ARP table sensor #76
ARP table sensor #76
Conversation
|
Great! The integration uses 2 separate data coordinator instances, one for the device tracker and another for everything else. The reason you never see the value is because the coordinator you’re using is not for device tracker. This is primarily for performance reasons and being able to set different intervals. For testing just copy the try/catch into the ‘else’ block below. Fetching the arp data probably needs to be ‘backgrounded’ to prevent it from holding everything else up. I can do that later though and not really something you need to worry about. I am not sure if an entity can return an array value like that. Give it a try and let me know how it goes! |
|
How's this? Been awhile since I did much in Python, so I'm real open to changing things |
|
How well is it working in your setup? There are some improvements to be made to make it more efficient but I can clean those up. I’ll need to rework the coordinator stuff as well. The subnet logic doesn’t seem valid to me (just reading the code). It looks like you’re taking the first octet and just using that as the subnet? |
It's working great!
I'm totally fine dropping the subnet part. My thought was that it might make it a little easier to build a template sensor for my original use case, but it really wouldn't change it much. |
|
I see, you were assuming a /24 subnet basically. Regarding the IPs we probably need to structure the data such that it includes the actual mac address etc and not just a list of IPs. Not exactly sure the best way to approach that :( |
Yeah. I didn't see a great way to add separate subnets without also adding a bunch of user config options. Maybe the better approach is to have the additional attributes just be a list of tuples containing the ip and mac addresses: @travisghansen Thoughts? |
|
Not sure honestly how the data for an arp table is stored. At the end of the day you’re looking for a mac not an ip right? Technically a single mac could have more than 1 ip but I think generally the value of this feature is more focused on macs vs IPs (for examples, for ip there are ping sensors etc that already exist). |
|
For my use case, I'm actually only interested in IP addresses. I just need
to be able to see if any devices are connected in my guest IP range.
…On Sat, Apr 15, 2023, 8:39 AM Travis Glenn Hansen ***@***.***> wrote:
Not sure honestly how the data for an arp table is stored. At the end of
the day you’re looking for a mac not an ip right? Technically a single mac
could have more than 1 ip but I think generally the value of this feature
is more focused on macs vs IPs (for examples, for ip there are ping sensors
etc that already exist).
—
Reply to this email directly, view it on GitHub
<#76 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AJUHV26KWWVAKSARBC7KYDLXBK6JRANCNFSM6AAAAAAWZP66WU>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
|
|
I think there was some discussion about getting dhcp stats on a per-interface basis. Is that an easier route? |
In some cases you can also have a single IP for multiple MACs. |
|
What (valid) scenario would that happen? |
Devices with multiple cards (wifi + ethernet, or double NICs not pooled). |
|
Each device in such cases has their own mac. I don’t think there’s a valid scenario where a single IP has multiple macs. |
There is: my media players have eth + wifi, and I want my DHCP server to assign the same address whatever interface the device is using. Same goes for my network printer, it has eth+wifi, and I have the same IP for both interfaces. |
|
This is a dnsmasq DHCP config for multiple MACs for 1 reserved IP: config 'host'
option 'name' 'printer'
option 'mac' '99:88:77:66:55:44 ff:ee:dd:cc:bb:aa'
option 'ip' '192.168.1.104' |
|
Purposely using arp poisoning is not valid :) Even in failover scenarios (ie: carp) the mac isn’t shared but rather is advertised by the active device. The shared screenshot makes my point. You shouldn’t have both wifi and eth enabled simultaneously…and even if you do the arp table of any peer will only respect 1 at any given time. |
|
There's no arp poisoning, only 1 interface of the two is active. :) |
|
Then we’re back where we started, there’s only 1 mac per IP :) |
Active on the network, yes, not on the DHCP server though. :) |
|
Even then, the lease is ‘abandoned’ so only 1 lease :) |
I don't know if at low level the IP is released and re-registered, maybe it's not necessary, the DHCP could simply refresh the ARP table with the new MAC. I didn't sniff it...:) I added this use-case if maybe there was the idea to scrape DHCP config to get MACs, just be aware that there could be multiple MACs for the same reserved IP. |
|
As far as the arp table is concerned (on the firewall and any peer) no. As far as dhcp leases no as well. It is a good point about scraping the config. In practice the dhcp details in the api don’t come from the config but rather the state/leases file. Each peer may have stale data (ie: arp is pointing to ‘old’ mac address), but peers generally clean this up pretty fast if the arp is no longer valid. |
|
ARP tables are refreshed through gratuitous ARP when the interface comes up. |
Related: #73
This is an attempt to get a sensor listing all of the IPs in the ARP table.
@travisghansen, I've tried a lot of different variations of
dict_get(state, "arp_table")and they always returnNone. Via some error logging through_LOGGER.error(...), I can see that the data is retrieved and set successfully here, but if I print out the wholestateobject in my addednative_value()method, it never has an "arp_table" property. Any idea what's going on?