Relatório Semanal U&M InvestLinux –...
Transcript of Relatório Semanal U&M InvestLinux –...
![Page 1: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/1.jpg)
Relatório Semanal U&M InvestLinux – 25/10/2016
Servidores LinuxUptime / Last
Uptime (Tempo Online do Servidor) Last (Conexões remotas)
[root@uemgw]# uptime 17:49:47 up 329 days, 4:08, 2 users, load average: 0.26, 0.35, 0.39
[root@uemadm]# uptime 17:50:21 up 115 days, 5:52, 2 users, load average: 0.00, 0.00, 0.00
[root@uemgw]# last | sort k 3 | moreuem ftpd2666 138.186.223.52 Tue Oct 18 09:02 09:02 (00:00) uem ftpd2667 138.186.223.52 Tue Oct 18 09:02 09:04 (00:01) uem ftpd6413 138.186.223.52 Tue Oct 25 11:01 11:01 (00:00) uem ftpd6416 138.186.223.52 Tue Oct 25 11:01 11:03 (00:02) uem ftpd6750 138.186.223.52 Tue Oct 25 11:08 11:08 (00:00) uem ftpd6754 138.186.223.52 Tue Oct 25 11:08 11:12 (00:04) uem ftpd6841 138.186.223.52 Tue Oct 25 11:09 11:09 (00:00) uem ftpd6976 138.186.223.52 Tue Oct 25 11:11 11:11 (00:00) uem ftpd7037 138.186.223.52 Tue Oct 25 11:13 11:13 (00:00) uem ftpd7040 138.186.223.52 Tue Oct 25 11:13 11:22 (00:08) iladm pts/0 187.109.112.9 Tue Oct 25 14:38 16:40 (02:01) iladm pts/1 187.109.112.9 Tue Oct 25 16:08 still logged in iladm pts/0 187.109.112.9 Tue Oct 25 17:49 still logged in iladm pts/2 187.109.112.9 Tue Oct 25 17:50 still logged in uem ftpd6091 191711144dyn Sat Oct 22 08:52 08:52 (00:00) uem ftpd6137 191711144dyn Sat Oct 22 08:52 08:52 (00:00) uem ftpd6092 191711144dyn Sat Oct 22 08:52 08:57 (00:05) uem ftpd6105 191711144dyn Sat Oct 22 08:52 09:02 (00:10) uem ftpd6106 191711144dyn Sat Oct 22 08:52 09:03 (00:10) uem ftpd7054 191711144dyn Sat Oct 22 09:16 09:26 (00:10) uem ftpd5383 191711144dyn Thu Oct 20 17:57 17:57 (00:00) uem ftpd5384 191711144dyn Thu Oct 20 17:57 17:58 (00:00) uem ftpd5400 191711144dyn Thu Oct 20 17:58 17:58 (00:00) uem ftpd5399 191711144dyn Thu Oct 20 17:58 18:00 (00:01) vpnuem ppp0 192.168.1.69 Fri Oct 21 08:28 08:43 (00:15) uemcc ftpd10468 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10477 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10479 195.53.175.97 Tue Oct 25 05:46 05:46 (00:00) uemcc ftpd10494 195.53.175.97 Tue Oct 25 05:47 05:47 (00:00) uemcc ftpd10496 195.53.175.97 Tue Oct 25 05:47 05:48 (00:00) uemcc ftpd10524 195.53.175.97 Tue Oct 25 05:48 05:48 (00:00) uemcc ftpd10522 195.53.175.97 Tue Oct 25 05:48 05:49 (00:00) uemcc ftpd10543 195.53.175.97 Tue Oct 25 05:49 05:49 (00:00) uemcc ftpd10545 195.53.175.97 Tue Oct 25 05:49 05:50 (00:00) uemcc ftpd10607 195.53.175.97 Tue Oct 25 05:50 05:50 (00:00) uemcc ftpd18689 197.242.169.170 Tue Oct 25 06:58 07:01 (00:02) uemcc ftpd18686 197.242.169.170 Tue Oct 25 06:59 07:06 (00:07) uemcc ftpd18646 197.242.169.170 Tue Oct 25 06:59 07:14 (00:15) uemcc ftpd22398 197.242.169.170 Tue Oct 25 07:26 07:33 (00:07) uemcc ftpd22727 197.242.169.170 Tue Oct 25 07:33 07:42 (00:08) uemcc ftpd23068 197.242.169.170 Tue Oct 25 07:43 07:55 (00:12) vpnuem ppp0 201.46.148.20 Thu Oct 20 15:39 17:50 (02:10) iladm pts/1 mail.investlinux Mon Oct 24 14:46 14:54 (00:07) iladm pts/0 mail.investlinux Tue Oct 18 14:03 14:22 (00:19) iladm pts/0 mail.investlinux Tue Oct 25 12:15 13:52 (01:36) iladm pts/0 mail.investlinux Wed Oct 19 10:11 12:12 (02:00) wtmp begins Tue Oct 18 09:02:54 2016 uemcc ftpd5602 uemmbb304.uem.co Mon Oct 24 10:06 10:06 (00:00) uemcc ftpd5603 uemmbb304.uem.co Mon Oct 24 10:06 10:12 (00:05) uemcc ftpd5776 uemop016.uem.com Mon Oct 24 10:11 10:11 (00:00)
![Page 2: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/2.jpg)
uemcc ftpd5784 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5814 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5816 uemop016.uem.com Mon Oct 24 10:12 10:12 (00:00) uemcc ftpd5836 uemop016.uem.com Mon Oct 24 10:13 10:13 (00:00) uemcc ftpd5838 uemop016.uem.com Mon Oct 24 10:13 10:13 (00:00) uemcc ftpd5854 uemop016.uem.com Mon Oct 24 10:14 10:14 (00:00) uemcc ftpd5856 uemop016.uem.com Mon Oct 24 10:14 10:14 (00:00) free ftpd4720 uemti01.uem.com. Mon Oct 24 09:46 09:46 (00:00) free ftpd4724 uemti01.uem.com. Mon Oct 24 09:46 09:46 (00:00) free ftpd4721 uemti01.uem.com. Mon Oct 24 09:46 09:56 (00:10) uemcc ftpd4988 uemti01.uem.com. Mon Oct 24 09:50 09:50 (00:00) uemcc ftpd4989 uemti01.uem.com. Mon Oct 24 09:50 10:01 (00:11)
root@uemadm:~# last | sort k 3 | more luis ftpd24376 17759122149.3 Fri Oct 21 21:29 21:41 (00:12) luis ftpd26434 17759122149.3 Fri Oct 21 21:41 22:21 (00:40) iladm pts/0 192.168.0.1 Tue Oct 18 14:03 14:22 (00:18) iladm pts/0 192.168.0.1 Tue Oct 25 14:39 16:40 (02:01) iladm pts/1 192.168.0.1 Tue Oct 25 16:08 still logged in iladm pts/0 192.168.0.1 Tue Oct 25 17:50 still logged in luis ftpd26811 ::ffff:201.46.15 Tue Oct 25 14:28 15:20 (00:51) luis ftpd3606 ::ffff:201.46.15 Tue Oct 25 15:21 15:44 (00:23) luis ftpd11209 ::ffff:201.46.15 Tue Oct 25 16:06 16:22 (00:15) wtmp begins Tue Oct 18 14:03:33 2016
Espaço em disco
[root@uemgw]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 38G 25G 12G 68% / varrun 1,5G 296K 1,5G 1% /var/run varlock 1,5G 0 1,5G 0% /var/lock udev 1,5G 52K 1,5G 1% /dev devshm 1,5G 0 1,5G 0% /dev/shm /dev/sdb1 50G 38G 9,6G 80% /backup /dev/sda1 471M 140M 308M 32% /boot //192.168.0.106/Pessoal 30G 23G 7,9G 74% /ftp/Pessoal //192.168.0.100/CorporeRM 47G 21G 27G 44% /home/ponto //192.168.0.106/Linux_BKP 110G 84G 27G 76% /backupremoto //192.168.0.106/TGP 682G 595G 87G 88% /ftp/TGP
[root@uemadm:]# df hSist. Arq. Tam Usad Disp Uso% Montado em/dev/sda3 96G 67G 25G 73% / varrun 2,0G 12M 2,0G 1% /var/run varlock 2,0G 0 2,0G 0% /var/lock udev 2,0G 52K 2,0G 1% /dev devshm 2,0G 0 2,0G 0% /dev/shm /dev/sda1 471M 150M 297M 34% /boot //192.168.0.106/Linux_BKP 110G 84G 27G 76% /backupremoto
DmesgDmesg – Alertas de Console (Eventuais Erros de Disco, Rede, Hardware em geral) Sem informações relevantes
LogsVerificação superficial de logs do sistema:
( syslog(tmsys) / secure(tms) / squid(tmsq – uemgw) )
![Page 3: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/3.jpg)
Top Memória / Processos / Carga Sem informações relevantes
Portas Tcp Udp Abertas[root@uemgw]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 localhost:60000 *:* LISTEN 8464/postgrey.pid tcp 0 0 192.168.0.1:5666 *:* LISTEN 13202/nrpe tcp 0 0 *:10050 *:* LISTEN 10214/zabbix_agentd tcp 0 0 *:rsync *:* LISTEN 9053/rsync tcp 0 0 localhost:zebra *:* LISTEN 9034/zebra tcp 0 0 localhost:mysql *:* LISTEN 8396/mysqld tcp 0 0 localhost:bgpd *:* LISTEN 9038/bgpd tcp 0 0 *:webmin *:* LISTEN 10245/perl tcp 0 0 *:81 *:* LISTEN 5803/apache2 tcp 0 0 *:bgp *:* LISTEN 9038/bgpd tcp 0 0 *:ftp *:* LISTEN 1433/proftpd: (acce tcp 0 0 192.168.12.10:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.29:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.27:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.25:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.23:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.21:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.19:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.17:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.15:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.13:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.11:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.9:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.7:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.3:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.5:domain *:* LISTEN 7939/named tcp 0 0 10.0.0.1:domain *:* LISTEN 7939/named tcp 0 0 201048214114.:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.14:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.29:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.28:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.12:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.50:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.11:domain *:* LISTEN 7939/named tcp 0 0 177.38.168.10:domain *:* LISTEN 7939/named tcp 0 0 n009.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n008.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n007.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n006.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev2.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 n002.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 rev1.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 uemnotes.uem.com:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.28:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.29:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.12:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.50:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.11:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.10:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.9:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.8:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.7:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.6:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.4:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.3:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.2:domain *:* LISTEN 7939/named tcp 0 0 n001.uem.com.br:domain *:* LISTEN 7939/named tcp 0 0 200.243.57.5:domain *:* LISTEN 7939/named tcp 0 0 192.168.2.1:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.2:domain *:* LISTEN 7939/named tcp 0 0 192.168.0.1:domain *:* LISTEN 7939/named tcp 0 0 localhost:domain *:* LISTEN 7939/named tcp 0 0 *:ssh *:* LISTEN 8264/sshd tcp 0 0 *:3128 *:* LISTEN 8413/(squid) tcp 0 0 *:smtp *:* LISTEN 9013/master tcp 0 0 localhost:953 *:* LISTEN 7939/named tcp 0 0 *:1723 *:* LISTEN 9020/pptpd tcp6 0 0 [::]:rsync [::]:* LISTEN 9053/rsync tcp6 0 0 [::]:bgp [::]:* LISTEN 9038/bgpd
![Page 4: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/4.jpg)
tcp6 0 0 [::]:domain [::]:* LISTEN 7939/named tcp6 0 0 [::]:ssh [::]:* LISTEN 8264/sshd tcp6 0 0 ip6localhost:953 [::]:* LISTEN 7939/named Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemgw:~# netstat nap | grep LISTEN | grep v STREAMtcp 0 0 127.0.0.1:60000 0.0.0.0:* LISTEN 8464/postgrey.pid tcp 0 0 192.168.0.1:5666 0.0.0.0:* LISTEN 13202/nrpe tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 10214/zabbix_agentd tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 9053/rsync tcp 0 0 127.0.0.1:2601 0.0.0.0:* LISTEN 9034/zebra tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 8396/mysqld tcp 0 0 127.0.0.1:2605 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 10245/perl tcp 0 0 0.0.0.0:81 0.0.0.0:* LISTEN 5803/apache2 tcp 0 0 0.0.0.0:179 0.0.0.0:* LISTEN 9038/bgpd tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 1433/proftpd: (acce tcp 0 0 192.168.12.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.27:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.25:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.23:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.21:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.19:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.17:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.15:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.13:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 10.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 201.48.214.114:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.14:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.28:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.29:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.12:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.50:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.11:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.10:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.9:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.8:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.7:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.6:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.4:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.3:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 177.38.168.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 200.243.57.5:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.2.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.2:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 192.168.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 8264/sshd tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 8413/(squid) tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 9013/master tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 7939/named tcp 0 0 0.0.0.0:1723 0.0.0.0:* LISTEN 9020/pptpd tcp6 0 0 :::873 :::* LISTEN 9053/rsync tcp6 0 0 :::179 :::* LISTEN 9038/bgpd tcp6 0 0 :::53 :::* LISTEN 7939/named tcp6 0 0 :::22 :::* LISTEN 8264/sshd
![Page 5: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/5.jpg)
tcp6 0 0 ::1:953 :::* LISTEN 7939/named Obs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
[root@uemadm]# netstat ap | grep LISTEN | grep v STREAMtcp 0 0 *:10050 *:* LISTEN 5764/zabbix_agentd tcp 0 0 uemadm:5666 *:* LISTEN 5486/nrpe tcp 0 0 *:10051 *:* LISTEN 20320/zabbix_server tcp 0 0 *:rsync *:* LISTEN 5565/rsync tcp 0 0 localhost:mysql *:* LISTEN 5373/mysqld tcp 0 0 *:gds_db *:* LISTEN 5254/fbserver tcp 0 0 *:netbiosssn *:* LISTEN 5582/smbd tcp 0 0 *:webmin *:* LISTEN 6234/perl tcp 0 0 portal.uem.com.br:www *:* LISTEN 5723/apache2 tcp 0 0 *:82 *:* LISTEN 5723/apache2 tcp 0 0 *:ssh *:* LISTEN 7409/sshd tcp 0 0 localhost:postgresql *:* LISTEN 5450/postgres tcp 0 0 *:smtp *:* LISTEN 17711/master tcp 0 0 *:microsoftds *:* LISTEN 5582/smbd tcp6 0 0 [::]:rsync [::]:* LISTEN 5565/rsync tcp6 0 0 [::]:ftp [::]:* LISTEN 17473/proftpd: (acc tcp6 0 0 [::]:ssh [::]:* LISTEN 7409/sshd Obs: Comando mostra na quarta coluna, preferencialmente, o nome do serviço após o caracter “:”.
root@uemadm:~# netstat nap | grep LISTEN | grep v STREAM tcp 0 0 0.0.0.0:10050 0.0.0.0:* LISTEN 5764/zabbix_agentd tcp 0 0 192.168.0.109:5666 0.0.0.0:* LISTEN 5486/nrpe tcp 0 0 0.0.0.0:10051 0.0.0.0:* LISTEN 20320/zabbix_server tcp 0 0 0.0.0.0:873 0.0.0.0:* LISTEN 5565/rsync tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN 5373/mysqld tcp 0 0 0.0.0.0:3050 0.0.0.0:* LISTEN 5254/fbserver tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 5582/smbd tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN 6234/perl tcp 0 0 192.168.0.124:80 0.0.0.0:* LISTEN 5723/apache2 tcp 0 0 0.0.0.0:82 0.0.0.0:* LISTEN 5723/apache2 tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 7409/sshd tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 5450/postgres tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 17711/master tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 5582/smbd tcp6 0 0 :::873 :::* LISTEN 5565/rsync tcp6 0 0 :::21 :::* LISTEN 17473/proftpd: (acc tcp6 0 0 :::22 :::* LISTEN 7409/sshd Obs: Comando mostra na quarta coluna a porta do serviço após o caracter “:”.
![Page 6: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/6.jpg)
Squid Reports Semanal – 17/10/2016 a 23/10/2016
Squid Reports – TopSites
Squid Reports – TopUsers
![Page 7: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/7.jpg)
Squid Reports – Tentativas de acesso a Sites Indevidos
LOCAL ACESSADO IPwww.pornoirado.com 192.168.18.214
Obs: Não foi acrescentada nenhuma expressão ao arquivo /etc/squid/site_proibido.txt a fim de impedir o acesso desites relacionados.
![Page 8: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/8.jpg)
OFFICE 365
Emails – Uso
Caixa de Correio
![Page 9: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/9.jpg)
Armazenamento
Cota
![Page 10: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/10.jpg)
![Page 11: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/11.jpg)
Caixa de correio ativas e inativas
Número de caixas de correio ativas e inativas ao longo do tempo. Uma caixa decorreio é considerada inativa se um usuário não fizer logon por mais de 30 dias.
Inativo há 30 60 dias
Inativo há 61 90 dias
![Page 12: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/12.jpg)
Inativo há mais de 90 dias
![Page 13: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/13.jpg)
Uso da caixa de correio
Mostra o número total de caixas de correio, caixas de correio que excederam suascotas de armazenamento e caixas de correio que estão usando menos de 25% de seulimite de armazenamento.
Sistema operacional usado
Mostra o número de sistemas operacionais diferentes nos quais seus usuáriosentraram com suas contas do Office 365 nos últimos 30 dias.
![Page 14: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/14.jpg)
Licenciamento vs Uso Ativo
Visualize o uso ativo (nos últimos 30 dias) de seus serviços do O365 emcomparação com os serviços realmente licenciados para o seu uso. Use esses dadospara verificar se você está obtendo o máximo do seu investimento em nuvem.
![Page 15: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/15.jpg)
Proteção (dados dos últimos 14 dias)
Principais destinatários de email
Principais remetentes de email
![Page 16: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/16.jpg)
Principais destinatários de spams
Principais destinatários de Malware
![Page 17: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/17.jpg)
Detecções de Spam
![Page 18: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/18.jpg)
Principal malware de email
![Page 19: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/19.jpg)
Emails recebidos e enviados
![Page 20: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/20.jpg)
Detecções de malware
![Page 21: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/21.jpg)
Anti virus – Bitdefender
![Page 22: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/22.jpg)
![Page 23: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/23.jpg)
ZABBIX
Triggers mais ativas da semana – TOP 10Hosts que mais geraram alerta no Zabbixx
Fonte:http://192.168.0.109:82/zabbix/report5.php?sid=87d41391d956aaea&form_refresh=1&period=week
![Page 24: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/24.jpg)
Gráficos
Período de 12/10/2016 a 26/10/2016
SERVIDORES LINUX
UEM_ADM CPU Utilization
UEM_ADM Memory Usage
![Page 25: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/25.jpg)
UEM_ADM Disk Space Usage
UEM_GW CPU Utilization
![Page 26: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/26.jpg)
UEM_GW Memory Usage
UEM_GW Disk Space Usage
![Page 27: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/27.jpg)
SERVIDORES WINDOWS
UEMFS – CPU LOAD
UEMFS – Disk Usage
![Page 28: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/28.jpg)
![Page 29: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/29.jpg)
![Page 30: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/30.jpg)
UEMICA – CPU Load
UEMICA – Disk space usage
![Page 31: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/31.jpg)
UEMRMSA – CPU Load
UEMRMSA – Disk Space Usage
![Page 32: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/32.jpg)
![Page 33: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/33.jpg)
Relatório de Disponibilidade (SLA) – 12/10/2016 a 26/10/2016
Será exibida a observação e detalhes do problema quando estes atingirem 2%
UEMICA – okUEMRMAP – okUEMRMSA – Free disk space is less than 10% on volume MUEMFS – okUEMMINE – ok
UEMRMSA
Fonte: http:// 192.168.0.109 :82/zabbix/report2.php
![Page 34: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/34.jpg)
Nagios
Disponibilidade – últimos 7 dias
Host Service % Time OK% Time Warning
% Time Unknown
% Time Critical
% Time Undetermined
nagios_remoto Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-adm Local_Carga100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:82100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem-gw Local_Carga100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_Root100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_backup100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_bkpremoto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_ftp_pessoal
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Processos100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Local_Users100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Dns100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ftp100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Http:81100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Squid:3128100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Local_Disk_home_ponto
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemantispam-linux Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SSH100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemap-aplicacao Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemdev Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemfs-fileserver Rede_NetBios100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
![Page 35: Relatório Semanal U&M InvestLinux – 25/10/2016portal.uem.com.br/relatorio/relatorio-uem-investlinux-20161025.pdf · Relatório Semanal U&M InvestLinux – 25/10/2016 Servidores](https://reader034.fdocuments.ec/reader034/viewer/2022052613/5f1cbf563c77190945742fd3/html5/thumbnails/35.jpg)
uem1_Rede_NetBios
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemica-metaframe Rede_Http100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Metaframe100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Metaframe
100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_TS100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemmine-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Sql100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemprd Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_SAP100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemrmsa-database Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uemvm-vmware4 Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-lan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
vpn-server-mk-wan Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
uem1_Rede_Ping100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%
Average100.000% (100.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000% (0.000%)
0.000%