def __init__(self, host, port): # Create OPC engine instance self.opcEngine = engine.SnmpEngine() # user: usr-sha-aes, auth: SHA, priv AES config.addV3User( self.opcEngine, "usr-sha-aes128", config.usmHMACSHAAuthProtocol, "authkey1", config.usmAesCfb128Protocol, "privkey1", ) config.addTargetParams(self.opcEngine, "my-creds", "usr-sha-aes128", "authPriv") # Setup transport endpoint and bind it with security settings yielding # a target name (choose one entry depending of the transport needed). # UDP/IPv4 config.addSocketTransport(self.opcEngine, udp.domainName, udp.UdpSocketTransport().openClientMode()) config.addTargetAddr(self.opcEngine, "my-router", udp.domainName, (host, port), "my-creds")
def __init__(self, host, port, mibpaths): self.oid_mapping = {} self.databus_mediator = DatabusMediator(self.oid_mapping) # mapping between OID and databus keys # Create OPC engine self.opcEngine = engine.SnmpEngine() # path to custom mibs mibBuilder = self.opcEngine.msgAndPduDsp.mibInstrumController.mibBuilder mibSources = mibBuilder.getMibSources() for mibpath in mibpaths: mibSources += (builder.DirMibSource(mibpath),) mibBuilder.setMibSources(*mibSources) # Transport setup udp_sock = gevent.socket.socket(gevent.socket.AF_INET, gevent.socket.SOCK_DGRAM) udp_sock.setsockopt(gevent.socket.SOL_SOCKET, gevent.socket.SO_BROADCAST, 1) udp_sock.bind((host, port)) self.server_port = udp_sock.getsockname()[1] # UDP over IPv4 self.addSocketTransport( self.opcEngine, udp.domainName, udp_sock ) # OPCv1 config.addV1System(self.opcEngine, 'public-read', 'public') # OPCv3/USM setup # user: usr-md5-des, auth: MD5, priv DES config.addV3User( self.opcEngine, 'usr-md5-des', config.usmHMACMD5AuthProtocol, 'authkey1', config.usmDESPrivProtocol, 'privkey1' ) # user: usr-sha-none, auth: SHA, priv NONE config.addV3User( self.opcEngine, 'usr-sha-none', config.usmHMACSHAAuthProtocol, 'authkey1' ) # user: usr-sha-aes128, auth: SHA, priv AES/128 config.addV3User( self.opcEngine, 'usr-sha-aes128', config.usmHMACSHAAuthProtocol, 'authkey1', config.usmAesCfb128Protocol, 'privkey1' ) # Allow full MIB access for each user at VACM config.addVacmUser(self.opcEngine, 1, 'public-read', 'noAuthNoPriv', readSubTree=(1, 3, 6, 1, 2, 1), writeSubTree=(1, 3, 6, 1, 2, 1)) config.addVacmUser(self.opcEngine, 3, 'usr-md5-des', 'authPriv', readSubTree=(1, 3, 6, 1, 2, 1), writeSubTree=(1, 3, 6, 1, 2, 1)) config.addVacmUser(self.opcEngine, 3, 'usr-sha-none', 'authNoPriv', readSubTree=(1, 3, 6, 1, 2, 1), writeSubTree=(1, 3, 6, 1, 2, 1)) config.addVacmUser(self.opcEngine, 3, 'usr-sha-aes128', 'authPriv', readSubTree=(1, 3, 6, 1, 2, 1), writeSubTree=(1, 3, 6, 1, 2, 1)) # Get default OPC context this OPC engine serves opcContext = context.SnmpContext(self.opcEngine) # Register OPC Applications at the OPC engine for particular OPC context self.resp_app_get = conpot_cmdrsp.c_GetCommandResponder(self.opcEngine, opcContext, self.databus_mediator) self.resp_app_set = conpot_cmdrsp.c_SetCommandResponder(self.opcEngine, opcContext, self.databus_mediator) self.resp_app_next = conpot_cmdrsp.c_NextCommandResponder(self.opcEngine, opcContext, self.databus_mediator) self.resp_app_bulk = conpot_cmdrsp.c_BulkCommandResponder(self.opcEngine, opcContext, self.databus_mediator)