Monitoreo
Contenido
Analisis
* Building a Network Management System
Revisar
* http://www.freesoftwaremagazine.com/free_issues/issue_02/free_it_management_tools/ * http://www.easyrider.com/monitoring_services.htm * http://www.itil.org.uk/
con analisis positivos
* http://hotsanic.sourceforge.net/ * http://pandoramon.sourceforge.net
Empresas
* http://www.itgroundwork.com/
Herramientas, comparativas
* http://www.networkuptime.com/tools/index.shtml * http://staff.science.uva.nl/~jblom/datatag/wp3_1/tools/ * Monitoring your Enterprise PACS with Nagios®, Cacti and Smokeping (PDF)
Herramientas
Sistemas de gran escala
* Ganglia Ganglia is a scalable distributed monitoring system for high-performance computing systems such as clusters and Grids
Algunas de las herramientas disponibles, solo una seleccion de las mejores
SmokePing
La pagina de ejemplo la encontramos en:
http://localhost/cgi-bin/smokeping.cgi
Para poder usar el probe de http hay que instalar a mano:
apt-get install echoping
Editar a mano
/etc/smokeping/config
segun
man smokeping_config
Como leer los graficos
* The median value is expressed with a horizontal, coloured line piece at the time the packets were send. * The # packets lost are expressed with the colour of the line piece. * The distribution of the Round-Trip-Times in the set of packets send are expressed with a vertical set of gray blocks, where the blackness of a block is an indication for the # packets in the sample bin, expressed by the height of the block. The gray blocks are of course only drawn when the distribution of Round-Trip-Times is observable from within the resolution of the ping command and / or the vertical RTT scale.
Nagios
* NagMIN - Network Monitoring System (Para configurar el nagios) * - Oreon - Esta basado en Nagios 1.2
NAGIOS has a Windows client you can install and report on standard services such as Event Logs alerts, CPU/Mem/Disk Usage etc. And monitor standard TCP services. You can also run syslog-ng on Windows and send all event log info to your Linux syslog.
* How to install Nagios under Debian
Zabbix
Procediemiento de instalacion
apt-get install libc6-dev libmysqlclient6-dev libsnmp5 libsnmp5-dev php4-gd Seguir el procedimiento de instalacion segun manual
Errores que pueden aparecer
Falta instalar libc6-dev
checking for C compiler default output file name... configure: error: C compiler cannot create executables See `config.log' for more details.
Falta instalar libmysqlclient6-dev
configure: error: Invalid MySQL directory - unable to find mysql.h
Falta libsnmp5 y libsnmp5-dev
configure: error: Invalid NET-SNMP directory - unable to find net-snmp-includes.h
MRTG
http://people.ee.ethz.ch/~oetiker/webtools/mrtg
MRTG can be used not only for bandwidth metering. We can configure MRTG to monitor server/router CPU, memory, uptime, TCP connections and a lot of other parameters. On MS Windows MRTG can be configured to keep track on any of system counters (disk usage, memory usage. Please fill in online form if you are interested in additional information. from http://www.farpost.com/windows_mrtg_setup.php#q7
Cacti
Netmap
Varios
* http://www.jffnms.org/ * SEC - simple event correlator * MONIT - UNIX System Management * Monitorix Total Control
SNMP
apt-get install snmpd snmp editar /etc/snmp/snmpd.conf y modificar #com2sec paranoid default public com2sec readonly 127.0.0.1 public #com2sec readwrite default private y /etc/init.d/snmpd restart
Analisis de trafico
NetFlow
Informacion
flowscan
http://www.caida.org/tools/utilities/flowscan/ Reportes de ejemplo:
fprobe y flowscan
Para el analisis de trafico hay que ver todo lo que pasa por la interface con: fprobe-ng Esta información es capturada por: flow-tools
apt-get install fprobe-ng flow-tools vi /etc/flow-tools/flow-capture.conf
flow-tools vs cflowd
Why use flow-tools instead of cflowd?
- flow-capture preserves the sub-second portion of the NetFlow timestamps that cflowd discards
- flow-tools is easier to build because it is written in portable C. Problems with building cflowd may occur because it requires cutting edge C++ features
- flow-tools is actively maintained, and supports newer NetFlow versions, including those from the popular Cisco Cat6K series platforms
flow-tools only required a small change to FlowScan:
Otros
Sensores del sistema
munin
ip_conntrack
* http://www.linpro.no/projects/munin/
{{{ chmod o+r /proc/net/ip_conntrack }}}
mbmon
Monitorea temperatura y voltajes sin demasiadas dependencias {{{ chmod +s /usr/bin/mbmon }}}
apache
To enable the handler uncomment the following section in the file /etc/apache2/apache2.conf: {{{ ExtendedStatus On <Location /server-status>
SetHandler server-status Order deny,allow Deny from all Allow from 127.0.0.1
</Location> }}} You will only need to ensure that you have the mod_info module loaded which you can do by running {{{ a2enmod info }}}
lm-sensors
{{{ apt-get install lm-sensors sensors-detect }}} Seguir las instrucciones y copiar los modulos como dice http://vctrsnts.dyndns.org/index.php?deb=articulos
Discos S.M.A.R.T.
{{{ apt-get install smartmontools
- habilitarlo en
vi /etc/default/smartmontools /etc/init.d/smartmontools start
- ver que descubrio
tail -30 /var/log/syslog }}} Por ahora no hay soporte a SATA If you ever tried to use smartctl to read info from your SATA drive, it will fail because libata doesn't yet support the needed ATA-passthrough ioctl() calls. Jeff Garzik, the developer of libata, says it will support it in the future. In the meantime you can apply a patch, and use libata-dev. The libata patchset can be acquired from http://www.kernel.org/pub/linux/kernel/people/jgarzik/libata/ , and after you install it, you can use smartctl to read SMART info from SATA device. However you must specify, on the command line, option "-d ata"