECHOREPLY && icmp->icmp_id==pinger->id)
457 /* It's an ICMP echo reply and ours, process it */
461 inet_ntop(AF_INET, &addr.sin_addr, buf, sizeof(buf));
462 printf("Ping reply from %s\n", buf);
465 if(icmp->icmp_seq==pinger->pending)
468 printf("Sequence %d, expected %d\n", icmp->icmp_seq, pinger->pending);
474 if(time>=pinger->next)
480 printf("Lost ping\n");
484 pinger->next = time+1000000;
488 unsigned checksum(const char *data, unsigned len)
491 for(unsigned i=0; i<len; i+=2)
492 sum += *(const unsigned short *)(data+i);
494 sum = (sum>>16)+(sum&0xFFFF);
499 void send_ping(Pinger *pinger)
502 for(unsigned i=0; i<sizeof(data); ++i)
505 struct icmp *hdr = (struct icmp *)data;
506 hdr->icmp_type = ICMP_ECHO;
509 hdr->icmp_id = pinger->id;
510 hdr->icmp_seq = pinger->seq;
511 hdr->icmp_cksum = checksum(data, sizeof(data));
513 if(sendto(pinger->socket, data, sizeof(data), 0, (struct sockaddr *)&pinger->target_addr, sizeof(struct sockaddr_in))==-1)
514 fprintf(stderr, "sendto error: %s\n", strerror(errno));
516 pinger->pending = pinger->seq++;
522 pid_t run_command(const char *cmd)
532 execv(cmd, (char *const *)argv);
projects / netmon.git / blob