Sysop:Munin: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Mh (Diskussion | Beiträge) |
Muri (Diskussion | Beiträge) K (Muri verschob Seite Munin nach Sysop:Munin: articles refering to sysop stuff should be in the sysop namespace) |
||
| (9 dazwischenliegende Versionen von 2 Benutzern werden nicht angezeigt) | |||
| Zeile 1: | Zeile 1: | ||
== Links == | |||
* http://munin.projects.linpro.no/ | * http://munin.projects.linpro.no/ | ||
** SELinux Policy: http://www.nsa.gov/selinux/list-archive/0509/12676.cfm | ** SELinux Policy: http://www.nsa.gov/selinux/list-archive/0509/12676.cfm | ||
== | * Plugins: http://munin.projects.linpro.no/wiki/PluginCat | ||
* http://muninexchange.projects.linpro.no/?latest | |||
* | |||
== HowTo's == | |||
Monitor Apache Vhosts with Munin: | |||
* http://www.freshnet.org/wordpress/2007/03/08/monitorare-virtual-host-di-apache-con-munin/ | |||
== Install Node on OpenBSD == | |||
* You need gmake and perl net server for it: | |||
sudo pkg_add -r gmake p5-Net-Server | |||
* Download source | |||
* sudo groupadd munin | |||
* sudo gmake install-node install-node-plugins | |||
* enable plugins: /opt/munin/sbin/munin-node-configure --shell --families=contrib,auto | sudo sh -x | |||
== notes == | |||
* hostname, must be in the /etc/hosts file of the probe | |||
* the label must be specified: echo 'softirq.label softirq' | |||
= plugins = | |||
== selinux_enforced == | |||
<pre> | |||
#!/bin/sh | |||
# -*- sh -*- | |||
# | |||
# Plugin to get the state of /selinux/enforced | |||
#!/usr/bin/perl -T | |||
# tinydns-munin-plugin + | |||
# Copyright (C) 2007 admin at immerda.ch | |||
# | |||
# This program is free software; you can redistribute it and/or modify | |||
# it under the terms of the GNU General Public License as published by | |||
# the Free Software Foundation; either version 2 of the License, or | |||
# (at your option) any later version. | |||
# | |||
# This program is distributed in the hope that it will be useful, | |||
# but WITHOUT ANY WARRANTY; without even the implied warranty of | |||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |||
# GNU General Public License for more details. | |||
# | |||
# You should have received a copy of the GNU General Public License | |||
# along with this program; if not, write to the Free Software | |||
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA | |||
if [ "$1" = "autoconf" ]; then | |||
echo yes | |||
exit 0 | |||
fi | |||
if [ "$1" = "config" ]; then | |||
echo 'graph_title enforced amount' | |||
echo 'graph_args --upper-limit 1 -l 0 ' | |||
echo 'graph_vlabel Is the system selinux enforced?' | |||
echo 'graph_scale no\n'; | |||
echo 'graph_category selinux' | |||
echo 'enforced.label IsEnforced' | |||
#echo 'enforced.draw AREA' | |||
echo 'enforced.draw LINE2' | |||
exit 0 | |||
fi | |||
echo -n "enforced.value " && cat /selinux/enforce | |||
echo "" | |||
</pre> | |||
== tinydns == | |||
<pre> | |||
#!/usr/bin/perl -T | |||
# tinydns-munin-plugin + | |||
# Copyright (C) 2007 admin at immerda.ch | |||
# | |||
# This program is free software; you can redistribute it and/or modify | |||
# it under the terms of the GNU General Public License as published by | |||
# the Free Software Foundation; either version 2 of the License, or | |||
# (at your option) any later version. | |||
# | |||
# This program is distributed in the hope that it will be useful, | |||
# but WITHOUT ANY WARRANTY; without even the implied warranty of | |||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |||
# GNU General Public License for more details. | |||
# | |||
# You should have received a copy of the GNU General Public License | |||
# along with this program; if not, write to the Free Software | |||
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA | |||
# with the HELP of | |||
# tinygraph -- a RRDtool frontend for tinydns statistics | |||
# Copyright (C) 2005 Ulrich Zehl <ulrich@topfen.net> | |||
#use strict; # to activate .... | |||
#use Time::TAI64 qw(tai2unix); | |||
$A = 0; | |||
$NS = 0; | |||
$CNAME = 0; | |||
$SOA = 0; | |||
$PTR = 0; | |||
$HINFO = 0; | |||
$MX = 0; | |||
$TXT = 0; | |||
$RP = 0; | |||
$SIG = 0; | |||
$KEY = 0; | |||
$AAAA = 0; | |||
$A6 = 0; | |||
$IXFR = 0; | |||
$AXFR = 0; | |||
$ANY = 0; | |||
$logfile = $ENV{logdir} || "/var/tinydns/log/main/current"; | |||
if ( $ARGV[0] and $ARGV[0] eq "config" ) | |||
{ | |||
print "host_name $ENV{FQDN}\n"; | |||
print "graph_title tinydns\n"; | |||
print "graph_args --base 1000 -l 0\n"; | |||
print "graph_category DNS\n"; | |||
print "a.type COUNTER\n"; | |||
print "mx.type COUNTER\n"; | |||
print "a.label A\n"; | |||
print "ns.label NS\n"; | |||
print "cname.label CNAME\n"; | |||
print "soa.label SOA\n"; | |||
print "ptr.label PTR\n"; | |||
print "mx.label MX\n"; | |||
print "aaaa.label AAAA\n"; | |||
print "any.label ANY\n"; | |||
print "hinfo.label HINFO\n"; | |||
print "txt.label TXT\n"; | |||
print "rp.label RP\n"; | |||
print "sig.label SIG\n"; | |||
print "key.label KEY\n"; | |||
print "a6.label A6\n"; | |||
print "ixfr.label IXFR\n"; | |||
print "axfr.label AXFR\n"; | |||
print "a.type COUNTER\n"; | |||
print "ns.type COUNTER\n"; | |||
print "cname.type COUNTER\n"; | |||
print "soa.type COUNTER\n"; | |||
print "ptr.type COUNTER\n"; | |||
print "mx.type COUNTER\n"; | |||
print "aaaa.type COUNTER\n"; | |||
print "any.type COUNTER\n"; | |||
print "hinfo.type COUNTER\n"; | |||
print "txt.type COUNTER\n"; | |||
print "rp.type COUNTER\n"; | |||
print "sig.type COUNTER\n"; | |||
print "key.type COUNTER\n"; | |||
print "a6.type COUNTER\n"; | |||
print "ixfr.type COUNTER\n"; | |||
print "axfr.type COUNTER\n"; | |||
exit 0; | |||
} | |||
my %querytypes = ( | |||
'0001' => 'A', | |||
'0002' => 'NS', | |||
'0005' => 'CNAME', | |||
'0006' => 'SOA', | |||
'000c' => 'PTR', | |||
'000d' => 'HINFO', | |||
'000f' => 'MX', | |||
'0010' => 'TXT', | |||
'0011' => 'RP', | |||
'0018' => 'SIG', | |||
'0019' => 'KEY', | |||
'001c' => 'AAAA', | |||
'0026' => 'A6', | |||
'00fb' => 'IXFR', | |||
'00fc' => 'AXFR', | |||
'00ff' => 'ANY', | |||
); | |||
sub process_line($) | |||
{ | |||
my $line = shift; | |||
if ($line =~ /^(@[a-f0-9]{24}) ([a-f0-9]{8}):[a-f0-9]{4}:[a-f0-9]{4} ([\+\-IC\/]) ([a-f0-9]{4}) (.+)$/) | |||
{ | |||
#my $time = tai2unix($1); | |||
my $ip = join(".", unpack("C*", pack("H8", $2))); | |||
my $rtype = $3; | |||
my $qtype = $querytypes{$4}; | |||
#my $qstring = $5; # currently unused | |||
if ($rtype eq '+') | |||
{ | |||
if ($qtype eq 'A'){$A++;}; | |||
if ($qtype eq 'NS'){$NS++;}; | |||
if ($qtype eq 'CNAME'){$CNAME++;}; | |||
if ($qtype eq 'SOA'){$SOA++;}; | |||
if ($qtype eq 'PTR'){$PTR++;}; | |||
if ($qtype eq 'HINFO'){$HINFO++;}; | |||
if ($qtype eq 'MX'){$MX++;}; | |||
if ($qtype eq 'TXT'){$TXT++;}; | |||
if ($qtype eq 'RP'){$RP++;}; | |||
if ($qtype eq 'SIG'){$SIG++;}; | |||
if ($qtype eq 'KEY'){$KEY++;}; | |||
if ($qtype eq 'AAAA'){$AAAA++;}; | |||
if ($qtype eq 'A6'){$A6++;}; | |||
if ($qtype eq 'IXFR'){$IXFR++;}; | |||
if ($qtype eq 'AXFR'){$AXFR++;}; | |||
if ($qtype eq 'ANY'){$ANY++;}; | |||
} | |||
} | |||
} | |||
open(LOG, "<$logfile") or die "Error opening $logfile: $!"; | |||
while (<LOG>) | |||
{ | |||
process_line($_); | |||
} | |||
print "a.value $A\n"; | |||
print "ns.value $NS\n"; | |||
print "cname.value $CNAME\n"; | |||
print "soa.value $SOA\n"; | |||
print "ptr.value $PTR\n"; | |||
print "mx.value $MX\n"; | |||
print "aaaa.value $AAAA\n"; | |||
print "any.value $ANY\n"; | |||
print "hinfo.value $HINFO\n"; | |||
print "txt.value $TXT\n"; | |||
print "rp.value $RP\n"; | |||
print "sig.value $SIG\n"; | |||
print "key.value $KEY\n"; | |||
print "a6.value $A6\n"; | |||
print "ixfr.value $IXFR\n"; | |||
print "axfr.value $AXFR\n"; | |||
</pre> | |||
[[Category:ImmerdaDocumentationProject]] | [[Category:ImmerdaDocumentationProject]] | ||
Aktuelle Version vom 26. Oktober 2013, 23:09 Uhr
Links
- http://munin.projects.linpro.no/
- SELinux Policy: http://www.nsa.gov/selinux/list-archive/0509/12676.cfm
- Plugins: http://munin.projects.linpro.no/wiki/PluginCat
- http://muninexchange.projects.linpro.no/?latest
HowTo's
Monitor Apache Vhosts with Munin:
Install Node on OpenBSD
- You need gmake and perl net server for it:
sudo pkg_add -r gmake p5-Net-Server
- Download source
- sudo groupadd munin
- sudo gmake install-node install-node-plugins
- enable plugins: /opt/munin/sbin/munin-node-configure --shell --families=contrib,auto | sudo sh -x
notes
- hostname, must be in the /etc/hosts file of the probe
- the label must be specified: echo 'softirq.label softirq'
plugins
selinux_enforced
#!/bin/sh
# -*- sh -*-
#
# Plugin to get the state of /selinux/enforced
#!/usr/bin/perl -T
# tinydns-munin-plugin +
# Copyright (C) 2007 admin at immerda.ch
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
if [ "$1" = "autoconf" ]; then
echo yes
exit 0
fi
if [ "$1" = "config" ]; then
echo 'graph_title enforced amount'
echo 'graph_args --upper-limit 1 -l 0 '
echo 'graph_vlabel Is the system selinux enforced?'
echo 'graph_scale no\n';
echo 'graph_category selinux'
echo 'enforced.label IsEnforced'
#echo 'enforced.draw AREA'
echo 'enforced.draw LINE2'
exit 0
fi
echo -n "enforced.value " && cat /selinux/enforce
echo ""
tinydns
#!/usr/bin/perl -T
# tinydns-munin-plugin +
# Copyright (C) 2007 admin at immerda.ch
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
# with the HELP of
# tinygraph -- a RRDtool frontend for tinydns statistics
# Copyright (C) 2005 Ulrich Zehl <ulrich@topfen.net>
#use strict; # to activate ....
#use Time::TAI64 qw(tai2unix);
$A = 0;
$NS = 0;
$CNAME = 0;
$SOA = 0;
$PTR = 0;
$HINFO = 0;
$MX = 0;
$TXT = 0;
$RP = 0;
$SIG = 0;
$KEY = 0;
$AAAA = 0;
$A6 = 0;
$IXFR = 0;
$AXFR = 0;
$ANY = 0;
$logfile = $ENV{logdir} || "/var/tinydns/log/main/current";
if ( $ARGV[0] and $ARGV[0] eq "config" )
{
print "host_name $ENV{FQDN}\n";
print "graph_title tinydns\n";
print "graph_args --base 1000 -l 0\n";
print "graph_category DNS\n";
print "a.type COUNTER\n";
print "mx.type COUNTER\n";
print "a.label A\n";
print "ns.label NS\n";
print "cname.label CNAME\n";
print "soa.label SOA\n";
print "ptr.label PTR\n";
print "mx.label MX\n";
print "aaaa.label AAAA\n";
print "any.label ANY\n";
print "hinfo.label HINFO\n";
print "txt.label TXT\n";
print "rp.label RP\n";
print "sig.label SIG\n";
print "key.label KEY\n";
print "a6.label A6\n";
print "ixfr.label IXFR\n";
print "axfr.label AXFR\n";
print "a.type COUNTER\n";
print "ns.type COUNTER\n";
print "cname.type COUNTER\n";
print "soa.type COUNTER\n";
print "ptr.type COUNTER\n";
print "mx.type COUNTER\n";
print "aaaa.type COUNTER\n";
print "any.type COUNTER\n";
print "hinfo.type COUNTER\n";
print "txt.type COUNTER\n";
print "rp.type COUNTER\n";
print "sig.type COUNTER\n";
print "key.type COUNTER\n";
print "a6.type COUNTER\n";
print "ixfr.type COUNTER\n";
print "axfr.type COUNTER\n";
exit 0;
}
my %querytypes = (
'0001' => 'A',
'0002' => 'NS',
'0005' => 'CNAME',
'0006' => 'SOA',
'000c' => 'PTR',
'000d' => 'HINFO',
'000f' => 'MX',
'0010' => 'TXT',
'0011' => 'RP',
'0018' => 'SIG',
'0019' => 'KEY',
'001c' => 'AAAA',
'0026' => 'A6',
'00fb' => 'IXFR',
'00fc' => 'AXFR',
'00ff' => 'ANY',
);
sub process_line($)
{
my $line = shift;
if ($line =~ /^(@[a-f0-9]{24}) ([a-f0-9]{8}):[a-f0-9]{4}:[a-f0-9]{4} ([\+\-IC\/]) ([a-f0-9]{4}) (.+)$/)
{
#my $time = tai2unix($1);
my $ip = join(".", unpack("C*", pack("H8", $2)));
my $rtype = $3;
my $qtype = $querytypes{$4};
#my $qstring = $5; # currently unused
if ($rtype eq '+')
{
if ($qtype eq 'A'){$A++;};
if ($qtype eq 'NS'){$NS++;};
if ($qtype eq 'CNAME'){$CNAME++;};
if ($qtype eq 'SOA'){$SOA++;};
if ($qtype eq 'PTR'){$PTR++;};
if ($qtype eq 'HINFO'){$HINFO++;};
if ($qtype eq 'MX'){$MX++;};
if ($qtype eq 'TXT'){$TXT++;};
if ($qtype eq 'RP'){$RP++;};
if ($qtype eq 'SIG'){$SIG++;};
if ($qtype eq 'KEY'){$KEY++;};
if ($qtype eq 'AAAA'){$AAAA++;};
if ($qtype eq 'A6'){$A6++;};
if ($qtype eq 'IXFR'){$IXFR++;};
if ($qtype eq 'AXFR'){$AXFR++;};
if ($qtype eq 'ANY'){$ANY++;};
}
}
}
open(LOG, "<$logfile") or die "Error opening $logfile: $!";
while (<LOG>)
{
process_line($_);
}
print "a.value $A\n";
print "ns.value $NS\n";
print "cname.value $CNAME\n";
print "soa.value $SOA\n";
print "ptr.value $PTR\n";
print "mx.value $MX\n";
print "aaaa.value $AAAA\n";
print "any.value $ANY\n";
print "hinfo.value $HINFO\n";
print "txt.value $TXT\n";
print "rp.value $RP\n";
print "sig.value $SIG\n";
print "key.value $KEY\n";
print "a6.value $A6\n";
print "ixfr.value $IXFR\n";
print "axfr.value $AXFR\n";