diff --git a/agent/pve1-probes/jarvis-netscan.sh b/agent/pve1-probes/jarvis-netscan.sh new file mode 100644 index 0000000..1ab6c66 --- /dev/null +++ b/agent/pve1-probes/jarvis-netscan.sh @@ -0,0 +1,63 @@ +#!/bin/bash +# JARVIS Network Scanner — runs on PVE1, pushes nmap results to JARVIS +# Cron: */3 * * * * /usr/local/bin/jarvis-netscan.sh >/dev/null 2>&1 + +JARVIS_URL="http://10.48.200.211" +JARVIS_HOST="jarvis.orbishosting.com" +REG_KEY="f846a9aaf7ce9a61742c63c87c4186052a71d2a580c65518" +SUBNET="10.48.200.0/24" + +TMPFILE=$(mktemp) +nmap -sn --send-ip "$SUBNET" 2>/dev/null > "$TMPFILE" + +if [ ! -s "$TMPFILE" ]; then + echo "$(date): nmap produced no output" >&2 + rm -f "$TMPFILE" + exit 1 +fi + +JSON=$(python3 - "$TMPFILE" <<'PYEOF' +import sys, re, json + +with open(sys.argv[1]) as f: + data = f.read() + +devices = [] +cur = None + +for line in data.splitlines(): + line = line.strip() + m = re.match(r'Nmap scan report for (?:(\S+) \()?(\d+\.\d+\.\d+\.\d+)\)?', line) + if m: + if cur: + devices.append(cur) + hn = m.group(1) if m.group(1) and m.group(1) != m.group(2) else '' + cur = {'ip': m.group(2), 'hostname': hn, 'mac': '', 'vendor': ''} + elif cur: + m2 = re.match(r'MAC Address: ([0-9A-Fa-f:]{17}) \(([^)]+)\)', line) + if m2: + cur['mac'] = m2.group(1).lower() + cur['vendor'] = '' if m2.group(2) == 'Unknown' else m2.group(2) + +if cur: + devices.append(cur) + +print(json.dumps({'devices': devices})) +PYEOF +) + +rm -f "$TMPFILE" + +if [ -z "$JSON" ]; then + echo "$(date): JSON parse failed" >&2 + exit 1 +fi + +RESPONSE=$(curl -sk --max-time 15 \ + -X POST "$JARVIS_URL/api/netscan" \ + -H "Host: $JARVIS_HOST" \ + -H "Content-Type: application/json" \ + -H "X-Registration-Key: $REG_KEY" \ + -d "$JSON" 2>/dev/null) + +echo "$(date): $RESPONSE" diff --git a/agent/pve1-probes/jarvis-phone-probe.sh b/agent/pve1-probes/jarvis-phone-probe.sh new file mode 100644 index 0000000..b2ea9c3 --- /dev/null +++ b/agent/pve1-probes/jarvis-phone-probe.sh @@ -0,0 +1,56 @@ +#!/bin/bash +# JARVIS VoIP Phone Probe — runs every minute on PVE1 +# Pings all Yealink phones + checks FusionPBX SIP registration (read-only) +# 200.3 is on an external FusionPBX — ping only, no SIP check + +JARVIS_URL="http://10.48.200.211" +JARVIS_HOST="jarvis.orbishosting.com" +REG_KEY="f846a9aaf7ce9a61742c63c87c4186052a71d2a580c65518" +FUSION_HOST="134.209.72.226" + +# IP|alias|extension(none=skip SIP check)|mac +PHONES=( + "10.48.200.2|Yealink — Myron Main (Ext 1000)|1000|80:5e:c0:35:04:77" + "10.48.200.3|Yealink — United Mirror & Glass (External SIP)|none|c4:fc:22:28:63:71" + "10.48.200.43|Yealink T48S — Tommy Main (Ext 1001)|1001|80:5e:0c:15:0c:4f" + "10.48.200.86|Yealink — Myron Vanguard WiFi (Offline During Work Hrs)|none|" + "10.48.200.65|Yealink — Myron Vanguard Work (Ext 1003)|1003|c4:fc:22:13:e1:89" +) + +# Get SIP registrations from FusionPBX (read-only) +REG_OUTPUT=$(ssh -o StrictHostKeyChecking=no -o ConnectTimeout=5 -o BatchMode=yes \ + root@$FUSION_HOST "fs_cli -x 'show registrations'" 2>/dev/null || echo "") + +DEVICES="[" +FIRST=1 +for PHONE in "${PHONES[@]}"; do + IFS='|' read -r IP ALIAS EXT MAC <<< "$PHONE" + + # Ping probe + if ping -c 1 -W 2 "$IP" > /dev/null 2>&1; then + STATUS="online" + else + STATUS="offline" + fi + + # SIP check — skip for external phones (ext=none) + if [ "$EXT" = "none" ]; then + SIP="external" + elif [ -n "$REG_OUTPUT" ] && echo "$REG_OUTPUT" | grep -q "^${EXT},"; then + SIP="registered" + else + SIP="unregistered" + fi + + [ $FIRST -eq 0 ] && DEVICES+="," + DEVICES+="{\"ip\":\"$IP\",\"alias\":\"$ALIAS\",\"mac\":\"$MAC\",\"vendor\":\"Yealink\",\"status\":\"$STATUS\",\"sip_status\":\"$SIP\",\"extension\":\"$EXT\"}" + FIRST=0 +done +DEVICES+="]" + +curl -sk --max-time 10 \ + -X POST "$JARVIS_URL/api/netscan" \ + -H "Host: $JARVIS_HOST" \ + -H "Content-Type: application/json" \ + -H "X-Registration-Key: $REG_KEY" \ + -d "{\"devices\":$DEVICES}" > /dev/null 2>&1 diff --git a/agent/pve1-probes/jarvis-ping-probe.py b/agent/pve1-probes/jarvis-ping-probe.py new file mode 100644 index 0000000..620faad --- /dev/null +++ b/agent/pve1-probes/jarvis-ping-probe.py @@ -0,0 +1,100 @@ +#!/usr/bin/env python3 +""" +JARVIS Ping Probe — runs on PVE1 (10.48.200.90), which is on the LAN. +Pings devices that can't run the full agent, then calls JARVIS heartbeat +on their behalf so the dashboard shows live status. +""" + +import json +import subprocess +import urllib.request +import urllib.error +import ssl + +JARVIS_URL = "http://10.48.200.211" +HOST_HEADER = "jarvis.orbishosting.com" + +# Devices to probe: agent_id → api_key +DEVICES = { + "fortigate_gw": "00103aea6fcbf837bc55e11b445a3620", + "yealink_t48s": "2bf8bd7ca8dd31c28fd16aa956e15f88", + "homeassistant_ha": "6f8077dee7a7b4af202bc80886f1223d", +} + +# Map agent_id → IP (for ping) +IPS = { + "fortigate_gw": "10.48.200.1", + "yealink_t48s": "10.48.200.43", + "homeassistant_ha": "10.48.200.97", +} + +def ping(ip: str) -> bool: + result = subprocess.run( + ["ping", "-c", "1", "-W", "2", ip], + capture_output=True, timeout=5 + ) + return result.returncode == 0 + +def heartbeat(agent_id: str, api_key: str, alive: bool): + # If device is down we still send heartbeat so JARVIS updates last_seen + # and sets status based on the alive flag via the metric payload + ctx = ssl.create_default_context() + ctx.check_hostname = False + ctx.verify_mode = ssl.CERT_NONE + + payload = json.dumps({}).encode() + req = urllib.request.Request( + f"{JARVIS_URL}/api/agent/heartbeat", + data=payload, method="POST" + ) + req.add_header("Content-Type", "application/json") + req.add_header("X-Agent-Key", api_key) + req.add_header("Host", HOST_HEADER) + + try: + with urllib.request.urlopen(req, timeout=10, context=ctx): + pass + except Exception: + pass + +def update_status(agent_id: str, api_key: str, status: str): + """Push a minimal metric so JARVIS knows if device is up or down.""" + ctx = ssl.create_default_context() + ctx.check_hostname = False + ctx.verify_mode = ssl.CERT_NONE + + payload = json.dumps({ + "type": "system", + "data": { + "hostname": agent_id, + "cpu_percent": 0, + "ping_only": True, + "ping_status": status, + } + }).encode() + req = urllib.request.Request( + f"{JARVIS_URL}/api/agent/metrics", + data=payload, method="POST" + ) + req.add_header("Content-Type", "application/json") + req.add_header("X-Agent-Key", api_key) + req.add_header("Host", HOST_HEADER) + + try: + with urllib.request.urlopen(req, timeout=10, context=ctx): + pass + except Exception: + pass + +def main(): + for agent_id, api_key in DEVICES.items(): + ip = IPS.get(agent_id, "") + alive = ping(ip) if ip else False + status = "online" if alive else "offline" + print(f"{agent_id} ({ip}): {status}", flush=True) + heartbeat(agent_id, api_key, alive) + if alive: + update_status(agent_id, api_key, status) + +if __name__ == "__main__": + main()