Zenoss Core 3.x Network and System Monitoring. A step-by-step guide to configuring, using, and adapting this free Open Source network monitoring syste Katowice

For system administrators, network engineers, and security analysts, it is essential to keep a track of network traffic.Zenoss Core is an enterprise-level systems and network monitoring solution that can be as complex as you need it to be. And while just about anyone can install it, turn it on, and monitor something, Zenoss Core has a complicated interface packed with features. The interface has been drastically improved over version 2, but it's still not the type of software you can use intuitively – in other words, a bit of guidance is in order.The role of this book is to serve as your Zenoss Core tour guide and save you hours, days, maybe weeks of time.This book will show you how to work with Zenoss and effectively adapt Zenoss for System and Network monitoring. Starting with the Zenoss basics, it requires no existing knowledge of systems management, and whether or not you can recite MIB trees and OIDs from memory is irrelevant. Advanced users will be able to identify ways in which they can customize the system to do more, while less advanced users will appreciate the ease of use Zenoss provides. The book contains step-by-step examples to demonstrate Zenoss Core's capabilities. The best approach to using this book is to sit down with Zenoss and apply the examples found in these pages to your system.The book covers the monitoring basics: adding devices, monitoring for availability and performance, processing events, and reviewing reports. It also dives into more advanced customizations, such as custom device reports, external event handling (for example, syslog server, zensendevent, and Windows Event Logs), custom monitoring templates using SNMP data sources, along with Nagios, and Cacti plugins. An example of a Nagios-style plugin is included and the book shows you where to get an example of a Cacti-compatible plugin for use as a command data source in monitoring templates. In Zenoss Core, ZenPacks are modules that add monitoring functionality. Using the Nagios plugin example, you will learn how to create, package, and distribute a ZenPack. You also learn how to explore Zenoss Core's data model using zendmd so that you can more effectively write event transformations and custom device reports. Spis treści: Zenoss Core 3.x Network and System Monitoring Table of Contents Zenoss Core 3.x Network and System Monitoring Credits About the Author About the Reviewers www.PacktPub.com Support files, eBooks, discount offers and more Why Subscribe? Free Access for Packt account holders Preface What this book covers What you need for this book Who this book is for Conventions Reader feedback Customer support Downloading the example code Errata Piracy Questions 1. Network and System Monitoring with Zenoss Core Device management Availability and performance monitors Event management Plugin architecture System reports Custom device reports System architecture User layer Data layer Collection layer Device management daemons Performance and availability daemons Event daemons Summary 2. Discovering Devices Zenoss Core installation Preparing devices for monitoring SNMP SNMP versions Configuring SNMP on Linux Configuring SNMP and WMI on Windows Zenoss Plugins Installing Zenoss Plugins Port scan Opening monitoring-specific ports Configuring Linux firewalls Configuring Windows firewall Zenoss Core setup wizard Step 1: Setting up users Step 2: Specify or discover devices to monitor Adding devices Manually find devices Autodiscover devices Our device inventory: A job well done Reviewing device creation job log Adding a single device Entering device attributes Importing a list of devices with zenbatchload Command line discovery with zendisc Summary 3. Device Setup and Administration Organizing devices in Zenoss Core Locations Systems and Groups Organizer details Editing organizers Moving organizers Classes Viewing a list of device classes Assigning devices to a class Modeling devices Modeler plugins gather device information Assigning modeler plugins Troubleshooting data collection Troubleshooting SNMP problems Running snmpwalk Is the SNMP daemon running on Linux servers? SNMP problems on Windows Troubleshooting WMI problems Zeneventlogunable to connect to Windows Zenoss Core does not collect WMI data Troubleshooting Zenoss Plugins A class of its own Device administration Locking or unlocking a device Renaming a device Resetting the IP address Push changes Deleting devices zProperties defined Summary 4. Monitor Status and Performance Collectors collect Configuring the performance collector Monitoring components Interfaces OS Processes Add Process Viewing or editing the process details Configuration properties Monitoring OS Processes Services Enable monitoring for a service Configuration properties Monitoring exceptions for services Interactively monitor IP services File Systems Ignoring File Systems with zProperties Network Routes Networks Add Components Viewing and editing component details for a device Performance Graphs Interface template Performance Graphs Working with graphs Monitoring performance thresholds Summary 5. Custom Monitoring Templates Monitoring Templates Monitoring SNMP data sources Overriding templates Editing the /Server/Linux template Find OIDs for SNMP monitoring Monitoring with Nagios plugins Working with Nagios plugins Nagios return codes Nagios performance data Adding the Nagios plugin to Monitoring Templates Adding a Data Source Adding a Data Point RRDtool Data Point configurations Defining monitoring thresholds Graph definitions RRDtool Graph Point configurations Binding templates to the device class Adding a device to monitor using the Bogo template Monitoring with Cacti plugins Data Source parser Summary 6. Core Event Management Event Console Event severities defined Event statuses defined Acknowledging an event Viewing an event log Events consoles are everywhere Closing events Displaying historical events Event Manager Event Fields Event commands Creating a command Working with events Simulating an event Clearing the event Event mapping Event Classes Event class zProperties Mapping an event Event mapping sequence Event de-duplication Turning off event de-duplication Summary 7. Collecting Events Routing syslog messages to Zenoss Core Collecting Cisco router syslogs Testing syslog configuration with Logger Monitoring Windows event logs Windows event log severities Testing the event log configuration with Eventcreate Incorporating event reporting into third-party scripts via zensendevent Simple backup script with zensendevent Creating events by e-mail Zenmail Zenpop3 Configuring alerting rules Alert filters Alert escalations Schedule Alert messages Event transformations Some event transformation examples Programming in zendmd, an interactive shell Summary 8. Settings and Administration Managing Zenoss Core users Administered Objects Event Views Groups Creating custom User Commands Adding a User Command System settings Configuring Zenoss Cores Monitoring Dashboard Locations portlet with Google Maps Device Issues portlet Zenoss Issues portlet Watch List portlet Root Organizers portlet Production States portlet Portlet permissions Meet the Zenoss Daemons Maintenance Windows Adding MIBs Backing up and restoring monitoring data Automating backups with zenbackup Restoring backups with zenrestore Updating Zenoss Core Summary 9. Extending Zenoss Core with ZenPacks Installing community ZenPacks Monitoring websites with HttpMonitor Viewing a list of installed ZenPack objects Configuring HttpMonitor Configuring HttpMonitor settings Creating a ZenPack Adding files and objects to the ZenPack Adding a new data source to the monitoring template Adding objects to a ZenPack Packaging the ZenPack ZenPack development mode Developer resources Summary 10. Reviewing Built-in Reports Report overview Device Reports New Devices Device Changes Model Collection Age Software Inventory Manufacturers and Products SNMP Status Issues Ping Status Issues All Devices All Monitored Components Event Reports All Event Classes All Event Mappings All Heartbeats Graph Reports Multi-Graph Reports Adding Collections Adding Graph Definitions Adding Graph Groups Performance Reports Aggregate Report Availability CPU Utilization Filesystem Utilization Interface Utilization Memory Utilization Threshold Summary User Reports Notification Schedules Summary 11. Writing Custom Device Reports Creating Custom Device Reports Custom Device Report fields Building Custom Device Report queries Using zendmd to test report queries Exploring data in Zope Using Python expressions in the columns Convenience functions convToUnits Scheduling reports for e-mail delivery Sending a CSV report Scheduling a cron job Summary A. Event Attributes B. Device Attributes C. Example snmpd.conf Index O autorze: Michael Badgeris a writer and technical communicator who has worked in a range of technical roles, including support, automated software testing, and project management. He has authored several books for Packt Publishing, including Scratch 1.4 Beginner's Guide. He also authors a regular Scratch column for Raspberry Pi Geek Magazine, which focuses on Scratch 1.4.