mirror of
https://github.com/TheNetworkGuy/netbox-zabbix-sync.git
synced 2026-03-21 20:18:38 -06:00
425 lines
18 KiB
Python
425 lines
18 KiB
Python
"""Core component of the sync process"""
|
|
|
|
import ssl
|
|
from os import environ
|
|
from typing import Any
|
|
|
|
from pynetbox import api as nbapi
|
|
from pynetbox.core.query import RequestError as NetBoxRequestError
|
|
from requests.exceptions import ConnectionError as RequestsConnectionError
|
|
from zabbix_utils import APIRequestError, ProcessingError, ZabbixAPI
|
|
|
|
from netbox_zabbix_sync.modules.device import PhysicalDevice
|
|
from netbox_zabbix_sync.modules.exceptions import SyncError
|
|
from netbox_zabbix_sync.modules.logging import get_logger
|
|
from netbox_zabbix_sync.modules.settings import DEFAULT_CONFIG, load_config
|
|
from netbox_zabbix_sync.modules.tools import (
|
|
convert_recordset,
|
|
proxy_prepper,
|
|
verify_hg_format,
|
|
)
|
|
from netbox_zabbix_sync.modules.virtual_machine import VirtualMachine
|
|
|
|
logger = get_logger()
|
|
|
|
|
|
class Sync:
|
|
"""
|
|
Class that hosts the main sync process.
|
|
This class is used to connect to NetBox and Zabbix and run the sync process.
|
|
"""
|
|
|
|
def __init__(self, config: dict[str, Any] | None = None):
|
|
"""
|
|
Docstring for __init__
|
|
|
|
:param self: Description
|
|
:param config: Description
|
|
"""
|
|
self.netbox = None
|
|
self.zabbix = None
|
|
self.config: dict[str, Any] = config if config else {}
|
|
self.nb_version = None
|
|
self._config()
|
|
|
|
def _config(self):
|
|
"""
|
|
Load config and check if provided config is valid.
|
|
"""
|
|
if not self.config:
|
|
self.config = load_config()
|
|
return True
|
|
# Check if provided config is valid
|
|
if not isinstance(self.config, dict):
|
|
e = "Provided config is not a dictionary."
|
|
logger.error(e)
|
|
raise SyncError(e)
|
|
# Combine default options and provided config
|
|
default_config = DEFAULT_CONFIG.copy()
|
|
for key in self.config:
|
|
# Check if the user provided an invalid option parameter
|
|
if key not in default_config:
|
|
e = f"Provided config contains invalid key: {key}."
|
|
logger.error(e)
|
|
raise SyncError(e)
|
|
# Remove keys from default config to keep track of missing keys
|
|
default_config.pop(key)
|
|
# Add missing options with default values
|
|
for key in default_config:
|
|
self.config[key] = default_config[key]
|
|
return True
|
|
|
|
def connect(
|
|
self, nb_host, nb_token, zbx_host, zbx_user=None, zbx_pass=None, zbx_token=None
|
|
):
|
|
"""
|
|
Docstring for connect
|
|
|
|
:param self: Description
|
|
:param nb_host: Description
|
|
:param nb_token: Description
|
|
:param zbx_host: Description
|
|
:param zbx_user: Description
|
|
:param zbx_pass: Description
|
|
:param zbx_token: Description
|
|
"""
|
|
# Initialize Netbox API connection
|
|
netbox = nbapi(nb_host, token=nb_token, threading=True)
|
|
try:
|
|
# Get NetBox version
|
|
nb_version = netbox.version
|
|
logger.debug("NetBox version is %s.", nb_version)
|
|
# Test API access by attempting to access a basic endpoint
|
|
# This will catch authorization errors early
|
|
netbox.dcim.devices.count()
|
|
self.netbox = netbox
|
|
self.nb_version = nb_version
|
|
except RequestsConnectionError:
|
|
logger.error(
|
|
"Unable to connect to NetBox with URL %s. Please check the URL and status of NetBox.",
|
|
nb_host,
|
|
)
|
|
return False
|
|
except NetBoxRequestError as nb_error:
|
|
e = f"NetBox returned the following error: {nb_error}."
|
|
logger.error(e)
|
|
return False
|
|
# Check Netbox API token format based on NetBox version
|
|
if not self._validate_netbox_token(nb_token, self.nb_version):
|
|
return False
|
|
# Set Zabbix API
|
|
if (zbx_pass or zbx_user) and zbx_token:
|
|
e = (
|
|
"Both ZABBIX_PASS, ZABBIX_USER and ZABBIX_TOKEN environment variables are set. "
|
|
"Please choose between token or password based authentication."
|
|
)
|
|
logger.error(e)
|
|
return False
|
|
try:
|
|
ssl_ctx = ssl.create_default_context()
|
|
|
|
# If a custom CA bundle is set for pynetbox (requests), also use it for the Zabbix API
|
|
if environ.get("REQUESTS_CA_BUNDLE", None):
|
|
ssl_ctx.load_verify_locations(environ["REQUESTS_CA_BUNDLE"])
|
|
if not zbx_token:
|
|
logger.debug("Using user/password authentication for Zabbix API.")
|
|
self.zabbix = ZabbixAPI(
|
|
zbx_host, user=zbx_user, password=zbx_pass, ssl_context=ssl_ctx
|
|
)
|
|
else:
|
|
logger.debug("Using token authentication for Zabbix API.")
|
|
self.zabbix = ZabbixAPI(zbx_host, token=zbx_token, ssl_context=ssl_ctx)
|
|
self.zabbix.check_auth()
|
|
logger.debug("Zabbix version is %s.", self.zabbix.version)
|
|
except (APIRequestError, ProcessingError) as zbx_error:
|
|
e = f"Zabbix returned the following error: {zbx_error}."
|
|
logger.error(e)
|
|
return False
|
|
return True
|
|
|
|
def _validate_netbox_token(self, token: str, nb_version: str) -> bool:
|
|
"""Validate the format of the NetBox token based on the NetBox version.
|
|
:param token: The NetBox token to validate.
|
|
:param nb_version: The version of NetBox being used.
|
|
:return: True if the token format is valid for the given NetBox version, False otherwise.
|
|
"""
|
|
support_token_url = (
|
|
"https://netboxlabs.com/docs/netbox/integrations/rest-api/#v1-and-v2-tokens" # noqa: S105
|
|
)
|
|
token_prefix = "nbt_" # noqa: S105
|
|
nb_v2_support_version = "4.5"
|
|
v2_token = bool(token.startswith(token_prefix) and "." in token)
|
|
v2_error_token = bool(token.startswith(token_prefix) and "." not in token)
|
|
# Check if the token is passed without a proper key.token format
|
|
if v2_error_token:
|
|
logger.error(
|
|
"It looks like an invalid v2 token was passed. For more info, see %s",
|
|
support_token_url,
|
|
)
|
|
return False
|
|
# Warning message for Netbox token v1 with Netbox v4.5 and higher
|
|
if not v2_token and nb_version >= nb_v2_support_version:
|
|
logger.warning(
|
|
"Using Netbox v1 token format. "
|
|
"Consider updating to a v2 token. For more info, see %s",
|
|
support_token_url,
|
|
)
|
|
elif v2_token and nb_version < nb_v2_support_version:
|
|
logger.error(
|
|
"Using Netbox v2 token format with Netbox version lower than 4.5. "
|
|
"Revert to v1 token or upgrade Netbox to 4.5 or higher. For more info, see %s",
|
|
support_token_url,
|
|
)
|
|
return False
|
|
elif v2_token and nb_version >= nb_v2_support_version:
|
|
logger.debug("Using NetBox v2 token format.")
|
|
else:
|
|
logger.debug("Using NetBox v1 token format.")
|
|
return True
|
|
|
|
def start(self):
|
|
"""
|
|
Run the NetBox to Zabbix sync process.
|
|
"""
|
|
if not self.netbox or not self.zabbix:
|
|
e = "Not connected to NetBox or Zabbix. Please run the connect function first."
|
|
logger.error(e)
|
|
raise SyncError(e)
|
|
device_cfs = []
|
|
vm_cfs = []
|
|
# Create API call to get all custom fields which are on the device objects
|
|
device_cfs = list(
|
|
self.netbox.extras.custom_fields.filter(
|
|
type=["text", "object", "select"], content_types="dcim.device"
|
|
)
|
|
)
|
|
# Check if the provided Hostgroup layout is valid
|
|
verify_hg_format(
|
|
self.config["hostgroup_format"],
|
|
device_cfs=device_cfs,
|
|
hg_type="dev",
|
|
logger=logger,
|
|
)
|
|
if self.config["sync_vms"]:
|
|
vm_cfs = list(
|
|
self.netbox.extras.custom_fields.filter(
|
|
type=["text", "object", "select"],
|
|
content_types="virtualization.virtualmachine",
|
|
)
|
|
)
|
|
verify_hg_format(
|
|
self.config["vm_hostgroup_format"],
|
|
vm_cfs=vm_cfs,
|
|
hg_type="vm",
|
|
logger=logger,
|
|
)
|
|
# Set API parameter mapping based on API version
|
|
proxy_name = "host" if str(self.zabbix.version) < "7" else "name"
|
|
# Get all Zabbix and NetBox data
|
|
netbox_devices = list(
|
|
self.netbox.dcim.devices.filter(**self.config["nb_device_filter"])
|
|
)
|
|
netbox_vms = []
|
|
if self.config["sync_vms"]:
|
|
netbox_vms = list(
|
|
self.netbox.virtualization.virtual_machines.filter(
|
|
**self.config["nb_vm_filter"]
|
|
)
|
|
)
|
|
netbox_site_groups = convert_recordset(self.netbox.dcim.site_groups.all())
|
|
netbox_regions = convert_recordset(self.netbox.dcim.regions.all())
|
|
netbox_journals = self.netbox.extras.journal_entries
|
|
zabbix_groups = self.zabbix.hostgroup.get( # type: ignore
|
|
output=["groupid", "name"]
|
|
)
|
|
zabbix_templates = self.zabbix.template.get( # type: ignore
|
|
output=["templateid", "name"]
|
|
)
|
|
zabbix_proxies = self.zabbix.proxy.get( # type: ignore
|
|
output=["proxyid", proxy_name]
|
|
)
|
|
# Set empty list for proxy processing Zabbix <= 6
|
|
zabbix_proxygroups = []
|
|
if str(self.zabbix.version) >= "7":
|
|
zabbix_proxygroups = self.zabbix.proxygroup.get( # type: ignore
|
|
output=["proxy_groupid", "name"]
|
|
)
|
|
# Sanitize proxy data
|
|
if proxy_name == "host":
|
|
for proxy in zabbix_proxies:
|
|
proxy["name"] = proxy.pop("host")
|
|
# Prepare list of all proxy and proxy_groups
|
|
zabbix_proxy_list = proxy_prepper(zabbix_proxies, zabbix_proxygroups)
|
|
|
|
# Go through all NetBox devices
|
|
for nb_vm in netbox_vms:
|
|
try:
|
|
vm = VirtualMachine(
|
|
nb_vm,
|
|
self.zabbix,
|
|
netbox_journals,
|
|
self.nb_version,
|
|
self.config["create_journal"],
|
|
logger,
|
|
config=self.config,
|
|
)
|
|
logger.debug("Host %s: Started operations on VM.", vm.name)
|
|
vm.set_vm_template()
|
|
# Check if a valid template has been found for this VM.
|
|
if not vm.zbx_template_names:
|
|
continue
|
|
vm.set_hostgroup(
|
|
self.config["vm_hostgroup_format"],
|
|
netbox_site_groups,
|
|
netbox_regions,
|
|
)
|
|
# Check if a valid hostgroup has been found for this VM.
|
|
if not vm.hostgroups:
|
|
continue
|
|
if self.config["extended_site_properties"] and nb_vm.site:
|
|
logger.debug("Host %s: extending site information.", vm.name)
|
|
vm.site = convert_recordset(
|
|
self.netbox.dcim.sites.filter(id=nb_vm.site.id)
|
|
)
|
|
vm.set_inventory(nb_vm)
|
|
vm.set_usermacros()
|
|
vm.set_tags()
|
|
# Checks if device is in cleanup state
|
|
if vm.status in self.config["zabbix_device_removal"]:
|
|
if vm.zabbix_id:
|
|
# Delete device from Zabbix
|
|
# and remove hostID from self.netbox.
|
|
vm.cleanup()
|
|
logger.info("Host %s: cleanup complete", vm.name)
|
|
continue
|
|
# Device has been added to NetBox
|
|
# but is not in Activate state
|
|
logger.info(
|
|
"Host %s: Skipping since this host is not in the active state.",
|
|
vm.name,
|
|
)
|
|
continue
|
|
# Check if the VM is in the disabled state
|
|
if vm.status in self.config["zabbix_device_disable"]:
|
|
vm.zabbix_state = 1
|
|
# Add hostgroup if config is set
|
|
if self.config["create_hostgroups"]:
|
|
# Create new hostgroup. Potentially multiple groups if nested
|
|
hostgroups = vm.create_zbx_hostgroup(zabbix_groups)
|
|
# go through all newly created hostgroups
|
|
for group in hostgroups:
|
|
# Add new hostgroups to zabbix group list
|
|
zabbix_groups.append(group)
|
|
# Check if VM is already in Zabbix
|
|
if vm.zabbix_id:
|
|
vm.consistency_check(
|
|
zabbix_groups,
|
|
zabbix_templates,
|
|
zabbix_proxy_list,
|
|
self.config["full_proxy_sync"],
|
|
self.config["create_hostgroups"],
|
|
)
|
|
continue
|
|
# Add VM to Zabbix
|
|
vm.create_in_zabbix(zabbix_groups, zabbix_templates, zabbix_proxy_list)
|
|
except SyncError:
|
|
pass
|
|
|
|
for nb_device in netbox_devices:
|
|
try:
|
|
# Set device instance set data such as hostgroup and template information.
|
|
device = PhysicalDevice(
|
|
nb_device,
|
|
self.zabbix,
|
|
netbox_journals,
|
|
self.nb_version,
|
|
self.config["create_journal"],
|
|
logger,
|
|
config=self.config,
|
|
)
|
|
logger.debug("Host %s: Started operations on device.", device.name)
|
|
device.set_template(
|
|
self.config["templates_config_context"],
|
|
self.config["templates_config_context_overrule"],
|
|
)
|
|
# Check if a valid template has been found for this VM.
|
|
if not device.zbx_template_names:
|
|
continue
|
|
device.set_hostgroup(
|
|
self.config["hostgroup_format"], netbox_site_groups, netbox_regions
|
|
)
|
|
# Check if a valid hostgroup has been found for this VM.
|
|
if not device.hostgroups:
|
|
logger.warning(
|
|
"Host %s: has no valid hostgroups, Skipping this host...",
|
|
device.name,
|
|
)
|
|
continue
|
|
if self.config["extended_site_properties"] and nb_device.site:
|
|
logger.debug("Host %s: extending site information.", device.name)
|
|
device.site = convert_recordset(
|
|
self.netbox.dcim.sites.filter(id=nb_device.site.id)
|
|
)
|
|
device.set_inventory(nb_device)
|
|
device.set_usermacros()
|
|
device.set_tags()
|
|
# Checks if device is part of cluster.
|
|
# Requires clustering variable
|
|
if device.is_cluster() and self.config["clustering"]:
|
|
# Check if device is primary or secondary
|
|
if device.promote_primary_device():
|
|
logger.info(
|
|
"Host %s: is part of cluster and primary.", device.name
|
|
)
|
|
else:
|
|
# Device is secondary in cluster.
|
|
# Don't continue with this device.
|
|
logger.info(
|
|
"Host %s: Is part of cluster but not primary. Skipping this host...",
|
|
device.name,
|
|
)
|
|
continue
|
|
# Checks if device is in cleanup state
|
|
if device.status in self.config["zabbix_device_removal"]:
|
|
if device.zabbix_id:
|
|
# Delete device from Zabbix
|
|
# and remove hostID from NetBox.
|
|
device.cleanup()
|
|
logger.info("Host %s: cleanup complete", device.name)
|
|
continue
|
|
# Device has been added to NetBox
|
|
# but is not in Activate state
|
|
logger.info(
|
|
"Host %s: Skipping since this host is not in the active state.",
|
|
device.name,
|
|
)
|
|
continue
|
|
# Check if the device is in the disabled state
|
|
if device.status in self.config["zabbix_device_disable"]:
|
|
device.zabbix_state = 1
|
|
# Add hostgroup is config is set
|
|
if self.config["create_hostgroups"]:
|
|
# Create new hostgroup. Potentially multiple groups if nested
|
|
hostgroups = device.create_zbx_hostgroup(zabbix_groups)
|
|
# go through all newly created hostgroups
|
|
for group in hostgroups:
|
|
# Add new hostgroups to zabbix group list
|
|
zabbix_groups.append(group)
|
|
# Check if device is already in Zabbix
|
|
if device.zabbix_id:
|
|
device.consistency_check(
|
|
zabbix_groups,
|
|
zabbix_templates,
|
|
zabbix_proxy_list,
|
|
self.config["full_proxy_sync"],
|
|
self.config["create_hostgroups"],
|
|
)
|
|
continue
|
|
# Add device to Zabbix
|
|
device.create_in_zabbix(
|
|
zabbix_groups, zabbix_templates, zabbix_proxy_list
|
|
)
|
|
except SyncError:
|
|
pass
|
|
self.zabbix.logout()
|