1、zabbix_agent端部署自定義腳本,獲取運行的服務端口並將數據以json類型返回給zabbix_server
#!/usr/bin/env python
#coding:utf-8
import os,json
port_list=[]
port_dict={"data":None}
cmd='''netstat -tnlp|grep -v 127.0.0.1|egrep -i "java|php|httpd|nginx|mysqld|redis|squid3|named"|awk {'print $4'}|awk -F':' '{if ($NF~/^[0-9]*$/) print $NF}'|sort|uniq'''
local_ports=os.popen(cmd).readlines()
for port in local_ports:
pdict={}
pdict["{#TCP_PORT}"]=port.replace("\n", "")
port_list.append(pdict)
port_dict["data"]=port_list
jsonStr = json.dumps(port_dict, sort_keys=True, indent=4)
print jsonStr
使用批量管理工具ansible在zabbix_agent創建腳本目錄,將python腳本拷貝至腳本目錄,修改zabbix_agentd.conf添加自定義參數,修改sudoers為zabbix賬號添加sudo權限,最后重啟zabbix_agentd服務使配置生效:
ansible all -m file -a 'path=/usr/local/zabbix/script state=directory' ansible all -m copy -a 'src=/etc/ansible/monitor/check_port.py dest=/usr/local/zabbix/script' ansible all -m lineinfile -a "dest=/usr/local/zabbix/etc/zabbix_agentd.conf line='UserParameter=tcpportlisten,/usr/local/zabbix/script/check_port.py'" ansible all -m lineinfile -a "dest=/etc/sudoers regexp='^%zabbix' line='%zabbix ALL=(ALL) NOPASSWD: ALL' validate='visudo -cf %s'" ansible all -m service -a "name=zabbix_agentd state=restarted"
zabbix_server使用zabbix-get看能否獲取數據:
zabbix_get -s 10.0.22.2 -p 10050 -k tcpportlisten
{
"data": [
{
"{#TCP_PORT}": "53"
},
{
"{#TCP_PORT}": "80"
}
]
}
2、zabbix管理web添加自動發現規則:我配置在了默認模板Template OS Linux里
添加自動發現規則:
下圖鍵值必須和zabbix_agent配置的鍵值保持一致:
添加觸發器用來報警:值為0則端口不通,值為1則端口通
添加完之后等一會兒圖就會生成了。