Additional scripts for Zabbix agent on Linux to discover and monitor several services
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

981 lines
39 KiB

<?xml version="1.0" encoding="UTF-8"?>
<zabbix_export>
<version>5.0</version>
<date>2021-06-19T12:18:52Z</date>
<groups>
<group>
<name>Modèles</name>
</group>
<group>
<name>Templates</name>
</group>
</groups>
<templates>
<template>
<template>Template_OS_iPasserelle</template>
<name>Template_OS_iPasserelle</name>
<templates>
<template>
<name>Template_App_MySQL_legacy</name>
</template>
<template>
<name>Template_App_Qmail</name>
</template>
<template>
<name>Template_App_Samba</name>
</template>
<template>
<name>Template_App_SOGo</name>
</template>
<template>
<name>Template_App_Squid_legacy</name>
</template>
<template>
<name>Template_App_SSLExpire</name>
</template>
<template>
<name>Template_OS_Linux_Server</name>
</template>
<template>
<name>Template_PublicService_HTTP</name>
</template>
<template>
<name>Template_PublicService_HTTPS</name>
</template>
</templates>
<groups>
<group>
<name>Modèles</name>
</group>
<group>
<name>Templates</name>
</group>
</groups>
<applications>
<application>
<name>Availability</name>
</application>
<application>
<name>CPU</name>
</application>
<application>
<name>Emails</name>
</application>
<application>
<name>Filesystem</name>
</application>
<application>
<name>General</name>
</application>
<application>
<name>Log files</name>
</application>
<application>
<name>Memory</name>
</application>
<application>
<name>OS</name>
</application>
<application>
<name>Performance</name>
</application>
<application>
<name>Processes</name>
</application>
<application>
<name>Réseau</name>
</application>
<application>
<name>Security</name>
</application>
<application>
<name>Services</name>
</application>
</applications>
<items>
<item>
<name>Adresse IP publique</name>
<key>ip.external</key>
<delay>1h</delay>
<trends>0</trends>
<status>DISABLED</status>
<value_type>CHAR</value_type>
<applications>
<application>
<name>Network</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Données bayes</name>
<key>mail.bayes.all</key>
<delay>30m</delay>
<history>3600</history>
<trends>0</trends>
<value_type>TEXT</value_type>
<request_method>POST</request_method>
</item>
<item>
<name>Nombre de ham soumis (bayes)</name>
<type>DEPENDENT</type>
<key>mail.bayes.ham</key>
<delay>0</delay>
<trends>1825d</trends>
<units>mail</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>JSONPATH</type>
<params>$.ham</params>
</step>
</preprocessing>
<master_item>
<key>mail.bayes.all</key>
</master_item>
<request_method>POST</request_method>
</item>
<item>
<name>Nombre de spam soumis (bayes)</name>
<type>DEPENDENT</type>
<key>mail.bayes.spam</key>
<delay>0</delay>
<trends>1825d</trends>
<units>mail</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>JSONPATH</type>
<params>$.spam</params>
</step>
</preprocessing>
<master_item>
<key>mail.bayes.all</key>
</master_item>
<request_method>POST</request_method>
</item>
<item>
<name>Nombre de tokens (bayes)</name>
<type>DEPENDENT</type>
<key>mail.bayes.token</key>
<delay>0</delay>
<trends>1825d</trends>
<units>token</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>JSONPATH</type>
<params>$.token</params>
</step>
</preprocessing>
<master_item>
<key>mail.bayes.all</key>
</master_item>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[check_basicheaders]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[check_earlytalker]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[check_goodrcptto]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[check_spamhelo]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[clamav]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[dnsbl]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[karma]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[other_denied]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants acceptés ($1)</name>
<key>mail.in[queued]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[resolvable_fromhost]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[rhsbl]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[spam_denied]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants acceptés, classés en spam ($1)</name>
<key>mail.in[spam_queued]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[spf]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[tls_failed]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants ($1)</name>
<key>mail.in[total]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
<triggers>
<trigger>
<expression>{avg(7200)}&gt;{$TOO_MANY_MAIL_COEF}*{avg(604800)}</expression>
<name>Trop de mails entrants</name>
<priority>INFO</priority>
<description>Si la moyenne des mails reçus sur les deux dernières heures est supérieures à 10x la moyenne des mails reçus sur la dernière semaine, on trig</description>
</trigger>
</triggers>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[total_denied]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails entrants rejetés ($1)</name>
<key>mail.in[uribl]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails sortants ($1)</name>
<key>mail.out[deferral]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails sortants en erreur ($1)</name>
<key>mail.out[failure]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
</item>
<item>
<name>Mails sortants avec succès ($1)</name>
<key>mail.out[success]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
<triggers>
<trigger>
<expression>{sum({$NO_OUTGOING_MAIL_WARN})}&lt;1</expression>
<name>Aucun mail sortant</name>
<priority>HIGH</priority>
</trigger>
</triggers>
</item>
<item>
<name>Mails sortants ($1)</name>
<key>mail.out[total]</key>
<delay>10m</delay>
<trends>1825d</trends>
<units>mails/h</units>
<applications>
<application>
<name>Emails</name>
</application>
</applications>
<preprocessing>
<step>
<type>MULTIPLIER</type>
<params>6</params>
</step>
</preprocessing>
<request_method>POST</request_method>
<triggers>
<trigger>
<expression>{avg(7200)}&gt;{$TOO_MANY_MAIL_COEF}*{avg(604800)}</expression>
<name>Trop de mails sortants</name>
<priority>INFO</priority>
<description>Si la moyenne des mails envoyés sur les deux dernières heures est supérieures à 10x la moyenne des mails envoyés sur la dernière semaine, on trig</description>
</trigger>
</triggers>
</item>
<item>
<name>Requête DNS $2</name>
<key>net.dns.record[,2.0.0.127.multi.uribl.com,TXT,,,]</key>
<delay>15m</delay>
<trends>0</trends>
<value_type>TEXT</value_type>
<applications>
<application>
<name>Réseau</name>
</application>
</applications>
<request_method>POST</request_method>
<triggers>
<trigger>
<expression>{str(&quot;permanent testpoint&quot;)}=0</expression>
<name>Problème sur les requêtes uribl.com</name>
<priority>AVERAGE</priority>
</trigger>
</triggers>
</item>
<item>
<name>Requête DNS $2</name>
<key>net.dns.record[,test.multi.surbl.org.multi.surbl.org,TXT,,,]</key>
<delay>15m</delay>
<trends>0</trends>
<value_type>TEXT</value_type>
<applications>
<application>
<name>Réseau</name>
</application>
</applications>
<request_method>POST</request_method>
<triggers>
<trigger>
<expression>{regexp(&quot;(wild|multi)\.surbl\.org permanent test point&quot;)}=0</expression>
<name>Problème sur les requêtes surbl.org</name>
<priority>AVERAGE</priority>
</trigger>
</triggers>
</item>
<item>
<name>Number of running processes qmail-remote</name>
<key>proc.num[,,,qmail-remote]</key>
<trends>1825d</trends>
<applications>
<application>
<name>Processes</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Number of running processes qpsmtpd-forkserver</name>
<key>proc.num[,,,qpsmtpd-forkserver]</key>
<trends>1825d</trends>
<applications>
<application>
<name>Processes</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Activation du service $1</name>
<key>sme.service.status[nmbd]</key>
<delay>1h</delay>
<trends>1825d</trends>
<applications>
<application>
<name>Applications</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Activation du service $1</name>
<key>sme.service.status[smbd]</key>
<delay>1h</delay>
<trends>1825d</trends>
<applications>
<application>
<name>Applications</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Activation du service $1</name>
<key>sme.service.status[sogod]</key>
<delay>1h</delay>
<trends>1825d</trends>
<applications>
<application>
<name>Applications</name>
</application>
<application>
<name>Emails</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
<item>
<name>Number of updates available</name>
<snmp_oid>interfaces.ifTable.ifEntry.ifInOctets.1</snmp_oid>
<key>updates.available</key>
<delay>3h</delay>
<trends>1825d</trends>
<units>updates</units>
<params>DSN=&lt;database source name&gt;\nuser=&lt;user name&gt;\npassword=&lt;password&gt;\nsql=&lt;query&gt;</params>
<applications>
<application>
<name>Security</name>
</application>
</applications>
<request_method>POST</request_method>
</item>
</items>
<macros>
<macro>
<macro>{$DNS_NAME_CHECK}</macro>
<value>zabbix.firewall-services.com.</value>
</macro>
<macro>
<macro>{$MAX_PROCESSES}</macro>
<value>480</value>
</macro>
<macro>
<macro>{$MAX_RUNNING_PROCESSES}</macro>
<value>15</value>
</macro>
<macro>
<macro>{$MAX_USERS}</macro>
<value>5</value>
</macro>
<macro>
<macro>{$NO_OUTGOING_MAIL_WARN}</macro>
<value>#5</value>
</macro>
<macro>
<macro>{$SSL_WARN_EXPIRE}</macro>
<value>28</value>
</macro>
<macro>
<macro>{$TOO_MANY_MAIL_COEF}</macro>
<value>10</value>
</macro>
</macros>
</template>
</templates>
<triggers>
<trigger>
<expression>{Template_OS_iPasserelle:mail.in[clamav].avg(7200)}&gt;{Template_OS_iPasserelle:mail.in[total].avg(7200)}/3</expression>
<name>Trop de mails contenant des virus</name>
<status>DISABLED</status>
<priority>WARNING</priority>
<description>Plus d'un tiers des mails entrants sont détectés comme virus</description>
</trigger>
</triggers>
<graphs>
<graph>
<name>Réseau: Email: Connexions concurentes</name>
<show_triggers>NO</show_triggers>
<graph_items>
<graph_item>
<drawtype>FILLED_REGION</drawtype>
<color>009900</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>proc.num[,,,qpsmtpd-forkserver]</key>
</item>
</graph_item>
<graph_item>
<sortorder>1</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FF6666</color>
<yaxisside>RIGHT</yaxisside>
<item>
<host>Template_OS_iPasserelle</host>
<key>proc.num[,,,qmail-remote]</key>
</item>
</graph_item>
</graph_items>
</graph>
<graph>
<name>Réseau: Email: Entrant</name>
<type>STACKED</type>
<graph_items>
<graph_item>
<drawtype>FILLED_REGION</drawtype>
<color>00CC00</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[queued]</key>
</item>
</graph_item>
<graph_item>
<sortorder>1</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>99FF99</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[spam_queued]</key>
</item>
</graph_item>
<graph_item>
<sortorder>2</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>990000</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[clamav]</key>
</item>
</graph_item>
<graph_item>
<sortorder>3</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FF0000</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[spam_denied]</key>
</item>
</graph_item>
<graph_item>
<sortorder>4</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>0000CC</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[dnsbl]</key>
</item>
</graph_item>
<graph_item>
<sortorder>5</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>9999FF</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[rhsbl]</key>
</item>
</graph_item>
<graph_item>
<sortorder>6</sortorder>
<color>8048B4</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[uribl]</key>
</item>
</graph_item>
<graph_item>
<sortorder>7</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>99FFFF</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[check_goodrcptto]</key>
</item>
</graph_item>
<graph_item>
<sortorder>8</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FF00FF</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[check_basicheaders]</key>
</item>
</graph_item>
<graph_item>
<sortorder>9</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FFFF00</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[karma]</key>
</item>
</graph_item>
<graph_item>
<sortorder>10</sortorder>
<color>FFCCFF</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[resolvable_fromhost]</key>
</item>
</graph_item>
<graph_item>
<sortorder>11</sortorder>
<color>274482</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[spf]</key>
</item>
</graph_item>
<graph_item>
<sortorder>12</sortorder>
<color>2B5429</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[tls_failed]</key>
</item>
</graph_item>
<graph_item>
<sortorder>13</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>AAAAAA</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[other_denied]</key>
</item>
</graph_item>
<graph_item>
<sortorder>14</sortorder>
<color>00AAAA</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.in[check_spamhelo]</key>
</item>
</graph_item>
</graph_items>
</graph>
<graph>
<name>Réseau: Email: Sortant</name>
<type>STACKED</type>
<graph_items>
<graph_item>
<drawtype>FILLED_REGION</drawtype>
<color>009900</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.out[success]</key>
</item>
</graph_item>
<graph_item>
<sortorder>1</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FFFF00</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.out[deferral]</key>
</item>
</graph_item>
<graph_item>
<sortorder>2</sortorder>
<drawtype>FILLED_REGION</drawtype>
<color>FF0000</color>
<item>
<host>Template_OS_iPasserelle</host>
<key>mail.out[failure]</key>
</item>
</graph_item>
</graph_items>
</graph>
</graphs>
</zabbix_export>