部署Zabbix集中监控系统

时间 2019-11-10

原文原文链接

Zabbix概述

Zabbix是一个基于Web界面的分布式系统监控与网络设备监控系统，它
可以监控各类网络参数，并提供灵活的通知机制，以使管理员能快速定位故障并解决
由zabbix server 端与zabbix agent组成,可经过SNMP、zabbix、agent 、ping、端口监视等方法实现对远程主机与网络设备的监控。php

zabbix特色

支持自动发现网络设备和服务器

支持分布式监控

可设置报警阈值

能够经过多种方式进行数据收集

可定制报警方式

实时的绘图功能

经过Web监控系统与设置

zabbix官网: https://www.zabbix.comhtml

系统环境

主机	IP	服务
监控端	192.168.26.161	lamp、zabbix-server
被监控端	192.168.26.163	zabbix-agent

实验步骤

关闭全部主机的防火墙和安全性策略mysql

systemctl stop firewalld.service
setenforce 0

1、Server端安装配置LAMP环境，以知足zabbix的代码部署要求

1.安装lamp相关软件包

yum install -y \
httpd \
mariadb-server mariadb \
php \
php-mysql \
php-gd \
libjpeg* \
php-ldap \
php-odbc \
php-pear \
php-xml \
php-xmlrpc \
php-mhash

2.编辑修改httpd、php配置文件

vi /etc/httpd/conf/httpd.conf
ServerName www.benet.com
DirectoryIndex index.html index.php

vi /etc/php.ini
date.timezone = PRC    //设置中国时区

3.启动http服务与mariadb服务

systemctl start httpd.service
systemctl start mariadb.service

netstat -ntap | egrep '(80|3306)'  //查看端口

4.MySQL初始化安装

mysql_secure_installation web

NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MariaDB
      SERVERS IN PRODUCTION USE!  PLEASE READ EACH STEP CAREFULLY!

In order to log into MariaDB to secure it, we'll need the current
password for the root user.  If you've just installed MariaDB, and
you haven't set the root password yet, the password will be blank,
so you should just press enter here.

Enter current password for root (enter for none): // 回车键
OK, successfully used password, moving on...

Setting the root password ensures that nobody can log into the MariaDB
root user without the proper authorisation.

Set root password? [Y/n] y
New password:    //设置新密码
Re-enter new password:      //确认密码
Password updated successfully!
Reloading privilege tables..
 ... Success!

By default, a MariaDB installation has an anonymous user, allowing anyone
to log into MariaDB without having to have a user account created for
them.  This is intended only for testing, and to make the installation
go a bit smoother.  You should remove them before moving into a
production environment.

Remove anonymous users? [Y/n] n     //是否移除anonymous用户
 ... skipping.

Normally, root should only be allowed to connect from 'localhost'.  This
ensures that someone cannot guess at the root password from the network.

Disallow root login remotely? [Y/n] n       //是否容许root用户远程登陆
 ... skipping.

By default, MariaDB comes with a database named 'test' that anyone can
access.  This is also intended only for testing, and should be removed
before moving into a production environment.

Remove test database and access to it? [Y/n] n    //是否移除test数据库
 ... skipping.

Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.

Reload privilege tables now? [Y/n] y    //从新加载数据表
 ... Success!

Cleaning up...

All done!  If you've completed all of the above steps, your MariaDB
installation should now be secure.

Thanks for using MariaDB!

5.登陆mysql,建立zabbix数据库及建立zabbix用户并设置密码

mysql -u root -p

CREATE DATABASE zabbix character set utf8 collate utf8_bin;
GRANT all privileges ON *.* TO 'zabbix'@'%' IDENTIFIED BY 'admin123';
flush privileges;

6.建立mysql数据库的测试网页文件

vi /var/www/html/index.php

<?php
phpinfo();
$link=mysql_connect('192.168.26.161','zabbix','admin123');
if($link) echo "<h1>Success!!</h1>";
else echo "Fail!!";
mysql_close();
?>

7.客户端访问index.php网页

显示success则访问mysql正常，fail则访问失败，检查index.php中链接地址、用户名、密码是否正确，若仍是有问题请检查mysql.user表用户名称是否有空用户名称占用而致使的错误，如下为解决方法sql

> select user,host from mysql.user; //用户名称为空占用致使本地没法登陆远程可登陆

+--------+-----------+
| user   | host      |
+--------+-----------+
| zabbix | %         |
| root   | 127.0.0.1 |
| root   | ::1       |
|        | localhost |
| root   | localhost |
|        | zabbix    |
| root   | zabbix    |
+--------+-----------+

> drop user ''@localhost;

> drop user ''@zabbix;

> flush privileges;

2、部署zabbix Server

1.下载zabbix官方yum源文件

rpm -i https://repo.zabbix.com/zabbix/2.2/rhel/7/x86_64/zabbix-release-2.2-1.el7.noarch.rpm

2.安装zabbix服务端及被控端软件包

yum install zabbix-server-mysql zabbix-web-mysql zabbix-agent -y

3.导入zabbix数据库

zcat /usr/share/doc/zabbix-server-mysql-4.0.0/create.sql.gz | mysql -uzabbix -p  zabbix

4.编辑zabbix_service.conf配置,结果以下

egrep -n '^'[a-Z] /etc/zabbix/zabbix_server.conf数据库

38:LogFile=/var/log/zabbix/zabbix_server.log
49:LogFileSize=0
72:PidFile=/var/run/zabbix/zabbix_server.pid
82:SocketDir=/var/run/zabbix
101:DBName=zabbix
117:DBUser=zabbix
125:DBPassword=admin123 //修改本行为建立zabbix数据库的密码
347:SNMPTrapperFile=/var/log/snmptrap/snmptrap.log
465:Timeout=4
507:AlertScriptsPath=/usr/lib/zabbix/alertscripts
517:ExternalScripts=/usr/lib/zabbix/externalscripts
553:LogSlowQueries=3000

5.编辑zabbix配置文件，指定时区

vim /etc/httpd/conf.d/zabbix.conf

   php_value date.timezone Asia/Shanghai

6.修正zabbix-web图表中文乱码

vim /usr/share/zabbix/include/defines.inc.php

#替换全文中全部graphfot为kaiti
:%s/graphfont/kaiti/g

7.复制字体文件至zabbix/fonts/目录下

cp kaiti.ttf /usr/share/zabbix/fonts/

8.启动zabbix-server服务

systemctl enable zabbix-server
systemctl start zabbix-server

9.检查是否已监听10051端口

netstat -anpt | grep zabbix

10.重启httpd服务

systemctl restart httpd.service

3、部署Zabbix-agent

1.下载zabbix官方yum源文件

rpm -i https://repo.zabbix.com/zabbix/2.2/rhel/7/x86_64/zabbix-release-2.2-1.el7.noarch.rpm

2.安装zabbix被控端软件包

yum install -y zabbix-agent

3.编辑zabbix_agentd.conf配置，结果以下

egrep -n '^'[a-Z] /etc/zabbix/zabbix_agentd.confvim

13:PidFile=/var/run/zabbix/zabbix_agentd.pid
23:LogFile=/var/log/zabbix/zabbix_agentd.log
34:LogFileSize=0
85:Server=192.168.96.70
126:ServerActive=192.168.96.70
137:Hostname=zabbix
246:Include=/etc/zabbix/zabbix_agentd.d/

4.启动zabbix-agent服务

systemctl enable zabbix-agent.service
systemctl start zabbix-agent.service

5.检查是否已监听10050端口

netstat -anpt | grep zabbix

4、在web界面安装zabbix

打开浏览器输入：
http://192.168.26.161/zabbix/
安装后登陆用户名Admin 密码：zabbix
点击用户：设置中文环境方便管理浏览器

添加被控主机安全

配置>主机>建立主机
主机页面根据需求配置
选中主机>点击批量更新（能够添加监控项）> 模板（添加2个模板测试下）bash

5、配置邮件报警功能

1.首先在zabbix-server上配置

yum install mailx  -y

vi /etc/mail.rc 

----文件末尾新增---
set from=qq邮箱
set smtp=smtp.qq.com
set smtp-auth-user=qq邮箱
set smtp-auth-password=邮箱受权码
set smtp-auth=login

echo "hello world" | mail -s "testmail" qq邮箱 //测试发信正常

cd /usr/lib/zabbix/alertscripts

vi mailx.sh //e编写发邮件脚本
#!/bin/bash
#send mail

messages=`echo $3 | tr '\r\n' '\n'`
subject=`echo $2 | tr '\r\n' '\n'`
echo "${messages}" | mail -s "${subject}" $1 >>/tmp/mailx.log 2>&1

------
touch /tmp/mailx.log 
chown -R zabbix.zabbix  /tmp/mailx.log 
chmod +x /usr/lib/zabbix/alertscripts/mailx.sh
chown -R zabbix.zabbix /usr/lib/zabbix/

./mailx.sh  qq邮箱 "主题" "内容"   //测试发邮件脚本是否能够正常工做

2.而后在服务器WEB上配置

打开管理==》报警媒体类型==》建立媒体类型

名称：Mail-Test
类型：脚本
脚本名称：mailx.sh
脚本参数：//新增如下三个参数
{ALERT.SENDTO}
{ALERT.SUBJECT}
{ALERT.MESSAGE}

管理==》用户==》点击Admin=》报警媒介
类型：Mail-Test //调用上面的脚本br/>收件人：qq邮箱
其它默认-保存

配置-》动做-》建立动做-》删除默认标签，修改触发条件
名称：Mailx
条件 A 主机群组=Linux servers

操做-》以下配置
默认操做步骤持续时间 60
默认接收人： {TRIGGER.STATUS}:{TRIGGER.NAME}
默认信息：
告警主机：{HOST.NAME}
告警 IP：{HOST.IP}
告警时间：{EVENT.DATE}-{EVENT.TIME}
告警等级：{TRIGGER.SEVERITY}
告警信息：{TRIGGER.NAME}:{ITEM.VALUE}
事件 ID：{EVENT.ID}

操做细节：-》
操做类型：发送消息
发送到用户：Admin (Zabbix Administrator)
仅送到：Mail-Test //必定要配置不然邮件发送不成功

恢复操做：{TRIGGER.STATUS}:{TRIGGER.NAME}
恢复信息：
恢复主机：{HOST.NAME}
恢复 IP：{HOST.IP}
恢复时间：{EVENT.DATE}-{EVENT.TIME}
恢复等级：{TRIGGER.SEVERITY}
恢复信息：{TRIGGER.NAME}:{ITEM.VALUE}
恢复 ID：{EVENT.ID}

操做细节：-》
操做类型：发送消息
发送到用户：Admin (Zabbix Administrator)
仅送到：Mail-Test //必定要配置不然邮件发送不成功

6、测试邮箱报警功能

添加一个监控项（ssh service）
systemctl stop sshd //在被监控主机上关闭ssh服务

从新启动ssh服务