Embed Size (px)
Citation preview
Relatório Semanal U&M InvestLinux – 25/10/2016
Servidores LinuxUptime / Last
Uptime (Tempo Online do Servidor) Last (Conexões remotas)
[root@uemgw]# uptime 17:49:47 up 329 days, 4:08, 2 users, load average: 0.26, 0.35, 0.39
[root@uemadm]# uptime 17:50:21 up 115 days, 5:52, 2 users, load average: 0.00, 0.00, 0.00
[root@uemgw]# last | sort k 3 | moreuem ftpd2666 138.186.223.52 Tue Oct 18 09:02 09:02 (00:00) uem ftpd2667 138.186.223.52 Tue Oct 18 09:02 09:04 (00:01) uem ftpd6413 138.186.223.52 Tue Oct 25 11:01 11:01 (00:00) uem ftpd6416 138.186.223.52 Tue Oct 25 11:01 11:03 (00:02) uem ftpd6750 138.186.223.52 Tue Oct 25 11:08 11:08 (00:00) uem ftpd6754 138.186.223.52 Tue Oct 25 11:08 11:12 (00:04) uem ftpd6841 138.186.223.52 Tue Oct 25 11:09 11:09 (00:00) uem ftpd6976 138.186.223.52 Tue Oct 25 11:11 11:11 (00:00) uem ftpd7037 138.186.223.52 Tue Oct 25 11:13 11:13 (00:00) uem ftpd7040 138.186.223.52 Tue Oct 25 11:13 11:22 (00:08) iladm pts/0 187.109.112.9 Tue Oct 25 14:38 16:40 (02:01) iladm pts/1 187.109.112.9 Tue Oct 25 16:08 still logged in iladm pts/0 187.109.112.9 Tue Oct 25 17:49 still logged in iladm pts/2 187.109.112.9 Tue Oct 25 17:50 still logged in uem ftpd6091 191711144dyn Sat Oct 22 08:52 08:52 (00:00) uem ftpd6137 191711144dyn Sat Oct 22 08:52 08:52 (00:00) uem ftpd6092 191711144dyn Sat Oct 22 08:52 08:57 (00:05) uem ftpd6105 191711144dyn Sat Oct 22 08:52 09:02 (00:10) uem ftpd6106 191711144dyn Sat Oct 22 08:52 09:03 (00:10) uem ftpd7054 191711144dyn Sat Oct 22 09:16 09:26 (00:10) uem ftpd5383 191711144dyn Thu Oct 20 17:57 17:57 (00:00) uem ftpd5384 191711144dyn Thu Oct 20 17:57 17:58 (00:00) uem ftpd5400 191711144dyn Thu Oct 20 17:58 17:58 (00:00) uem ftpd5399 191711144dyn Thu Oct 20 17:58 18:00 (00:01) vpnuem ppp0 192.168.1.69 Fri Oct 21 08:28 08:43 (00:15) uemcc ftpd10468 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10477 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10479 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10494 195.53.175.97 Tue Oct 25 05:47 05:47 (00:00) uemcc ftpd10496 195.53.175.97 Tue Oct 25 05:47 05:48 (00:00) uemcc ftpd10524 195.53.175.97 Tue Oct 25 05:48 05:48 (00:00) uemcc ftpd10522 195.53.175.97 Tue Oct 25 05:48 05:49 (00:00) uemcc ftpd10543 195.53.175.97 Tue Oct 25 05:49 05:49 (00:00) uemcc ftpd10545 195.53.175.97 Tue Oct 25 05:49 05:50 (00:00) uemcc ftpd10607 195.53.175.97 Tue Oct 25 05:50 05:50 (00:00) uemcc ftpd18689 197.242.169.170 Tue Oct 25 06:58 07:01 (00:02) uemcc ftpd18686 197.242.169.170 Tue Oct 25 06:59 07:06 (00:07) uemcc ftpd18646 197.242.169.170 Tue Oct 25 06:59 07:14 (00:15) uemcc ftpd22398 197.242.169.170 Tue Oct 25 07:26 07:33 (00:07) uemcc ftpd22727 197.242.169.170 Tue Oct 25 07:33 07:42 (00:08) uemcc ftpd23068 197.242.169.170 Tue Oct 25 07:43 07:55 (00:12) vpnuem ppp0 201.46.148.20 Thu Oct 20 15:39 17:50 (02:10) iladm pts/1 mail.investlinux Mon Oct 24 14:46 14:54 (00:07) iladm pts/0 mail.investlinux Tue Oct 18 14:03 14:22 (00:19) iladm pts/0 mail.investlinux Tue Oct 25 12:15 13:52 (01:36) iladm pts/0 mail.investlinux Wed Oct 19 10:11 12:12 (02:00) wtmp begins Tue Oct 18 09:02:54 2016 uemcc ftpd5602 uemmbb304.uem.co Mon Oct 24 10:06 10:06 (00:00) uemcc ftpd5603 uemmbb304.uem.co Mon Oct 24 10:06 10:12 (00:05) uemcc ftpd5776 uemop016.uem.com Mon Oct 24 10:11 10:11 (00:00)
uemcc ftpd5784 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5814 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5816 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5836 uemop016.uem.com Mon Oct 24 10:13 10:13 (00:00) uemcc ftpd5838 uemop016.uem.com Mon Oct 24 10:13 10:13 (00:00) uemcc ftpd5854 uemop016.uem.com Mon Oct 24 10:14 10:14 (00:00) uemcc ftpd5856 uemop016.uem.com Mon Oct 24 10:14 10:14 (00:00) free ftpd4720 uemti01.uem.com. Mon Oct 24 09:46 09:46 (00:00) free ftpd4724 uemti01.uem.com. Mon Oct 24 09:46 09:46 (00:00) free ftpd4721 uemti01.uem.com. Mon Oct 24 09:46 09:56 (00:10) uemcc ftpd4988 uemti01.uem.com. Mon Oct 24 09:50 09:50 (00:00) uemcc ftpd4989 uemti01.uem.com. Mon Oct 24 09:50 10:01 (00:11)
root@uemadm:~# last | sort k 3 | more luis ftpd24376 17759122149.3 Fri Oct 21 21:29 21:41 (00:12) luis ftpd26434 17759122149.3 Fri Oct 21 21:41 22:21 (00:40) iladm pts/0 192.168.0.1 Tue Oct 18 14:03 14:22 (00:18) iladm pts/0 192.168.0.1 Tue Oct 25 14:39 16:40 (02:01) iladm pts/1 192.168.0.1 Tue Oct 25 16:08 still logged in iladm pts/0 192.168.0.1 Tue Oct 25 17:50 still logged in luis ftpd26811 ::ffff:201.46.15 Tue Oct 25 14:28 15:20 (00:51) luis ftpd3606 ::ffff:201.46.15 Tue Oct 25 15:21 15:44 (00:23) luis ftpd11209 ::ffff:201.46.15 Tue Oct 25 16:06 16:22 (00:15) wtmp begins Tue Oct 18 14:03:33 2016
Espaço em disco
[root@uemgw]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 38G 25G 12G 68% / varrun 1,5G 296K 1,5G 1% /var/run varlock 1,5G 0 1,5G 0% /var/lock udev 1,5G 52K 1,5G 1% /dev devshm 1,5G 0 1,5G 0% /dev/shm /dev/sdb1 50G 38G 9,6G 80% /backup /dev/sda1 471M 140M 308M 32% /boot //192.168.0.106/Pessoal 30G 23G 7,9G 74% /ftp/Pessoal //192.168.0.100/CorporeRM 47G 21G 27G 44% /home/ponto //192.168.0.106/Linux_BKP 110G 84G 27G 76% /backupremoto //192.168.0.106/TGP 682G 595G 87G 88% /ftp/TGP
[root@uemadm:]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 96G 67G 25G 73% / varrun 2,0G 12M 2,0G 1% /var/run varlock 2,0G 0 2,0G 0% /var/lock udev 2,0G 52K 2,0G 1% /dev devshm 2,0G 0 2,0G 0% /dev/shm /dev/sda1 471M 150M 297M 34% /boot //192.168.0.106/Linux_BKP 110G 84G 27G 76% /backupremoto
DmesgDmesg – Alertas de Console (Eventuais Erros de Disco, Rede, Hardware em geral) Sem informações relevantes
LogsVerificação superficial de logs do sistema:
( syslog(tmsys) / secure(tms) / squid(tmsq – uemgw) )
Top Memória / Processos / Carga Sem informações relevantes
Portas Tcp Udp Abertas[root@uemgw]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 localhost:60000 *:* LISTEN 8464/postgrey.pid tcp 0 0 192.168.0.1:5666 *:* LISTEN 13202/nrpe tcp 0 0 *:10050 *:* LISTEN 10214/zabbix_agentd tcp 0 0 *:rsync *:* LISTEN 9053/rsync tcp 0 0 localhost:zebra *:* LISTEN 9034/zebra tcp 0 0 localhost:mysql *:* LISTEN 8396/mysqld tcp 0 0 localhost:bgpd *:* LISTEN 9038/bgpd tcp 0 0 *:webmin *:* LISTEN 10245/perl tcp 0 0 *:81 *:* LISTEN 5803/apache2 tcp 0 0 *:bgp *:* LISTEN 9038/bgpd tcp 0 0 *:ftp *:* LISTEN 1433/proftpd: (acce tcp 0 0 192.168.12.10:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.29:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.27:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.25:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.23:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.21:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.19:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.17:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.15:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.13:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.11:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.9:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.7:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.3:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.5:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.1:domain *:* LISTEN 7939/named tcp 0 0 201048214114.:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.14:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.29:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.28:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.12:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.50:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.11:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.10:domain *:* LISTEN 7939/named tcp 0 0 n009.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n008.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n007.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n006.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev2.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n002.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev1.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 uemnotes.uem.com:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.28:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.29:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.12:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.50:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.11:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.10:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.9:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.8:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.7:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.6:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.4:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.3:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.2:domain *:* LISTEN 7939/named tcp 0 0 n001.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.5:domain *:* LISTEN 7939/named tcp 0 0 192.168.2.1:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.2:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.1:domain *:* LISTEN 7939/named tcp 0 0 localhost:domain *:* LISTEN 7939/named tcp 0 0 *:ssh *:* LISTEN 8264/sshd tcp 0 0 *:3128 *:* LISTEN 8413/(squid) tcp 0 0 *:smtp *:* LISTEN 9013/master tcp 0 0 localhost:953 *:* LISTEN 7939/named tcp 0 0 *:1723 *:* LISTEN 9020/pptpd tcp6 0 0 [::]:rsync [::]:* LISTEN 9053/rsync tcp6 0 0 [::]:bgp [::]:* LISTEN 9038/bgpd
tcp6 0 0 [::]:domain [::]:* LISTEN 7939/named tcp6 0 0 [::]:ssh [::]:* LISTEN 8264/sshd tcp6 0 0 ip6localhost:953 [::]:* LISTEN 7939/named Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemgw:~# netstat nap | grep LISTEN | grep v STREAMtcp 0 0 127.0.0.1:60000 0.0.0.0:* LISTEN 8464/postgrey.pid tcp 0 0 192.168.0.1:5666 0.0.0.0:* LISTEN 13202/nrpe tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 10214/zabbix_agentd tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 9053/rsync tcp 0 0 127.0.0.1:2601 0.0.0.0:* LISTEN 9034/zebra tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 8396/mysqld tcp 0 0 127.0.0.1:2605 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 10245/perl tcp 0 0 0.0.0.0:81 0.0.0.0:* LISTEN 5803/apache2 tcp 0 0 0.0.0.0:179 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 1433/proftpd: (acce tcp 0 0 192.168.12.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.27:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.25:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.23:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.21:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.19:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.17:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.15:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.13:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 201.48.214.114:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.14:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.2.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 8264/sshd tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 8413/(squid) tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 9013/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:1723 0.0.0.0:* LISTEN 9020/pptpd tcp6 0 0 :::873 :::* LISTEN 9053/rsync tcp6 0 0 :::179 :::* LISTEN 9038/bgpd tcp6 0 0 :::53 :::* LISTEN 7939/named tcp6 0 0 :::22 :::* LISTEN 8264/sshd
tcp6 0 0 ::1:953 :::* LISTEN 7939/named Obs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
[root@uemadm]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 *:10050 *:* LISTEN 5764/zabbix_agentd tcp 0 0 uemadm:5666 *:* LISTEN 5486/nrpe tcp 0 0 *:10051 *:* LISTEN 20320/zabbix_server tcp 0 0 *:rsync *:* LISTEN 5565/rsync tcp 0 0 localhost:mysql *:* LISTEN 5373/mysqld tcp 0 0 *:gds_db *:* LISTEN 5254/fbserver tcp 0 0 *:netbiosssn *:* LISTEN 5582/smbd tcp 0 0 *:webmin *:* LISTEN 6234/perl tcp 0 0 portal.uem.com.br:www *:* LISTEN 5723/apache2 tcp 0 0 *:82 *:* LISTEN 5723/apache2 tcp 0 0 *:ssh *:* LISTEN 7409/sshd tcp 0 0 localhost:postgresql *:* LISTEN 5450/postgres tcp 0 0 *:smtp *:* LISTEN 17711/master tcp 0 0 *:microsoftds *:* LISTEN 5582/smbd tcp6 0 0 [::]:rsync [::]:* LISTEN 5565/rsync tcp6 0 0 [::]:ftp [::]:* LISTEN 17473/proftpd: (acc tcp6 0 0 [::]:ssh [::]:* LISTEN 7409/sshd Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemadm:~# netstat nap | grep LISTEN | grep v STREAM tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 5764/zabbix_agentd tcp 0 0 192.168.0.109:5666 0.0.0.0:* LISTEN 5486/nrpe tcp 0 0 0.0.0.0:10051 0.0.0.0:* LISTEN 20320/zabbix_server tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 5565/rsync tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 5373/mysqld tcp 0 0 0.0.0.0:3050 0.0.0.0:* LISTEN 5254/fbserver tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 5582/smbd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 6234/perl tcp 0 0 192.168.0.124:80 0.0.0.0:* LISTEN 5723/apache2 tcp 0 0 0.0.0.0:82 0.0.0.0:* LISTEN 5723/apache2 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 7409/sshd tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 5450/postgres tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 17711/master tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 5582/smbd tcp6 0 0 :::873 :::* LISTEN 5565/rsync tcp6 0 0 :::21 :::* LISTEN 17473/proftpd: (acc tcp6 0 0 :::22 :::* LISTEN 7409/sshd Obs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
Squid Reports Semanal – 17/10/2016 a 23/10/2016
Squid Reports – TopSites
Squid Reports – TopUsers
Squid Reports – Tentativas de acesso a Sites Indevidos
LOCAL ACESSADO IPwww.pornoirado.com 192.168.18.214
Obs: Não foi acrescentada nenhuma expressão ao arquivo /etc/squid/site_proibido.txt a fim de impedir o acesso desites relacionados.
OFFICE 365
Emails – Uso
Caixa de Correio
Armazenamento
Cota
Caixa de correio ativas e inativas
Número de caixas de correio ativas e inativas ao longo do tempo. Uma caixa decorreio é considerada inativa se um usuário não fizer logon por mais de 30 dias.
Inativo há 30 60 dias
Inativo há 61 90 dias
Inativo há mais de 90 dias
Uso da caixa de correio
Mostra o número total de caixas de correio, caixas de correio que excederam suascotas de armazenamento e caixas de correio que estão usando menos de 25% de seulimite de armazenamento.
Sistema operacional usado
Mostra o número de sistemas operacionais diferentes nos quais seus usuáriosentraram com suas contas do Office 365 nos últimos 30 dias.
Licenciamento vs Uso Ativo
Visualize o uso ativo (nos últimos 30 dias) de seus serviços do O365 emcomparação com os serviços realmente licenciados para o seu uso. Use esses dadospara verificar se você está obtendo o máximo do seu investimento em nuvem.
Proteção (dados dos últimos 14 dias)
Principais destinatários de email
Principais remetentes de email
Principais destinatários de spams
Principais destinatários de Malware
Detecções de Spam
Principal malware de email
Emails recebidos e enviados
Detecções de malware
Anti virus – Bitdefender
ZABBIX
Triggers mais ativas da semana – TOP 10Hosts que mais geraram alerta no Zabbixx
Fonte:http://192.168.0.109:82/zabbix/report5.php?sid=87d41391d956aaea&form_refresh=1&period=week
Gráficos
Período de 12/10/2016 a 26/10/2016
SERVIDORES LINUX
UEM_ADM CPU Utilization
UEM_ADM Memory Usage
UEM_ADM Disk Space Usage
UEM_GW CPU Utilization
UEM_GW Memory Usage
UEM_GW Disk Space Usage
SERVIDORES WINDOWS
UEMFS – CPU LOAD
UEMFS – Disk Usage
UEMICA – CPU Load
UEMICA – Disk space usage
UEMRMSA – CPU Load
UEMRMSA – Disk Space Usage
Relatório de Disponibilidade (SLA) – 12/10/2016 a 26/10/2016
Será exibida a observação e detalhes do problema quando estes atingirem 2%
UEMICA – okUEMRMAP – okUEMRMSA – Free disk space is less than 10% on volume MUEMFS – okUEMMINE – ok
UEMRMSA
Fonte: http:// 192.168.0.109 :82/zabbix/report2.php
Nagios
Disponibilidade – últimos 7 dias
Host Service % Time OK% Time Warning
% Time Unknown
% Time Critical
% Time Undetermined
nagios_remoto Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-adm Local_Carga100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:82100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-gw Local_Carga100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_backup100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_bkpremoto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_ftp_pessoal
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Dns100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ftp100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:81100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Squid:3128100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemantispam-linux Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemap-aplicacao Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemdev Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemfs-fileserver Rede_NetBios100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_NetBios
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemica-metaframe Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Metaframe100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Metaframe
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemmine-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemprd Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemrmsa-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemvm-vmware4 Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-lan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-wan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Average100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
