Embed Size (px)
Citation preview
Relatório Semanal U&M InvestLinux – 10/05/2016
Servidores LinuxUptime / Last
Uptime (Tempo Online do Servidor) Last (Conexões remotas)
[root@uemgw]# uptime 13:45:48 up 161 days, 1:03, 3 users, load average: 0.07, 0.14, 0.20
[root@uemadm]# uptime 13:45:44 up 353 days, 19:06, 2 users, load average: 0.00, 0.04, 0.05
[root@uemgw]# last | sort k 3 | morevpnuem ppp1 138.0.138.12 Tue May 3 09:54 10:07 (00:13) vpnuem ppp1 177.67.100.42 Fri May 6 00:56 03:18 (02:21) vpnuem ppp0 177.67.100.42 Fri May 6 10:03 10:28 (00:25) vpnuem ppp1 177.67.100.42 Fri May 6 10:28 11:30 (01:01) vpnuem ppp0 177.67.100.42 Fri May 6 14:12 16:52 (02:40) vpnuem ppp0 177.67.100.42 Mon May 2 10:07 13:03 (02:55) vpnuem ppp0 177.67.100.42 Mon May 9 09:26 09:46 (00:19) vpnuem ppp0 177.67.100.42 Mon May 9 11:22 18:33 (07:11) vpnuem ppp2 177.67.100.42 Mon May 9 16:29 16:43 (00:13) vpnuem ppp0 177.67.100.42 Mon May 9 18:34 08:24 (13:49) vpnuem ppp0 177.67.100.42 Thu May 5 15:25 16:21 (00:55) vpnuem ppp0 177.67.100.42 Thu May 5 16:25 18:32 (02:06) vpnuem ppp0 177.67.100.42 Thu May 5 18:35 03:21 (08:45) vpnuem ppp0 177.67.100.42 Thu May 5 18:35 18:35 (00:00) vpnuem ppp0 177.67.100.42 Tue May 10 08:25 still logged in vpnuem ppp0 177.67.100.42 Tue May 3 08:11 14:41 (06:29) vpnuem ppp1 186.213.71.61 Mon May 9 15:07 16:58 (01:51) iladm pts/0 187.109.112.9 Thu May 5 10:44 11:09 (00:24) iladm pts/2 187.109.112.9 Tue May 10 10:36 10:57 (00:20) iladm pts/1 187.109.112.9 Tue May 10 13:45 still logged in iladm pts/2 187.109.112.9 Tue May 10 13:45 still logged in iladm pts/1 187.109.112.9 Tue May 3 10:16 18:44 (08:27) iladm pts/0 187.109.112.9 Wed May 4 07:58 09:43 (01:44) vpnuem ppp1 189.24.72.227 Tue May 10 10:26 10:40 (00:13) vpnuem ppp1 189.24.72.227 Tue May 10 10:40 10:45 (00:05) vpnuem ppp1 192.168.1.80 Fri May 6 16:29 16:29 (00:00) vpnuem ppp1 192.168.1.80 Fri May 6 16:30 16:31 (00:00) wtmp begins Mon May 2 10:07:46 2016root pts/0 uemmbb254.uem.co Fri May 6 11:21 11:29 (00:08)
[root@uemadm:]# last | sort k 3 | moreiladm pts/0 192.168.0.1 Thu May 5 10:44 11:09 (00:24) iladm pts/0 192.168.0.1 Tue May 10 13:45 still logged in iladm pts/0 192.168.0.1 Wed May 4 09:16 09:43 (00:27) andreia ftpd29580 ::ffff:187.109.1 Fri May 6 11:59 12:22 (00:23) andreia ftpd27604 ::ffff:187.109.1 Fri May 6 15:00 15:12 (00:11) andreia ftpd14570 ::ffff:187.109.1 Fri May 6 16:55 17:05 (00:10) andreia ftpd16956 ::ffff:187.109.1 Fri May 6 17:09 17:21 (00:11) luis ftpd23280 ::ffff:201.46.14 Fri May 6 00:06 00:16 (00:10) luis ftpd27486 ::ffff:201.46.14 Thu May 5 00:08 00:44 (00:36) luis ftpd872 ::ffff:201.46.14 Thu May 5 00:46 01:00 (00:13) luis ftpd1909 ::ffff:201.46.14 Thu May 5 08:51 09:01 (00:10) luis ftpd4076 ::ffff:201.46.14 Thu May 5 09:04 09:26 (00:22) luis ftpd19090 ::ffff:201.46.14 Thu May 5 16:55 17:34 (00:38) luis ftpd27406 ::ffff:201.46.14 Thu May 5 17:42 17:52 (00:10) luis ftpd17296 ::ffff:201.46.14 Wed May 4 06:48 06:58 (00:10) luis ftpd31217 ::ffff:201.46.14 Wed May 4 08:14 08:28 (00:14) luis ftpd3024 ::ffff:201.46.14 Wed May 4 08:40 08:50 (00:10) luis ftpd6156 ::ffff:201.46.14 Wed May 4 08:59 09:11 (00:11)
luis ftpd7720 ::ffff:201.46.14 Wed May 4 09:09 09:19 (00:10) luis ftpd9898 ::ffff:201.46.14 Wed May 4 09:21 10:00 (00:38) luis ftpd16597 ::ffff:201.46.14 Wed May 4 10:00 10:17 (00:16) luis ftpd20704 ::ffff:201.46.14 Wed May 4 10:24 10:34 (00:10) luis ftpd25006 ::ffff:201.46.14 Wed May 4 10:47 10:51 (00:03) luis ftpd25611 ::ffff:201.46.14 Wed May 4 10:51 10:54 (00:02) luis ftpd26069 ::ffff:201.46.14 Wed May 4 10:54 11:03 (00:09) luis ftpd27628 ::ffff:201.46.14 Wed May 4 11:03 11:13 (00:10) luis ftpd29915 ::ffff:201.46.14 Wed May 4 11:17 11:36 (00:19) luis ftpd11784 ::ffff:201.46.14 Wed May 4 12:41 12:53 (00:12) luis ftpd15626 ::ffff:201.46.14 Wed May 4 13:05 13:32 (00:27) luis ftpd20204 ::ffff:201.46.14 Wed May 4 13:32 13:43 (00:10) luis ftpd22069 ::ffff:201.46.14 Wed May 4 13:43 14:01 (00:17) luis ftpd26778 ::ffff:201.46.14 Wed May 4 14:09 14:19 (00:10) luis ftpd2860 ::ffff:201.46.14 Wed May 4 14:58 15:10 (00:11) luis ftpd9619 ::ffff:201.46.14 Wed May 4 15:36 15:50 (00:13) luis ftpd12756 ::ffff:201.46.14 Wed May 4 15:55 16:40 (00:45) luis ftpd23283 ::ffff:201.46.14 Wed May 4 16:57 17:07 (00:10) luis ftpd20906 ::ffff:201.46.14 Wed May 4 20:03 20:19 (00:16) luis ftpd3516 ::ffff:201.46.14 Wed May 4 21:37 21:50 (00:13) luis ftpd5601 ::ffff:201.46.14 Wed May 4 21:50 22:04 (00:13) luis ftpd7870 ::ffff:201.46.14 Wed May 4 22:05 22:26 (00:21) luis ftpd11293 ::ffff:201.46.14 Wed May 4 22:26 23:21 (00:54) luis ftpd25242 ::ffff:201.46.14 Wed May 4 23:54 00:08 (00:13) root pts/0 uemmbb254.uem.co Fri May 6 11:20 11:41 (00:20) wtmp begins Wed May 4 06:48:06 2016
Espaço em disco
[root@uemgw]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 38G 22G 15G 60% /varrun 1,5G 296K 1,5G 1% /var/runvarlock 1,5G 0 1,5G 0% /var/lockudev 1,5G 52K 1,5G 1% /devdevshm 1,5G 0 1,5G 0% /dev/shm/dev/sdb1 50G 39G 8,7G 82% /backup/dev/sda1 471M 140M 308M 32% /boot//192.168.0.106/Pessoal 30G 22G 8,4G 73% /ftp/Pessoal//192.168.0.100/CorporeRM 47G 23G 25G 48% /home/ponto//192.168.0.106/Linux_BKP 110G 86G 25G 79% /backupremoto//192.168.0.106/TGP 682G 483G 199G 71% /ftp/TGP
[root@uemadm:]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 96G 79G 13G 86% /varrun 2,0G 3,9M 2,0G 1% /var/runvarlock 2,0G 0 2,0G 0% /var/lockudev 2,0G 52K 2,0G 1% /devdevshm 2,0G 0 2,0G 0% /dev/shm/dev/sda1 471M 150M 297M 34% /boot//192.168.0.106/Linux_BKP 110G 86G 25G 79% /backupremoto
Dmesg
Dmesg – Alertas de Console (Eventuais Erros de Disco, Rede, Hardware em geral) Sem informações relevantes
LogsVerificação superficial de logs do sistema:
( syslog(tmsys) / secure(tms) / squid(tmsq – uemgw) )
Top Memória / Processos / Carga Sem informações relevantes
Portas Tcp Udp Abertas[root@uemgw]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 localhost:60000 *:* LISTEN 8464/postgrey.pid tcp 0 0 *:10050 *:* LISTEN 10214/zabbix_agentdtcp 0 0 192.168.0.1:5666 *:* LISTEN 8858/nrpe tcp 0 0 *:rsync *:* LISTEN 9053/rsync tcp 0 0 localhost:zebra *:* LISTEN 9034/zebra tcp 0 0 localhost:mysql *:* LISTEN 8396/mysqld tcp 0 0 localhost:bgpd *:* LISTEN 9038/bgpd tcp 0 0 *:webmin *:* LISTEN 10245/perl tcp 0 0 *:81 *:* LISTEN 9261/apache2 tcp 0 0 *:bgp *:* LISTEN 9038/bgpd tcp 0 0 *:ftp *:* LISTEN 23896/proftpd: (acctcp 0 0 192.168.12.10:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.29:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.27:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.25:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.23:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.21:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.19:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.17:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.15:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.13:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.11:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.9:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.7:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.3:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.5:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.1:domain *:* LISTEN 7939/named tcp 0 0 201048214114.:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.14:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.29:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.28:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.12:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.50:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.11:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.10:domain *:* LISTEN 7939/named tcp 0 0 n009.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n008.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n007.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n006.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev2.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n002.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev1.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 uemnotes.uem.com:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.28:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.29:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.12:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.50:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.11:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.10:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.9:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.8:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.7:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.6:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.4:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.3:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.2:domain *:* LISTEN 7939/named tcp 0 0 n001.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.5:domain *:* LISTEN 7939/named tcp 0 0 192.168.2.1:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.2:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.1:domain *:* LISTEN 7939/named tcp 0 0 localhost:domain *:* LISTEN 7939/named tcp 0 0 *:ssh *:* LISTEN 8264/sshd tcp 0 0 *:3128 *:* LISTEN 8413/(squid) tcp 0 0 *:smtp *:* LISTEN 9013/master tcp 0 0 localhost:953 *:* LISTEN 7939/named tcp 0 0 *:1723 *:* LISTEN 9020/pptpd tcp6 0 0 [::]:rsync [::]:* LISTEN 9053/rsync tcp6 0 0 [::]:bgp [::]:* LISTEN 9038/bgpd tcp6 0 0 [::]:domain [::]:* LISTEN 7939/named tcp6 0 0 [::]:ssh [::]:* LISTEN 8264/sshd
tcp6 0 0 ip6localhost:953 [::]:* LISTEN 7939/named Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemgw:~# netstat nap | grep LISTEN | grep v STREAMtcp 0 0 127.0.0.1:60000 0.0.0.0:* LISTEN 8464/postgrey.pid tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 10214/zabbix_agentdtcp 0 0 192.168.0.1:5666 0.0.0.0:* LISTEN 8858/nrpe tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 9053/rsync tcp 0 0 127.0.0.1:2601 0.0.0.0:* LISTEN 9034/zebra tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 8396/mysqld tcp 0 0 127.0.0.1:2605 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 10245/perl tcp 0 0 0.0.0.0:81 0.0.0.0:* LISTEN 9261/apache2 tcp 0 0 0.0.0.0:179 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 23896/proftpd: (acctcp 0 0 192.168.12.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.27:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.25:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.23:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.21:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.19:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.17:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.15:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.13:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 201.48.214.114:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.14:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.2.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 8264/sshd tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 8413/(squid) tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 9013/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:1723 0.0.0.0:* LISTEN 9020/pptpd tcp6 0 0 :::873 :::* LISTEN 9053/rsync tcp6 0 0 :::179 :::* LISTEN 9038/bgpd tcp6 0 0 :::53 :::* LISTEN 7939/named tcp6 0 0 :::22 :::* LISTEN 8264/sshd tcp6 0 0 ::1:953 :::* LISTEN 7939/named Obs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
[root@uemadm]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 *:10050 *:* LISTEN 7872/zabbix_agentdtcp 0 0 uemadm:5666 *:* LISTEN 5559/nrpe tcp 0 0 *:10051 *:* LISTEN 23793/zabbix_servertcp 0 0 *:rsync *:* LISTEN 5636/rsync tcp 0 0 *:gds_db *:* LISTEN 20823/fbserver tcp 0 0 localhost:mysql *:* LISTEN 5375/mysqld tcp 0 0 *:netbiosssn *:* LISTEN 5655/smbd tcp 0 0 *:webmin *:* LISTEN 20398/perl tcp 0 0 portal.uem.com.br:www *:* LISTEN 4390/apache2 tcp 0 0 *:82 *:* LISTEN 4390/apache2 tcp 0 0 *:ssh *:* LISTEN 5277/sshd tcp 0 0 localhost:postgresql *:* LISTEN 5524/postgres tcp 0 0 *:smtp *:* LISTEN 617/master tcp 0 0 *:microsoftds *:* LISTEN 5655/smbd tcp6 0 0 [::]:rsync [::]:* LISTEN 5636/rsync tcp6 0 0 [::]:ftp [::]:* LISTEN 15726/proftpd: (acctcp6 0 0 [::]:ssh [::]:* LISTEN 5277/sshd Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemadm:~# netstat nap | grep LISTEN | grep v STREAM tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 7872/zabbix_agentdtcp 0 0 192.168.0.109:5666 0.0.0.0:* LISTEN 5559/nrpe tcp 0 0 0.0.0.0:10051 0.0.0.0:* LISTEN 23793/zabbix_servertcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 5636/rsync tcp 0 0 0.0.0.0:3050 0.0.0.0:* LISTEN 20823/fbserver tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 5375/mysqld tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 5655/smbd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 20398/perl tcp 0 0 192.168.0.124:80 0.0.0.0:* LISTEN 4390/apache2 tcp 0 0 0.0.0.0:82 0.0.0.0:* LISTEN 4390/apache2 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 5277/sshd tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 5524/postgres tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 617/master tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 5655/smbd tcp6 0 0 :::873 :::* LISTEN 5636/rsync tcp6 0 0 :::21 :::* LISTEN 15726/proftpd: (acctcp6 0 0 :::22 :::* LISTEN 5277/sshdObs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
Squid Reports Semanal – 01/05/2016 a 08/05/2016
Squid Reports – TopSites
Squid Reports – TopUsers
Squid Reports – Tentativas de acesso a Sites Indevidos
LOCAL ACESSADO IPwww.ninfetasgratis.net 192.168.15.130www.sexoquente.tv 192.168.15.130
Obs: Não foi acrescentada nenhuma expressão ao arquivo /etc/squid/site_proibido.txt a fim de impedir o acesso desites relacionados.
OFFICE 365
Caixa de correio ativas e inativas
Número de caixas de correio ativas e inativas ao longo do tempo. Uma caixa decorreio é considerada inativa se um usuário não fizer logon por mais de 30 dias.
Inativo há 30 60 dias
Inativo há 61 90 dias
Inativo há mais de 90 dias
Data Nome para exibição Último logon bem-sucedido Dias inativos
09/05/2016 00:00 adsync 2014-10-06T07:45:18 58109/05/2016 00:00 Andre Santos 2016-01-21T04:56:11 10909/05/2016 00:00 Antonio Junior 2015-12-15T11:22:04 14609/05/2016 00:00 Augusto Amaral 39509/05/2016 00:00 Brian Amarilla 2015-12-28T09:30:27 13309/05/2016 00:00 Delba Souza 2016-01-18T03:48:39 11209/05/2016 00:00 Edmilson Diniz 2015-12-03T05:28:45 15809/05/2016 00:00 Jan Carlos 2015-11-22T12:42:13 16909/05/2016 00:00 Jefferson Mourao 2015-12-08T09:56:11 15309/05/2016 00:00 Junior Oliveira 14009/05/2016 00:00 Linux 39509/05/2016 00:00 Lucas Navarro 2016-01-15T01:16:04 11509/05/2016 00:00 Luiz Campos 2014-10-26T11:30:27 56109/05/2016 00:00 nfe.matriz 39509/05/2016 00:00 nfe.varzeadolopes 39509/05/2016 00:00 Rodrigo Jose 39509/05/2016 00:00 Sala Reunião 3 39509/05/2016 00:00 Sala Reunião 4 39509/05/2016 00:00 Sala Reunião 5 39509/05/2016 00:00 Sala Reunião 6 39509/05/2016 00:00 Sandro Almeida 2016-02-04T09:38:13 9509/05/2016 00:00 uem uem 2015-12-22T05:46:14 13909/05/2016 00:00 valdinei braz 2016-01-22T01:07:41 10809/05/2016 00:00 Walter Marcondes 2016-01-11T11:52:38 119
Uso da caixa de correio
Mostra o número total de caixas de correio, caixas de correio que excederam suascotas de armazenamento e caixas de correio que estão usando menos de 25% de seulimite de armazenamento.
Sistema operacional usado
Mostra o número de sistemas operacionais diferentes nos quais seus usuáriosentraram com suas contas do Office 365 nos últimos 30 dias.
Licenciamento vs Uso Ativo
Visualize o uso ativo (nos últimos 30 dias) de seus serviços do O365 emcomparação com os serviços realmente licenciados para o seu uso. Use esses dadospara verificar se você está obtendo o máximo do seu investimento em nuvem.
Proteção (dados dos últimos 14 dias)
Principais destinatários de email
Principais remetentes de email
Principais destinatários de spams
Principais destinatários de Malware
Detecções de Spam
Principal malware de email
Emails recebidos e enviados
Detecções de malware
Anti virus – Bitdefender
ZABBIX
Triggers mais ativas da semana – TOP 10Hosts que mais geraram alerta no Zabbixx
Fonte:http://192.168.0.109:82/zabbix/report5.php?sid=87d41391d956aaea&form_refresh=1&period=week
Gráficos
Período de 26/04/2016 a 10/05/2016
SERVIDORES LINUX
UEM_ADM CPU Utilization
UEM_ADM Memory Usage
UEM_ADM Disk Space Usage
UEM_GW CPU Utilization
UEM_GW Memory Usage
UEM_GW Disk Space Usage
SERVIDORES WINDOWS
UEMFS – CPU LOAD
UEMFS – Disk Usage
UEMICA – CPU Load
UEMICA – Disk space usage
UEMRMSA – CPU Load
UEMRMSA – Disk Space Usage
Relatório de Disponibilidade (SLA) – 26/04/2016 a 10/05/2016
Será exibida a observação e detalhes do problema quando estes atingirem 2%
UEMICA – okUEMRMAP – okUEMRMSA – Espaço em disco menor que 10% no volume MUEMFS – okUEMMINE – Espaço em disco menor que 10% no volume M
UEMRMSA
UEMMINE
Fonte: http:// 192.168.0.109 :82/zabbix/report2.php
Nagios
Disponibilidade – últimos 7 dias
Host Service % Time OK% Time Warning
% Time Unknown
% Time Critical
% Time Undetermined
nagios_remoto Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-adm Local_Carga100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:82100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-gw Local_Carga99.950% (99.950%)
0.050% (0.050%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_backup100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_bkpremoto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_ftp_pessoal
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Dns100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ftp100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:81100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Squid:3128100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemantispam-linux Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemap-aplicacao Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemdev Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemfs-fileserver Rede_NetBios100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_NetBios
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemica-metaframe Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Metaframe100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Metaframe
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemmine-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemprd Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemrmsa-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemvm-vmware4 Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-lan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-wan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Average99.999% (99.999%)
0.001% (0.001%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
