yum -y -q install nss curl git libtool m4 automake bzip2-devel git clone https://github.com/phaag/nfdump cd nfdump ./autogen.sh ./configure --enable-nfprofile --enable-nftrack --with-rrdpath=/usr/local/rrdtool make make install install -p -m 644 bin/nftrack /usr/bin/
yum -y -q install epel-release wget yum -y -q install nss curl git nfdump perl gcc make libpcap-devel fprobe-ulog rrdtool-devel rrdtool-perl flex byacc perl yum -y -q install perl-MailTools perl-Socket6 perl-Sys-Syslog 'perl(Data::Dumper)' perl-DBD-MySQL wget https://sourceforge.net/projects/nfsen/files/stable/nfsen-1.3.8/nfsen-1.3.8.tar.gz/download -O -|tar xz cd nfsen-1.3.8 #cat etc/nfsen-dist.conf |grep -v ^#|grep -v ^$ >etc/nfsen.conf wget dl.kvm.la/conf/nfsen/nfsen.conf -O etc/nfsen.conf perl install.pl etc/nfsen.conf ln -s /opt/nfsen/bin/nfsen /usr/bin/ #安装PortTracker插件 install contrib/PortTracker/PortTracker.pm /opt/nfsen/plugins/ install contrib/PortTracker/PortTracker.php /opt/nfsen/plugins/ mkdir -p /data/ports-db chown -R nobody:nobody /data/ports-db /opt/nfsen sudo -u nobody nftrack -I -d /data/ports-db wget dl.kvm.la/conf/nfsen/nfsen.init -O /etc/init.d/nfsen chmod 755 /etc/init.d/nfsen chkconfig nfsen on
#安装PortTracker插件 install contrib/PortTracker/PortTracker.pm /opt/nfsen/plugins/ install contrib/PortTracker/PortTracker.php /opt/nfsen/plugins/ mkdir -p /data/ports-db chown -R nobody:nobody /data/ports-db /opt/nfsen sudo -u nobody nftrack -I -d /data/ports-db
正常使用还要http和php进行支持, sflow数据发送到nfsen进行分析,等等.
yum install smartmontools -y -q smartctl -a -d megaraid,N /dev/sdX
N代表硬盘的设备ID, 可以用storcli和MegaCli查找到.
X则代表存储设备的顺序ID. 第一个存储设备以a开始排列.
查看硬盘的设备ID方法如下:
#第一种 #MegaCli -PDList -aAll|grep "Device Id" Device Id: 0 Device Id: 1 Device Id: 2 Device Id: 3 Device Id: 4 Device Id: 5 Device Id: 6 Device Id: 7 Device Id: 8 Device Id: 9
#第二种(LSI ID就是设备ID)
#curl -sS http://dl.kvm.la/lsi/megaclisas-status | python
-- Controller information --
-- ID | H/W Model | RAM | Temp | BBU | Firmware
c0 | PERC H710 Mini | 512MB | 76C | Good | FW: 21.0.1-0132
-- Array information --
-- ID | Type | Size | Strpsz | Flags | DskCache | Status | OS Path | CacheCade |InProgress
c0u0 | RAID-10 | 5455G | 256 KB | RA,WB | Disabled | Optimal | 0 | Type : Read Only |None
-- Disk information --
-- ID | Type | Drive Model | Size | Status | Speed | Temp | Slot ID | LSI ID
c0u0s0p0 | HDD | HGST HUC101212CSS600 A469KZJ0M2DG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:0] | 0
c0u0s0p1 | HDD | HGST HUC101212CSS600 A469KZJ0LJRG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:1] | 1
c0u0s1p0 | HDD | HGST HUC101212CSS600 A469KZHZX1ZG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 30C | [32:2] | 2
c0u0s1p1 | HDD | HGST HUC101212CSS600 A469KZJ076SG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:3] | 3
c0u0s2p0 | HDD | HGST HUC101212CSS600 A469KZJ0B6PG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 30C | [32:4] | 4
c0u0s2p1 | HDD | HGST HUC101212CSS600 A469KZJ0WWJG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:5] | 5
c0u0s3p0 | HDD | HGST HUC101212CSS600 A469KZJ0LT4G | 1.090 TB | Online, Spun Up | 6.0Gb/s | 30C | [32:6] | 6
c0u0s3p1 | HDD | HGST HUC101212CSS600 A469KZJ0A5KG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:7] | 7
c0u0s4p0 | HDD | HGST HUC101212CSS600 A469KZJ0LRLG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 30C | [32:8] | 8
c0u0s4p1 | HDD | HGST HUC101212CSS600 A469KZJ0DUGG | 1.090 TB | Online, Spun Up | 6.0Gb/s | 31C | [32:9] | 9
#storcli /c0 /eall /sall show ---------------------------------------------------------------------------- EID:Slt DID State DG Size Intf Med SED PI SeSz Model Sp Type ---------------------------------------------------------------------------- 252:0 14 Onln 0 5.456 TB SAS HDD N N 512B ST6000NM0034 U - 252:1 16 Onln 0 5.456 TB SAS HDD N N 512B ST6000NM0034 U - 252:2 15 Onln 0 5.456 TB SAS HDD N N 512B ST6000NM0034 U - 252:3 17 Rbld 0 5.456 TB SAS HDD N N 512B ST6000NM0034 U - ----------------------------------------------------------------------------
DID就是硬盘的设备ID
yum install -y -q http://dl.kvm.la/lsi/MegaCli_All_OS/Linux/MegaCli-8.07.06-1.noarch.rpm ln -s /opt/MegaRAID/MegaCli/MegaCli64 /usr/bin/MegaCli
yum -y -q install http://dl.kvm.la/lsi/storcli_All_OS/Linux/storcli-1.23.02-1.noarch.rpm ln -s /opt/MegaRAID/storcli/storcli64 /usr/bin/storcli
由于官方改动了一些文件位置,没有及时更新安装引导说明, 导致最后几步安装找不到文件,故自己抄写了一份.
原文地址http://docs.frrouting.org/projects/dev-guide/en/latest/building-frr-for-centos7.html
#yum安装基础环境
yum install -y -q nss curl git autoconf automake libtool make cmake readline-devel texinfo net-snmp-devel groff pkgconfig json-c-devel pam-devel bison flex pytest c-ares-devel python-devel systemd-devel python-sphinx libcap-devel
groupadd -g 92 frr
groupadd -r -g 85 frrvty
useradd -u 92 -g 92 -M -r -G frrvty -s /sbin/nologin -c "FRR FRRouting suite" -d /var/run/frr frr
#安装libyang
#由于centos7没有
cd /tmp
git clone https://github.com/CESNET/libyang.git
cd libyang
mkdir build; cd build
cmake -DENABLE_LYD_PRIV=ON -DCMAKE_INSTALL_PREFIX:PATH=/usr -D CMAKE_BUILD_TYPE:String="Release" ..
make
make install
#安装frr
cd /tmp
git clone https://github.com/frrouting/frr.git frr
cd frr
./bootstrap.sh
./configure \
--bindir=/usr/bin \
--sbindir=/usr/lib/frr \
--sysconfdir=/etc/frr \
--libdir=/usr/lib/frr \
--libexecdir=/usr/lib/frr \
--localstatedir=/var/run/frr \
--with-moduledir=/usr/lib/frr/modules \
--enable-snmp=agentx \
--enable-multipath=64 \
--enable-user=frr \
--enable-group=frr \
--enable-vty-group=frrvty \
--enable-systemd=yes \
--disable-exampledir \
--disable-ldpd \
--enable-fpm \
--with-pkg-git-version \
--with-pkg-extra-version=-MyOwnFRRVersion \
SPHINXBUILD=/usr/bin/sphinx-build
make
make install
install -p -m 644 ./tools/etc/frr/daemons /etc/frr/
install -p -m 644 tools/frr.service /usr/lib/systemd/system/frr.service
install -p -m 644 tools/frrinit.sh.in /usr/lib/frr/frr
#创建FRR空白配置文件和权限
mkdir /var/log/frr
mkdir /etc/frr
touch /etc/frr/zebra.conf
touch /etc/frr/bgpd.conf
touch /etc/frr/ospfd.conf
touch /etc/frr/ospf6d.conf
touch /etc/frr/isisd.conf
touch /etc/frr/ripd.conf
touch /etc/frr/ripngd.conf
touch /etc/frr/pimd.conf
touch /etc/frr/nhrpd.conf
touch /etc/frr/eigrpd.conf
touch /etc/frr/babeld.conf
touch /etc/frr/vtysh.conf
chown -R frr:frr /etc/frr/
chown frr:frrvty /etc/frr/vtysh.conf
chown frr:frr /etc/frr/daemons
chmod 640 /etc/frr/*.conf
cat>/etc/sysctl.d/90-routing-sysctl.conf<<EOF
net.ipv4.conf.all.forwarding=1
net.ipv6.conf.all.forwarding=1
EOF
sysctl -p /etc/sysctl.d/90-routing-sysctl.conf
#注册启用和启动FRR
systemctl preset frr.service
systemctl enable frr
systemctl start frr
安装步骤到此结束
需要配置zebra后再用telnet连接
#cat /etc/frr/zebra.conf ! Zebra configuration file ! frr version 6.0 frr defaults traditional ! hostname Router password zebra enable password zebra ! log stdout ! !
更多配置和指引参考官方引导文章
telnet 127.0.0.1 2601
然后和思科的配置方式差不多
Juniper sflow配置:
set protocols sflow agent-id {agent IP地址}
set protocols sflow polling-interval 30
set protocols sflow sample-rate ingress 3000
set protocols sflow sample-rate egress 3000
set protocols sflow collector {接受数据的IP}
set protocols sflow interfaces {ge-0/1/1.0 指定端口}
H3C sflow配置:
sflow agent ip 10.193.1.1 !设置此设备的某端口地址为agent地址 sflow source ip 10.193.1.1 !设置此设备的某端口地址为发送源地址 sflow collector 1 vpn-instance mgmt ip 10.5.0.208 !设置collector1服务器地址,端口号默认6343 int te1/0/0/7 !进入需要采集的接口 sflow flow collector 1 !与collector 1 绑定 sflow sampling-rate 1000 !设置采样率 sflow counter collector 1 !计数器绑定collector1 sflow counter interval 60 !计数器间隔60s !
Cisco Netflow设置
flow record yst !配置netflow记录器yst match ipv4 source address !记录内容ipv4源地址 match ipv4 destination address !记录目标地址 collect counter bytes !计数器单位bytes collect counter packets !计数器单位packets ! ! flow exporter yst !配置netflow输出器 destination 10.5.0.208 !设置服务器地址 source TenGigabitEthernet0/0/0 !设置发包源地址 dscp 63 !设置qos dscp ttl 15 !设置ttl transport udp 6343 !配置端口号 export-protocol netflow-v5 !配置版本为v5,各版本区别百度 template data timeout 30 超时时间30 ! ! flow monitor yst !设置监视器yst exporter yst !绑定输出器yst record yst !绑定记录器yst int gi1/0/1 !开启接口flow ip flow monitor yst input ip flow monitor yst output
yum install -y epel-release wget wget http://packages.ntop.org/centos/ntop.repo -O /etc/yum.repos.d/ntop.repo yum install -y pfring-dkms n2disk nprobe ntopng cento service redis start service ntopng start
log syslog all;
debug protocols off;
debug commands 0;
router id 1.1.1.1;
protocol static rtbh {
route 99.99.99.99/32 blackhole;
route 88.88.88.88/32 blackhole;
}
filter export_rtbh_out {
# Limit to static routes
if (proto = "rtbh") then
{
# Limit to /32 host routes (for now)
if net.len = 32 then
{
bgp_community.add((65001,9999));
bgp_next_hop = 192.0.2.1;
accept;
}
}
reject;
}
protocol bgp ER3 {
description "iBGP to Edge Router 3 for RTBH";
debug { states, events };
local 1.1.1.1 as 65001;
neighbor 3.3.3.3 as 65001;
import none;
export filter export_rtbh_out;
}
protocol bgp ER4 {
description "iBGP to Edge Router 4 for RTBH";
debug { states, events };
local 1.1.1.1 as 65001;
neighbor 4.4.4.4 as 65001;
import none;
export filter export_rtbh_out;
}
routing-options {
static {
route 192.0.2.1/32 discard;
}
}
protocols {
bgp {
group RTBH {
type internal;
import import-from-rs;
expor deny-all;
neighbor 1.1.1.1;
}
}
}
policy-options {
policy-statement deny-all {
term 1 {
then reject;
}
}
policy-statement import-from-rs {
term 1 {
from {
community RTBH;
route-filter 0.0.0.0/0 prefix-length-range /32-/32;
}
then accept;
}
term reject {
then reject;
}
}
community RTBH members 65001:9999;
}
抄录自https://gist.github.com/floatingstatic/854aa504a92ab8bc3e044e434ec378c4