Ili ndi gawo lomaliza la nkhaniyi, apa pali poyambira
Nthawi yotsiriza yomwe ndinalemba za momwe ndinagwiritsira ntchito kuyang'anira chipangizo, tsopano tikambirana za kasamalidwe. Pokambitsirana ndi "akatswiri" kumbali ya Makasitomala, nthawi zambiri ndimakumana ndi lingaliro lochepa la kuthekera kwa zida zazing'ono zotere (zokhala ndi zida zochepa zokumbukira komanso magwiridwe antchito), ambiri amakhulupirira kuti "chambiri chomwe timafunikira ndikutumiza kuyambiranso, pazinthu zina. serious titumiza team” .
Koma machitidwe amasonyeza kuti izi si zoona. Nawu mndandanda wawung'ono wa ntchito zomwe wamba:
- Kusanthula kwa netiweki ndikuthetsa mavuto. Kuseri kwa doko la ethernet la rauta yanu nthawi zambiri pamakhala chida china chomwe chimakhala ndi adilesi yake yamkati ya IP. Nthawi zina, mutha (muyenera) "kuyimba". Kapena kasamalidwe ka ngalande - ngati ngalandeyo mwadzidzidzi siimawuka pa rauta ikugwira ntchito kudzera pa modemu ya 3G, koma titha kuwona rauta yokha.
- Kukonza dongosolo. Kusintha kwa firmware, kukweza script ya service.
- Kuchita bwino. Izi zitha kutchedwa "kupotoza", koma lingaliro la "equilibrist" monga, ndimagwira mawu, "Kutha kwa wochita ma circus kukhalabe bwino m'malo osakhazikika athupi" - ikwanira bwino. Zinthu zoterezi zimachitika chifukwa cha bajeti yochepa ya kasitomala. Pansipa ndapereka zitsanzo zingapo, koma ... Sali okhudzana mwachindunji ndi mutu wa nkhaniyi, ndimaziyika muzolemba
Kuwunika kwa Wi-FiMutu wapamwamba kwa zaka zisanu zapitazi, makamaka pakati pa maunyolo a federal. Mukungoyenda pang'onopang'ono m'malo ogulitsa, ndipo foni yanu yam'manja yokhala ndi Wi-Fi idayatsidwa, kuyesa "kumamatira" ku ulusi wina wa netiweki, nthawi zonse imatumiza mapaketi a Probe Request, omwe amatha kuwunikidwa kuti muwerenge inu: mumabwera kangati pano pazifukwa zanji?mumayenda mnjira ndi zina zotero. Kenako deta imasonkhanitsidwa, kufufuzidwa, mapu a kutentha amajambula, ndipo oyang'anira "amalanda" ndalama kuchokera kwa oyang'anira kapena osunga ndalama pazithunzi zoterezi. Chabwino, pakali pano .... "palibe ndalama, koma mumagwiritsitsa ...", ndipo zotsatira (zenizeni) ziyenera kuwonetsedwa kale, nyimbo yabwino yakale imayamba: "Inde, inde, ndiye ndithudi ife adzakhazikitsa cis ndi chirichonse chimene mukufuna, koma tsopano tiyenera kusonyeza Makasitomala zotsatira! Mwa njira, tinayiwala kunena kuti Makasitomala adatilola kuti tilumikizane ndi zida zathu ndi malo ake ochezera kudzera pa Wi-Fi, koma pafupipafupi, ngati kuti ndife makasitomala obwera. ” Ndipo chifukwa chake tiyenera kupanga ma routers oyendera - ma subinterface angapo a WiFi amakwezedwa, imodzi yomwe imamatira ku hotspot, ndipo yachiwiri imayang'anira chilengedwe, imadziyika yokha zotsatira za tcpdump, kenako imanyamula zomwe zili mufayiloyo ndikuyika zowopsa. kufa chifukwa cha "kudya kwambiri" kumayesa kulavula zomwe zili pa seva ya FTP. N'zosadabwitsa kuti router yogwirizanitsa nthawi zambiri "imatha" ndipo mwanjira ina iyenera "kutsitsimutsidwa" kutali.
utali wozunguliraNdikosavuta kufotokoza momwe zinthu zilili pano ndi mawu ngati awa ochokera kwa kasitomala: "Tikufuna maukonde odziwika bwino omwe angagwire ntchito pazida zomwe mtundu wake sudziwika pasadakhale, kudzera pamayendedwe, koma ndi ati omwe sitikuwadziwa. O, tinayiwala kunena, sitikufuna kusonyeza malonda kwa makasitomala, komanso kusanthula chirichonse chozungulira malo omwe hotspot imayikidwa. Ayi, sitikudziwa chifukwa chake, koma tizindikira, osakayikira, tinatha kupanga lingaliro ili. "
Ndipo tisaiwale kuti chifukwa cha zinthu zambiri zomwe sizinadziwike m'mbuyomu, kuwongolera kuyenera kuchitika m'malo osagwirizana, pomwe sitingathe kulumikizana ndi rauta mwachindunji kudzera pa IP: doko ndikukakamizika kudikirira ntchito kuchokera pamenepo. Ngati tidzipatula tokha, zokambirana pakati pa seva ndi rauta zitha kuyimiridwa motere:
- Router: Moni. Ndine chonchi ndi rauta, kodi pali ntchito iliyonse kwa ine?
- Seva: rauta izi ndi zina, ndakulemberani, kuti muli moyo. Nayi vuto: ndiwonetseni zotsatira za lamulo la ifconfig?
- Router: Moni. Ndine wotere komanso ngati rauta, nthawi yomaliza mudafunsa kuti muwonetse zotsatira za ifconfig, izi ndi izi. Kodi pali ntchito iliyonse yanga?
- Seva: rauta izi ndi zina, ndakulemberani, kuti muli moyo. Palibe ntchito zanu.
Funso lochititsa chidwi kwambiri: kodi rauta yakutali ingatumize bwanji zambiri? M'gawo lomaliza, ndidafotokoza kuti chifukwa chazinthu zochepa, rauta ili ndi wget "yovulidwa", yomwe imagwira ntchito kudzera pa GET ndipo palibe china; palibe kasitomala wa FTP kapena kupindika. Momwemonso, timafunikira njira yapadziko lonse lapansi, mosasamala kanthu za mawonekedwe a chithunzi. Ndinakhazikika pakugwiritsa ntchito wget. Ndendende, momwe "ndinayimira" - ndinalibe chochita :)
Chodzikanira chabeYankho langa la kasamalidwe likugwira ntchito, osati lochepa kwambiri, ndipo ndikutsimikiza kuti ndi lopotoka, ngakhale likugwirizana ndi makasitomala anga ambiri. Kodi mungachitire bwanji mwanzeru - lembani chida chaching'ono chomwe chimatumiza POST data binary kudzera padoko 80. Phatikizani (zothandizira) mu firmware ya router ndikuyipeza pogwiritsa ntchito bash. Koma zoona zake n’zakuti: a) tiyenera kutero mwamsanga b) mwina tifunika kuchita chilichonse pa “zoo of routers” c) “musawononge!” - ngati rauta ikugwira ntchito ndikuchita ntchito zina, yesani kusintha zomwe sizingakhudze zomwe zilipo.
Tiyeni tipitirire ku kukhazikitsa. Tiyerekeze kuti kasitomala akufuna kuyambitsanso rauta kuchokera ku zabbix mosavuta komanso mwachilengedwe, ndi "kudina pa mbewa." Lero tiyamba kufotokoza kukhazikitsidwa ndi Zabbix.
Pa "Administration" -> "Scripts" menyu, onjezani zolemba zatsopano. Timachitcha "Yambitsaninso", lowetsani "php /usr/share/zabbix/reboot.php {HOST.HOST}" monga lamulo
Kenako: Menyu "Monitoring" -> "Zaposachedwa kwambiri" -> "Dinani kumanja pa node yomwe mukufuna pamanetiweki." Izi ndi zomwe menyu aziwoneka mutawonjezera script.
Momwemo, timayika reboot.php script mu /usr/share/zabbix directory (yanu ikhoza kukhala yosiyana, ndimagwiritsa ntchito zabbixa root directory).
Chitetezo ChodzikaniraKuti kufotokozera kumveke bwino mu script, ndimagwiritsa ntchito id ya router, koma osagwiritsa ntchito mawu achinsinsi. Sitikulimbikitsidwa kuchita izi muzopanga! Chifukwa chiyani ndidachita izi: chifukwa funso lalikulu ndi komwe mungasungire mapasiwedi a routers? Mu zabbixe yokha mu "deta yazinthu"? Mchitidwe wotsutsana. Kapenanso: kuletsa kulowa kunja kwa reboot.php wapamwamba palokha
Fayilo reboot.php
<?php
// присваиваем параметры с консоли переменным
$user = $argv[1];
// ВНИМАНИЕ. Вот здесь в целях безопасности все-таки прописывать пароль устройства! Но для демонстрации мы будем обращаться к базе данных без использования пароля.
//$password = $argv[2];
$conn=new mysqli("localhost","db_user","db_password","db_name");
if (mysqli_connect_errno()) {
exit();
}
$conn->set_charset("utf8");
// "Отправляем" команду reboot за счет изменения поля task таблицы users. В поле task можно отправлять любую команду.
$sql_users=$conn->prepare("UPDATE users SET task='reboot' WHERE id=? AND status='active';");
$sql_users->bind_param('s', $user);
$sql_users->execute();
$sql_users->close();
?>Ndizomwezo. Funso likadali lotseguka: "momwe mungapezere zotsatira potsatira lamulo kuchokera ku chipangizocho." Tiyeni tiwone ntchitoyo pogwiritsa ntchito lamulo la ifconfig monga chitsanzo. Lamuloli litha kutumizidwa ku chipangizochi:
message=`ifconfig`; wget "http://xn--80abgfbdwanb2akugdrd3a2e5gsbj.xn--p1ai/a.php?u=user&p=password!&m=$message" -O /tmp/out.txt,ku:
uthenga=`ifconfig` - timagawira zotsatira za lamulo la ifconfig ku $message variable
wget " - script yathu ya a.php yomwe imalembetsa ma routers ndikulandira mauthenga kuchokera kwa iwo
u=user&p=password!&m=$message - zidziwitso ndi mtengo wa zopempha zosiyana m - zimagawira zomwe zili mu $message variable
-O /tmp/out.txt - sitikufuna kutulutsa fayilo /tmp/out.txt pakadali pano, koma ngati chizindikirochi sichinatchulidwe, wget sichigwira ntchito
Chifukwa chiyani izi sizikugwira ntchito?Chifukwa ndi dzenje lothekera lachitetezo. Cholakwika chosavulaza chomwe chingachitike ndi ngati, mwachitsanzo, pali "&" muzotulutsa za lamulo lanu. Chifukwa chake, ndikofunikira kusefa zonse zomwe zimatumizidwa kuchokera ku ma routers ndi chilichonse chomwe chimabwera ku seva. Eya, ndine wamanyazi, kwenikweni. Podzitchinjiriza, ndikungolemba kuti nkhani yonseyi idaperekedwa momwe mungayang'anire ma routers ndi firmware yodziwika bwino komanso njira zoyankhulirana zomwe sizinafotokozedwe pasadakhale.
Chabwino, chiyambi chamtsogolo: Sindinaganizirepo momwe ndingagwiritsire ntchito zida zabbix kuti ziwonetse zotsatira (mwachitsanzo, zotsatira za kulamula) zomwe zimabwera ku seva.
Ndikukumbutsani kuti magwero onse atha kupezeka ku Git repository pa:
Source: www.habr.com