ВидеоКонф(ВКС)  ::   FAQ  ::   Поиск  ::   Регистрация  ::   Вход

Пропал доступ к серверу по web-нитерфейсу и SSH

Новичком считается только что прочитавший «Астериск - будущее телефонии»
http://asterisk.ru/knowledgebase/books
и пытающийся сделать большее

Модераторы: april22, Zavr2008

Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Kornur » 10 май 2021, 11:05

Сегодня, в выходной день, разбудил меня оператор звонком на мобильный: не получается зарегистрировать агентов в очереди.
Я попробовал подключиться к web-интерфейсу FreePBX - получил 403 Forbidden You don't have permission to access / on this server.
На рабочем компьютере было не закрыто окно с терминалом на этот сервер - там все отвалилось.
Запустил putty еще раз - по SSH соединение отклонено.
Как будто сервер запретил все соединения.
Т.к. время поджимало, перезапустил виртуалку, на которой крутится Астериск и все заработало.

Теперь хочу разобраться, что могло привести к подобному и как избежать этого в дальнейшем, но не знаю с чего начать расследование?
Что и где искать?
Kornur
 
Сообщений: 30
Зарегистрирован: 02 апр 2021, 18:56

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение ded » 10 май 2021, 16:37

C изучения логов:
/var/log/apache2/access.log
/var/log/apache2/error.log
/var/log/syslog
/var/log/messages
/var/log/boot.log
/var/log/asterisk/full
dmesg
ded
 
Сообщений: 15803
Зарегистрирован: 26 авг 2010, 19:00

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Zavr2008 » 11 май 2021, 11:25

Если это виртуалка - то у нее есть консоль. В таких случаях я рекомендую через нее и попытаться зайти до перезагрузок.
Также раз это виртуалка - есть и snapshot наверное рабочий. Другое дело что он не поможет если в инет выставлена система, могут поломать снова (если сие имело место).
Но лично мне последнее не очевидно - возможно и сама проблема с виртуалкой - сначала стоит логи ядра посмотреть, возможно с диском что-то или с самой виртуализацией.
особенно такое происходит, если это какой-нить VMWare Player и питание передергивали..
Российские шлюзы E1 Alvis-GW. Модернизация УПАТС с E1, Установка FreePBX, Системы антифрод "в разрыв" потоков E1 PRI / SS#7 ISUP.
Аватар пользователя
Zavr2008
 
Сообщений: 2159
Зарегистрирован: 27 янв 2011, 01:35

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Kornur » 11 май 2021, 14:05

Единственное, что на мой взгляд необычно:
error log:
Код: выделить все
[Mon May 10 06:13:32.762866 2021] [suexec:notice] [pid 1124] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
AH00112: Warning: DocumentRoot [/var/www/html/restapi/] does not exist
[Mon May 10 06:13:32.945413 2021] [lbmethod_heartbeat:notice] [pid 1124] AH02282: No slotmem from mod_heartmonitor
[Mon May 10 09:13:37.188873 2021] [mpm_prefork:notice] [pid 1124] AH00163: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40 configured -- resuming normal operations
[Mon May 10 09:13:37.188940 2021] [core:notice] [pid 1124] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'


В остальных логах ничего нет. Видимо то, что я протупил спросони и просто жестко перезагрузил виртуалку, не дало ей сохранить какие-то логи и они пропали и новые начинаются уже после перезагрузки.
Например, в access log мой заход в конце рабочего дня в пятницу:
[Показать] Спойлер:
192.168.76.252 - - [07/May/2021:18:55:05 +0300] "GET /admin/ajax.php?module=dashboard&command=netmon HTTP/1.1" 200 3367 "http://192.168.50.15/admin/config.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/90.0.4430.93 Safari/537.36 Edg/90.0.818.51"
::1 - - [07/May/2021:18:55:12 +0300] "OPTIONS * HTTP/1.0" 200 - "-" "Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.6.40 (internal dummy connection)"

dmesg:
[Показать] Спойлер: dmesg
[root@mosrlufpbx02 asterisk]# dmesg
[ 0.000000] Initializing cgroup subsys cpuset
[ 0.000000] Initializing cgroup subsys cpu
[ 0.000000] Initializing cgroup subsys cpuacct
[ 0.000000] Linux version 3.10.0-1127.19.1.el7.x86_64 (mockbuild@kbuilder.bsys.centos.org) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-39) (GCC) ) #1 SMP Tue Aug 25 17:23:54 UTC 2020
[ 0.000000] Command line: BOOT_IMAGE=/vmlinuz-3.10.0-1127.19.1.el7.x86_64 root=/dev/mapper/SangomaVG-root ro crashkernel=auto rd.lvm.lv=SangomaVG/root rd.lvm.lv=SangomaVG/swaplv1 biosdevname=0 net.ifnames=0 rhgb quiet
[ 0.000000] e820: BIOS-provided physical RAM map:
[ 0.000000] BIOS-e820: [mem 0x0000000000000000-0x000000000009fbff] usable
[ 0.000000] BIOS-e820: [mem 0x000000000009fc00-0x000000000009ffff] reserved
[ 0.000000] BIOS-e820: [mem 0x00000000000f0000-0x00000000000fffff] reserved
[ 0.000000] BIOS-e820: [mem 0x0000000000100000-0x00000000dffeffff] usable
[ 0.000000] BIOS-e820: [mem 0x00000000dfff0000-0x00000000dfffffff] ACPI data
[ 0.000000] BIOS-e820: [mem 0x00000000fec00000-0x00000000fec00fff] reserved
[ 0.000000] BIOS-e820: [mem 0x00000000fee00000-0x00000000fee00fff] reserved
[ 0.000000] BIOS-e820: [mem 0x00000000fffc0000-0x00000000ffffffff] reserved
[ 0.000000] BIOS-e820: [mem 0x0000000100000000-0x000000015cefffff] usable
[ 0.000000] NX (Execute Disable) protection: active
[ 0.000000] SMBIOS 2.5 present.
[ 0.000000] DMI: innotek GmbH VirtualBox/VirtualBox, BIOS VirtualBox 12/01/2006
[ 0.000000] Hypervisor detected: KVM
[ 0.000000] e820: update [mem 0x00000000-0x00000fff] usable ==> reserved
[ 0.000000] e820: remove [mem 0x000a0000-0x000fffff] usable
[ 0.000000] e820: last_pfn = 0x15cf00 max_arch_pfn = 0x400000000
[ 0.000000] MTRR default type: uncachable
[ 0.000000] MTRR variable ranges disabled:
[ 0.000000] PAT configuration [0-7]: WB WC UC- UC WB WP UC- UC
[ 0.000000] CPU MTRRs all blank - virtualized system.
[ 0.000000] e820: last_pfn = 0xdfff0 max_arch_pfn = 0x400000000
[ 0.000000] found SMP MP-table at [mem 0x0009fff0-0x0009ffff] mapped at [ffffffffff200ff0]
[ 0.000000] Base memory trampoline at [ffff999100099000] 99000 size 24576
[ 0.000000] BRK [0x91673000, 0x91673fff] PGTABLE
[ 0.000000] BRK [0x91674000, 0x91674fff] PGTABLE
[ 0.000000] BRK [0x91675000, 0x91675fff] PGTABLE
[ 0.000000] BRK [0x91676000, 0x91676fff] PGTABLE
[ 0.000000] BRK [0x91677000, 0x91677fff] PGTABLE
[ 0.000000] BRK [0x91678000, 0x91678fff] PGTABLE
[ 0.000000] BRK [0x91679000, 0x91679fff] PGTABLE
[ 0.000000] RAMDISK: [mem 0x3500a000-0x367fcfff]
[ 0.000000] Early table checksum verification disabled
[ 0.000000] ACPI: RSDP 00000000000e0000 00024 (v02 VBOX )
[ 0.000000] ACPI: XSDT 00000000dfff0030 0003C (v01 VBOX VBOXXSDT 00000001 ASL 00000061)
[ 0.000000] ACPI: FACP 00000000dfff00f0 000F4 (v04 VBOX VBOXFACP 00000001 ASL 00000061)
[ 0.000000] ACPI: DSDT 00000000dfff0470 02325 (v02 VBOX VBOXBIOS 00000002 INTL 20100528)
[ 0.000000] ACPI: FACS 00000000dfff0200 00040
[ 0.000000] ACPI: APIC 00000000dfff0240 0005C (v02 VBOX VBOXAPIC 00000001 ASL 00000061)
[ 0.000000] ACPI: SSDT 00000000dfff02a0 001CC (v01 VBOX VBOXCPUT 00000002 INTL 20100528)
[ 0.000000] ACPI: Local APIC address 0xfee00000
[ 0.000000] No NUMA configuration found
[ 0.000000] Faking a node at [mem 0x0000000000000000-0x000000015cefffff]
[ 0.000000] NODE_DATA(0) allocated [mem 0x15ced9000-0x15cefffff]
[ 0.000000] Reserving 161MB of memory at 672MB for crashkernel (System RAM: 5070MB)
[ 0.000000] kvm-clock: cpu 0, msr 1:5ce88001, primary cpu clock
[ 0.000000] kvm-clock: Using msrs 4b564d01 and 4b564d00
[ 0.000000] kvm-clock: using sched offset of 8546664440 cycles
[ 0.000000] Zone ranges:
[ 0.000000] DMA [mem 0x00001000-0x00ffffff]
[ 0.000000] DMA32 [mem 0x01000000-0xffffffff]
[ 0.000000] Normal [mem 0x100000000-0x15cefffff]
[ 0.000000] Movable zone start for each node
[ 0.000000] Early memory node ranges
[ 0.000000] node 0: [mem 0x00001000-0x0009efff]
[ 0.000000] node 0: [mem 0x00100000-0xdffeffff]
[ 0.000000] node 0: [mem 0x100000000-0x15cefffff]
[ 0.000000] Initmem setup node 0 [mem 0x00001000-0x15cefffff]
[ 0.000000] On node 0 totalpages: 1298062
[ 0.000000] DMA zone: 64 pages used for memmap
[ 0.000000] DMA zone: 21 pages reserved
[ 0.000000] DMA zone: 3998 pages, LIFO batch:0
[ 0.000000] DMA32 zone: 14272 pages used for memmap
[ 0.000000] DMA32 zone: 913392 pages, LIFO batch:31
[ 0.000000] Normal zone: 5948 pages used for memmap
[ 0.000000] Normal zone: 380672 pages, LIFO batch:31
[ 0.000000] ACPI: PM-Timer IO Port: 0x4008
[ 0.000000] ACPI: Local APIC address 0xfee00000
[ 0.000000] ACPI: LAPIC (acpi_id[0x00] lapic_id[0x00] enabled)
[ 0.000000] ACPI: LAPIC (acpi_id[0x01] lapic_id[0x01] enabled)
[ 0.000000] ACPI: IOAPIC (id[0x02] address[0xfec00000] gsi_base[0])
[ 0.000000] IOAPIC[0]: apic_id 2, version 32, address 0xfec00000, GSI 0-23
[ 0.000000] ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl)
[ 0.000000] ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 low level)
[ 0.000000] ACPI: IRQ0 used by override.
[ 0.000000] ACPI: IRQ9 used by override.
[ 0.000000] Using ACPI (MADT) for SMP configuration information
[ 0.000000] smpboot: Allowing 2 CPUs, 0 hotplug CPUs
[ 0.000000] PM: Registered nosave memory: [mem 0x0009f000-0x0009ffff]
[ 0.000000] PM: Registered nosave memory: [mem 0x000a0000-0x000effff]
[ 0.000000] PM: Registered nosave memory: [mem 0x000f0000-0x000fffff]
[ 0.000000] PM: Registered nosave memory: [mem 0xdfff0000-0xdfffffff]
[ 0.000000] PM: Registered nosave memory: [mem 0xe0000000-0xfebfffff]
[ 0.000000] PM: Registered nosave memory: [mem 0xfec00000-0xfec00fff]
[ 0.000000] PM: Registered nosave memory: [mem 0xfec01000-0xfedfffff]
[ 0.000000] PM: Registered nosave memory: [mem 0xfee00000-0xfee00fff]
[ 0.000000] PM: Registered nosave memory: [mem 0xfee01000-0xfffbffff]
[ 0.000000] PM: Registered nosave memory: [mem 0xfffc0000-0xffffffff]
[ 0.000000] e820: [mem 0xe0000000-0xfebfffff] available for PCI devices
[ 0.000000] Booting paravirtualized kernel on KVM
[ 0.000000] setup_percpu: NR_CPUS:5120 nr_cpumask_bits:2 nr_cpu_ids:2 nr_node_ids:1
[ 0.000000] percpu: Embedded 38 pages/cpu s118784 r8192 d28672 u1048576
[ 0.000000] pcpu-alloc: s118784 r8192 d28672 u1048576 alloc=1*2097152
[ 0.000000] pcpu-alloc: [0] 0 1
[ 0.000000] PV qspinlock hash table entries: 256 (order: 0, 4096 bytes)
[ 0.000000] Built 1 zonelists in Node order, mobility grouping on. Total pages: 1277757
[ 0.000000] Policy zone: Normal
[ 0.000000] Kernel command line: BOOT_IMAGE=/vmlinuz-3.10.0-1127.19.1.el7.x86_64 root=/dev/mapper/SangomaVG-root ro crashkernel=auto rd.lvm.lv=SangomaVG/root rd.lvm.lv=SangomaVG/swaplv1 biosdevname=0 net.ifnames=0 rhgb quiet
[ 0.000000] PID hash table entries: 4096 (order: 3, 32768 bytes)
[ 0.000000] Memory: 4834808k/5716992k available (7784k kernel code, 524744k absent, 357440k reserved, 5958k data, 1980k init)
[ 0.000000] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=2, Nodes=1
[ 0.000000] x86/pti: Unmapping kernel while in userspace
[ 0.000000] Hierarchical RCU implementation.
[ 0.000000] RCU restricting CPUs from NR_CPUS=5120 to nr_cpu_ids=2.
[ 0.000000] NR_IRQS:327936 nr_irqs:440 0
[ 0.000000] Console: colour VGA+ 80x25
[ 0.000000] console [tty0] enabled
[ 0.000000] allocated 20971520 bytes of page_cgroup
[ 0.000000] please try 'cgroup_disable=memory' option if you don't want memory cgroups
[ 0.000000] tsc: Detected 2400.050 MHz processor
[ 0.134430] Calibrating delay loop (skipped) preset value.. 4800.10 BogoMIPS (lpj=2400050)
[ 0.134434] pid_max: default: 32768 minimum: 301
[ 0.134465] Security Framework initialized
[ 0.134473] SELinux: Initializing.
[ 0.134483] SELinux: Starting in permissive mode
[ 0.134485] Yama: becoming mindful.
[ 0.135759] Dentry cache hash table entries: 1048576 (order: 11, 8388608 bytes)
[ 0.140561] Inode-cache hash table entries: 524288 (order: 10, 4194304 bytes)
[ 0.141954] Mount-cache hash table entries: 16384 (order: 5, 131072 bytes)
[ 0.141966] Mountpoint-cache hash table entries: 16384 (order: 5, 131072 bytes)
[ 0.142186] Initializing cgroup subsys memory
[ 0.142192] Initializing cgroup subsys devices
[ 0.142194] Initializing cgroup subsys freezer
[ 0.142196] Initializing cgroup subsys net_cls
[ 0.142198] Initializing cgroup subsys blkio
[ 0.142199] Initializing cgroup subsys perf_event
[ 0.142201] Initializing cgroup subsys hugetlb
[ 0.142203] Initializing cgroup subsys pids
[ 0.142204] Initializing cgroup subsys net_prio
[ 0.142362] Last level iTLB entries: 4KB 512, 2MB 7, 4MB 7
[ 0.142364] Last level dTLB entries: 4KB 512, 2MB 32, 4MB 32
[ 0.142365] tlb_flushall_shift: 6
[ 0.142369] FEATURE SPEC_CTRL Not Present
[ 0.142370] FEATURE IBPB_SUPPORT Not Present
[ 0.142371] Spectre V1 : Mitigation: Load fences, usercopy/swapgs barriers and __user pointer sanitization
[ 0.142965] Spectre V2 : Vulnerable: Retpoline without IBPB
[ 0.142968] Speculative Store Bypass: Vulnerable
[ 0.143064] MDS: Vulnerable: Clear CPU buffers attempted, no microcode
[ 0.143963] Freeing SMP alternatives: 28k freed
[ 0.157346] ACPI: Core revision 20130517
[ 0.158329] ACPI: All ACPI Tables successfully acquired
[ 0.158420] ftrace: allocating 29619 entries in 116 pages
[ 0.235574] Enabling x2apic
[ 0.235592] Enabled x2apic
[ 0.235917] Switched APIC routing to physical x2apic.
[ 0.237783] ..TIMER: vector=0x30 apic1=0 pin1=2 apic2=-1 pin2=-1
[ 0.237786] smpboot: CPU0: Intel(R) Xeon(R) CPU E5620 @ 2.40GHz (fam: 06, model: 2c, stepping: 02 )
[ 0.339768] Performance Events: unsupported p6 CPU model 44 no PMU driver, software events only.
[ 0.339812] KVM setup paravirtual spinlock
[ 0.341353] smpboot: Booting Node 0, Processors #1 OK
[ 0.341695] kvm-clock: cpu 1, msr 1:5ce88041, secondary cpu clock
[ 0.343963] Brought up 2 CPUs
[ 0.343966] smpboot: Max logical packages: 1
[ 0.343968] smpboot: Total of 2 processors activated (9600.20 BogoMIPS)
[ 0.345002] devtmpfs: initialized
[ 0.345084] x86/mm: Memory block size: 128MB
[ 0.348262] EVM: security.selinux
[ 0.348264] EVM: security.ima
[ 0.348265] EVM: security.capability
[ 0.350018] atomic64 test passed for x86-64 platform with CX8 and with SSE
[ 0.350022] pinctrl core: initialized pinctrl subsystem
[ 0.350082] RTC time: 6:13:11, date: 05/10/21
[ 0.350854] NET: Registered protocol family 16
[ 0.351043] cpuidle: using governor haltpoll
[ 0.351126] ACPI: bus type PCI registered
[ 0.351129] acpiphp: ACPI Hot Plug PCI Controller Driver version: 0.5
[ 0.351255] PCI: Using configuration type 1 for base access
[ 0.355644] ACPI: Added _OSI(Module Device)
[ 0.355647] ACPI: Added _OSI(Processor Device)
[ 0.355649] ACPI: Added _OSI(3.0 _SCP Extensions)
[ 0.355650] ACPI: Added _OSI(Processor Aggregator Device)
[ 0.355652] ACPI: Added _OSI(Linux-Dell-Video)
[ 0.356165] ACPI: EC: Look up EC in DSDT
[ 0.356552] ACPI: Executed 1 blocks of module-level executable AML code
[ 0.359400] ACPI: Interpreter enabled
[ 0.359411] ACPI: (supports S0 S5)
[ 0.359413] ACPI: Using IOAPIC for interrupt routing
[ 0.359652] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
[ 0.359781] ACPI: Enabled 2 GPEs in block 00 to 07
[ 0.365048] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
[ 0.365055] acpi PNP0A03:00: _OSC: OS supports [ASPM ClockPM Segments MSI]
[ 0.365479] acpi PNP0A03:00: _OSC: not requesting OS control; OS requires [ExtendedConfig ASPM ClockPM MSI]
[ 0.365488] acpi PNP0A03:00: fail to add MMCONFIG information, can't access extended PCI configuration space under this bridge.
[ 0.365964] PCI host bridge to bus 0000:00
[ 0.365969] pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window]
[ 0.365972] pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window]
[ 0.365974] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
[ 0.365977] pci_bus 0000:00: root bus resource [mem 0xe0000000-0xfdffffff window]
[ 0.365980] pci_bus 0000:00: root bus resource [bus 00-ff]
[ 0.366032] pci 0000:00:00.0: [8086:1237] type 00 class 0x060000
[ 0.366804] pci 0000:00:01.0: [8086:7000] type 00 class 0x060100
[ 0.367698] pci 0000:00:01.1: [8086:7111] type 00 class 0x01018a
[ 0.368099] pci 0000:00:01.1: reg 0x20: [io 0xd000-0xd00f]
[ 0.368281] pci 0000:00:01.1: legacy IDE quirk: reg 0x10: [io 0x01f0-0x01f7]
[ 0.368284] pci 0000:00:01.1: legacy IDE quirk: reg 0x14: [io 0x03f6]
[ 0.368286] pci 0000:00:01.1: legacy IDE quirk: reg 0x18: [io 0x0170-0x0177]
[ 0.368288] pci 0000:00:01.1: legacy IDE quirk: reg 0x1c: [io 0x0376]
[ 0.368645] pci 0000:00:02.0: [15ad:0405] type 00 class 0x030000
[ 0.374182] pci 0000:00:02.0: reg 0x10: [io 0xd010-0xd01f]
[ 0.379415] pci 0000:00:02.0: reg 0x14: [mem 0xe0000000-0xe7ffffff pref]
[ 0.384621] pci 0000:00:02.0: reg 0x18: [mem 0xf0000000-0xf01fffff]
[ 0.405982] pci 0000:00:03.0: [8086:100e] type 00 class 0x020000
[ 0.409241] pci 0000:00:03.0: reg 0x10: [mem 0xf0200000-0xf021ffff]
[ 0.415554] pci 0000:00:03.0: reg 0x18: [io 0xd020-0xd027]
[ 0.428998] pci 0000:00:04.0: [80ee:cafe] type 00 class 0x088000
[ 0.432139] pci 0000:00:04.0: reg 0x10: [io 0xd040-0xd05f]
[ 0.435254] pci 0000:00:04.0: reg 0x14: [mem 0xf0400000-0xf07fffff]
[ 0.438740] pci 0000:00:04.0: reg 0x18: [mem 0xf0800000-0xf0803fff pref]
[ 0.451729] pci 0000:00:05.0: [8086:2415] type 00 class 0x040100
[ 0.451848] pci 0000:00:05.0: reg 0x10: [io 0xd100-0xd1ff]
[ 0.451926] pci 0000:00:05.0: reg 0x14: [io 0xd200-0xd23f]
[ 0.452650] pci 0000:00:06.0: [106b:003f] type 00 class 0x0c0310
[ 0.455854] pci 0000:00:06.0: reg 0x10: [mem 0xf0804000-0xf0804fff]
[ 0.475520] pci 0000:00:07.0: [8086:7113] type 00 class 0x068000
[ 0.476128] pci 0000:00:07.0: quirk: [io 0x4000-0x403f] claimed by PIIX4 ACPI
[ 0.476143] pci 0000:00:07.0: quirk: [io 0x4100-0x410f] claimed by PIIX4 SMB
[ 0.477865] ACPI: PCI Interrupt Link [LNKA] (IRQs 5 9 10 *11)
[ 0.478160] ACPI: PCI Interrupt Link [LNKB] (IRQs 5 9 *10 11)
[ 0.478278] ACPI: PCI Interrupt Link [LNKC] (IRQs 5 *9 10 11)
[ 0.478397] ACPI: PCI Interrupt Link [LNKD] (IRQs 5 9 10 *11)
[ 0.479050] vgaarb: device added: PCI:0000:00:02.0,decodes=io+mem,owns=io+mem,locks=none
[ 0.479056] vgaarb: loaded
[ 0.479058] vgaarb: bridge control possible 0000:00:02.0
[ 0.479207] SCSI subsystem initialized
[ 0.479257] ACPI: bus type USB registered
[ 0.479289] usbcore: registered new interface driver usbfs
[ 0.479300] usbcore: registered new interface driver hub
[ 0.479334] usbcore: registered new device driver usb
[ 0.479527] EDAC MC: Ver: 3.0.0
[ 0.480099] PCI: Using ACPI for IRQ routing
[ 0.480102] PCI: pci_cache_line_size set to 64 bytes
[ 0.480314] e820: reserve RAM buffer [mem 0x0009fc00-0x0009ffff]
[ 0.480321] e820: reserve RAM buffer [mem 0xdfff0000-0xdfffffff]
[ 0.480323] e820: reserve RAM buffer [mem 0x15cf00000-0x15fffffff]
[ 0.480510] NetLabel: Initializing
[ 0.480513] NetLabel: domain hash size = 128
[ 0.480514] NetLabel: protocols = UNLABELED CIPSOv4
[ 0.480543] NetLabel: unlabeled traffic allowed by default
[ 0.480863] amd_nb: Cannot enumerate AMD northbridges
[ 0.480936] Switched to clocksource kvm-clock
[ 0.489760] pnp: PnP ACPI init
[ 0.489776] ACPI: bus type PNP registered
[ 0.489890] pnp 00:00: Plug and Play ACPI device, IDs PNP0303 (active)
[ 0.490019] pnp 00:01: Plug and Play ACPI device, IDs PNP0f03 (active)
[ 0.490856] pnp: PnP ACPI: found 2 devices
[ 0.490859] ACPI: bus type PNP unregistered
[ 0.505017] pci_bus 0000:00: resource 4 [io 0x0000-0x0cf7 window]
[ 0.505021] pci_bus 0000:00: resource 5 [io 0x0d00-0xffff window]
[ 0.505023] pci_bus 0000:00: resource 6 [mem 0x000a0000-0x000bffff window]
[ 0.505026] pci_bus 0000:00: resource 7 [mem 0xe0000000-0xfdffffff window]
[ 0.505058] NET: Registered protocol family 2
[ 0.505359] TCP established hash table entries: 65536 (order: 7, 524288 bytes)
[ 0.506224] TCP bind hash table entries: 65536 (order: 8, 1048576 bytes)
[ 0.506358] TCP: Hash tables configured (established 65536 bind 65536)
[ 0.506377] TCP: reno registered
[ 0.506391] UDP hash table entries: 4096 (order: 5, 131072 bytes)
[ 0.506425] UDP-Lite hash table entries: 4096 (order: 5, 131072 bytes)
[ 0.506493] NET: Registered protocol family 1
[ 0.506520] pci 0000:00:00.0: Limiting direct PCI/PCI transfers
[ 0.506559] pci 0000:00:01.0: Activating ISA DMA hang workarounds
[ 0.506610] pci 0000:00:02.0: Boot video device
[ 0.508167] PCI: CLS 0 bytes, default 64
[ 0.508213] Unpacking initramfs...
[ 0.907109] Freeing initrd memory: 24524k freed
[ 0.910943] PCI-DMA: Using software bounce buffering for IO (SWIOTLB)
[ 0.910949] software IO TLB [mem 0xdbff0000-0xdfff0000] (64MB) mapped at [ffff9991dbff0000-ffff9991dffeffff]
[ 0.911308] platform rtc_cmos: registered platform RTC device (no PNP device found)
[ 0.912488] sha1_ssse3: Using SSSE3 optimized SHA-1 implementation
[ 0.912657] sha256_ssse3: Using SSSE3 optimized SHA-256 implementation
[ 0.913236] futex hash table entries: 512 (order: 3, 32768 bytes)
[ 0.913249] Initialise system trusted keyring
[ 0.913272] audit: initializing netlink socket (disabled)
[ 0.913288] type=2000 audit(1620627202.367:1): initialized
[ 0.943820] HugeTLB registered 2 MB page size, pre-allocated 0 pages
[ 0.945788] zpool: loaded
[ 0.945792] zbud: loaded
[ 0.946126] VFS: Disk quotas dquot_6.5.2
[ 0.946165] Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
[ 0.946480] Key type big_key registered
[ 0.946483] SELinux: Registering netfilter hooks
[ 0.948619] NET: Registered protocol family 38
[ 0.948626] Key type asymmetric registered
[ 0.948629] Asymmetric key parser 'x509' registered
[ 0.948673] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 248)
[ 0.948765] io scheduler noop registered
[ 0.948769] io scheduler deadline registered (default)
[ 0.948808] io scheduler cfq registered
[ 0.948812] io scheduler mq-deadline registered
[ 0.948816] io scheduler kyber registered
[ 0.948945] pci_hotplug: PCI Hot Plug PCI Core version: 0.5
[ 0.948953] pciehp: PCI Express Hot Plug Controller Driver version: 0.4
[ 0.948969] shpchp: Standard Hot Plug PCI Controller Driver version: 0.4
[ 0.949059] intel_idle: does not run on family 6 model 44
[ 0.949250] ACPI: AC Adapter [AC] (on-line)
[ 0.949322] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0
[ 0.949326] ACPI: Power Button [PWRF]
[ 0.949415] input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input1
[ 0.949418] ACPI: Sleep Button [SLPF]
[ 0.949580] GHES: HEST is not enabled!
[ 0.949679] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled
[ 0.950204] Non-volatile memory driver v1.3
[ 0.950240] Linux agpgart interface v0.103
[ 0.950411] crash memory driver: version 1.1
[ 0.950484] rdac: device handler registered
[ 0.950631] hp_sw: device handler registered
[ 0.950635] emc: device handler registered
[ 0.950759] alua: device handler registered
[ 0.950861] libphy: Fixed MDIO Bus: probed
[ 0.950916] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
[ 0.950923] ehci-pci: EHCI PCI platform driver
[ 0.950938] ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver
[ 0.950947] ohci-pci: OHCI PCI platform driver
[ 0.951711] ohci-pci 0000:00:06.0: OHCI PCI host controller
[ 0.951768] ohci-pci 0000:00:06.0: new USB bus registered, assigned bus number 1
[ 0.951866] ohci-pci 0000:00:06.0: irq 22, io mem 0xf0804000
[ 1.004433] usb usb1: New USB device found, idVendor=1d6b, idProduct=0001, bcdDevice= 3.10
[ 1.004437] usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1
[ 1.004439] usb usb1: Product: OHCI PCI host controller
[ 1.004442] usb usb1: Manufacturer: Linux 3.10.0-1127.19.1.el7.x86_64 ohci_hcd
[ 1.004444] usb usb1: SerialNumber: 0000:00:06.0
[ 1.004575] hub 1-0:1.0: USB hub found
[ 1.004631] hub 1-0:1.0: 12 ports detected
[ 1.005185] uhci_hcd: USB Universal Host Controller Interface driver
[ 1.005255] usbcore: registered new interface driver usbserial_generic
[ 1.005263] usbserial: USB Serial support registered for generic
[ 1.005312] i8042: PNP: PS/2 Controller [PNP0303:PS2K,PNP0f03:PS2M] at 0x60,0x64 irq 1,12
[ 1.005965] serio: i8042 KBD port at 0x60,0x64 irq 1
[ 1.005973] serio: i8042 AUX port at 0x60,0x64 irq 12
[ 1.006283] mousedev: PS/2 mouse device common for all mice
[ 1.006804] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input2
[ 1.008303] rtc_cmos rtc_cmos: rtc core: registered rtc_cmos as rtc0
[ 1.008381] rtc_cmos rtc_cmos: alarms up to one day, 114 bytes nvram
[ 1.008550] hidraw: raw HID events driver (C) Jiri Kosina
[ 1.008712] usbcore: registered new interface driver usbhid
[ 1.008714] usbhid: USB HID core driver
[ 1.008772] drop_monitor: Initializing network drop monitor service
[ 1.008842] TCP: cubic registered
[ 1.008846] Initializing XFRM netlink socket
[ 1.008983] NET: Registered protocol family 10
[ 1.009447] NET: Registered protocol family 17
[ 1.009455] mpls_gso: MPLS GSO support
[ 1.009619] mce: Using 0 MCE banks
[ 1.009780] PM: Hibernation image not present or could not be loaded.
[ 1.009784] Loading compiled-in X.509 certificates
[ 1.009806] Loaded X.509 cert 'CentOS Linux kpatch signing key: ea0413152cde1d98ebdca3fe6f0230904c9ef717'
[ 1.009821] Loaded X.509 cert 'CentOS Linux Driver update signing key: 7f421ee0ab69461574bb358861dbe77762a4201b'
[ 1.010476] Loaded X.509 cert 'CentOS Linux kernel signing key: b16a91cac9d651464acb7ad9b8ded557cf1aca27'
[ 1.010502] registered taskstats version 1
[ 1.016249] Key type trusted registered
[ 1.020444] Key type encrypted registered
[ 1.020466] IMA: No TPM chip found, activating TPM-bypass! (rc=-19)
[ 1.020736] Magic number: 5:546:215
[ 1.020745] event_source software: hash matches
[ 1.020885] rtc_cmos rtc_cmos: setting system clock to 2021-05-10 06:13:12 UTC (1620627192)
[ 1.022162] Freeing unused kernel memory: 1980k freed
[ 1.022499] Write protecting the kernel read-only data: 12288k
[ 1.024038] Freeing unused kernel memory: 396k freed
[ 1.025690] Freeing unused kernel memory: 540k freed
[ 1.031344] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.031835] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.031856] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.033049] systemd[1]: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ +LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN)
[ 1.033090] systemd[1]: Detected virtualization kvm.
[ 1.033104] systemd[1]: Detected architecture x86-64.
[ 1.033110] systemd[1]: Running in initial RAM disk.
[ 1.033164] systemd[1]: Set hostname to <freepbx.sangoma.local>.
[ 1.086751] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.086780] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.086824] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.086888] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.087878] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.088110] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.088722] random: systemd: uninitialized urandom read (16 bytes read)
[ 1.095699] systemd[1]: Reached target Local File Systems.
[ 1.095780] systemd[1]: Reached target Timers.
[ 1.095800] systemd[1]: Reached target Swap.
[ 1.096219] systemd[1]: Created slice Root Slice.
[ 1.096354] systemd[1]: Listening on Journal Socket.
[ 1.096432] systemd[1]: Listening on udev Control Socket.
[ 1.096568] systemd[1]: Created slice System Slice.
[ 1.097602] systemd[1]: Starting Setup Virtual Console...
[ 1.098414] systemd[1]: Starting Journal Service...
[ 1.099346] systemd[1]: Starting Create list of required static device nodes for the current kernel...
[ 1.100494] systemd[1]: Starting dracut cmdline hook...
[ 1.101613] systemd[1]: Starting Apply Kernel Variables...
[ 1.101708] systemd[1]: Listening on udev Kernel Socket.
[ 1.101743] systemd[1]: Reached target Sockets.
[ 1.101770] systemd[1]: Reached target Slices.
[ 1.102974] systemd[1]: Started Create list of required static device nodes for the current kernel.
[ 1.106562] systemd[1]: Starting Create Static Device Nodes in /dev...
[ 1.109726] systemd[1]: Started Apply Kernel Variables.
[ 1.193790] systemd[1]: Started Create Static Device Nodes in /dev.
[ 1.204327] systemd[1]: Started Journal Service.
[ 1.210625] psmouse serio1: alps: Unknown ALPS touchpad: E7=10 00 64, EC=10 00 64
[ 1.212012] input: ImExPS/2 Generic Explorer Mouse as /devices/platform/i8042/serio1/input/input3
[ 1.348270] device-mapper: uevent: version 1.0.3
[ 1.348477] device-mapper: ioctl: 4.37.1-ioctl (2018-04-03) initialised: dm-devel@redhat.com
[ 1.422541] usb 1-1: new full-speed USB device number 2 using ohci-pci
[ 1.510671] e1000: Intel(R) PRO/1000 Network Driver - version 7.3.21-k8-NAPI
[ 1.510675] e1000: Copyright (c) 1999-2006 Intel Corporation.
[ 1.598742] libata version 3.00 loaded.
[ 1.750645] usb 1-1: New USB device found, idVendor=80ee, idProduct=0021, bcdDevice= 1.00
[ 1.750649] usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[ 1.750652] usb 1-1: Product: USB Tablet
[ 1.750654] usb 1-1: Manufacturer: VirtualBox
[ 1.763045] input: VirtualBox USB Tablet as /devices/pci0000:00/0000:00:06.0/usb1/1-1/1-1:1.0/input/input4
[ 1.763365] hid-generic 0003:80EE:0021.0001: input,hidraw0: USB HID v1.10 Mouse [VirtualBox USB Tablet] on usb-0000:00:06.0-1/input0
[ 1.919197] tsc: Refined TSC clocksource calibration: 2401.276 MHz
[ 1.963821] e1000 0000:00:03.0 eth0: (PCI:33MHz:32-bit) 08:00:27:64:ce:26
[ 1.963831] e1000 0000:00:03.0 eth0: Intel(R) PRO/1000 Network Connection
[ 1.963874] ata_piix 0000:00:01.1: version 2.13
[ 1.964771] scsi host0: ata_piix
[ 1.964873] scsi host1: ata_piix
[ 1.964925] ata1: PATA max UDMA/33 cmd 0x1f0 ctl 0x3f6 bmdma 0xd000 irq 14
[ 1.964928] ata2: PATA max UDMA/33 cmd 0x170 ctl 0x376 bmdma 0xd008 irq 15
[ 1.967404] [drm] DMA map mode: Keeping DMA mappings.
[ 1.967461] [drm] Capabilities:
[ 1.967462] [drm] Cursor.
[ 1.967464] [drm] Cursor bypass 2.
[ 1.967465] [drm] Alpha cursor.
[ 1.967466] [drm] 3D.
[ 1.967467] [drm] Extended Fifo.
[ 1.967468] [drm] Pitchlock.
[ 1.967469] [drm] Irq mask.
[ 1.967470] [drm] GMR.
[ 1.967471] [drm] Traces.
[ 1.967473] [drm] GMR2.
[ 1.967474] [drm] Screen Object 2.
[ 1.967476] [drm] Max GMR ids is 8192
[ 1.967477] [drm] Max number of GMR pages is 1048576
[ 1.967478] [drm] Max dedicated hypervisor surface memory is 393216 kiB
[ 1.967480] [drm] Maximum display memory size is 131072 kiB
[ 1.967481] [drm] VRAM at 0xe0000000 size is 131072 kiB
[ 1.967483] [drm] MMIO at 0xf0000000 size is 2048 kiB
[ 1.968581] [TTM] Zone kernel: Available graphics memory: 2431138 kiB
[ 1.968584] [TTM] Zone dma32: Available graphics memory: 2097152 kiB
[ 1.968599] [TTM] Initializing pool allocator
[ 1.968605] [TTM] Initializing DMA pool allocator
[ 1.968634] [drm] Supports vblank timestamp caching Rev 2 (21.10.2013).
[ 1.968635] [drm] No driver support for vblank timestamp query.
[ 1.969011] [drm] Screen Objects Display Unit initialized
[ 1.969128] [drm] width 0
[ 1.969142] [drm] height 0
[ 1.969155] [drm] bpp 32
[ 1.969648] [drm] Fifo max 0x00200000 min 0x00001000 cap 0x00000355
[ 1.969664] [drm] DX: no.
[ 1.969665] [drm] Atomic: yes.
[ 1.969666] [drm] SM4_1: no.
[ 1.969688] [drm:vmw_host_log [vmwgfx]] *ERROR* Failed to send host log message.
[ 1.970991] [drm:vmw_host_log [vmwgfx]] *ERROR* Failed to send host log message.
[ 1.977088] fbcon: svgadrmfb (fb0) is primary device
[ 2.005456] Console: switching to colour frame buffer device 100x37
[ 2.006793] [drm] Initialized vmwgfx 2.15.0 20180704 for 0000:00:02.0 on minor 0
[ 2.125434] ata1.00: ATA-6: VBOX HARDDISK, 1.0, max UDMA/133
[ 2.125442] ata1.00: 43027552 sectors, multi 128: LBA
[ 2.126238] ata2.00: ATAPI: VBOX CD-ROM, 1.0, max UDMA/133
[ 2.126533] ata1.00: configured for UDMA/33
[ 2.126744] scsi 0:0:0:0: Direct-Access ATA VBOX HARDDISK 1.0 PQ: 0 ANSI: 5
[ 2.126849] ata2.00: configured for UDMA/33
[ 2.137971] scsi 1:0:0:0: CD-ROM VBOX CD-ROM 1.0 PQ: 0 ANSI: 5
[ 2.159232] sr 1:0:0:0: [sr0] scsi3-mmc drive: 32x/32x xa/form2 tray
[ 2.159235] cdrom: Uniform CD-ROM driver Revision: 3.20
[ 2.159938] sd 0:0:0:0: [sda] 43027552 512-byte logical blocks: (22.0 GB/20.5 GiB)
[ 2.159989] sd 0:0:0:0: [sda] Write Protect is off
[ 2.159992] sd 0:0:0:0: [sda] Mode Sense: 00 3a 00 00
[ 2.160015] sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
[ 2.160904] sr 1:0:0:0: Attached scsi CD-ROM sr0
[ 2.161218] sda: sda1 sda2
[ 2.161473] sd 0:0:0:0: [sda] Attached SCSI disk
[ 2.196147] random: fast init done
[ 4.474106] floppy0: no floppy controllers found
[ 4.474152] work still pending
[ 4.802229] SGI XFS with ACLs, security attributes, no debug enabled
[ 4.805264] XFS (dm-0): Mounting V5 Filesystem
[ 4.951313] XFS (dm-0): Starting recovery (logdev: internal)
[ 5.399007] random: crng init done
[ 6.015043] XFS (dm-0): Ending recovery (logdev: internal)
[ 6.392838] systemd-journald[96]: Received SIGTERM from PID 1 (systemd).
[ 6.754359] SELinux: Disabled at runtime.
[ 6.754384] SELinux: Unregistering netfilter hooks
[ 6.793030] type=1404 audit(1620627198.272:2): selinux=0 auid=4294967295 ses=4294967295
[ 6.826474] systemd[1]: RTC configured in localtime, applying delta of 180 minutes to system time.
[ 6.975640] ip_tables: (C) 2000-2006 Netfilter Core Team
[ 6.975816] systemd[1]: Inserted module 'ip_tables'
[ 8.227708] systemd-journald[497]: Received request to flush runtime journal from PID 1
[ 8.721639] input: PC Speaker as /devices/platform/pcspkr/input/input5
[ 8.731895] ACPI: Video Device [GFX0] (multi-head: yes rom: no post: no)
[ 8.732004] input: Video Bus as /devices/LNXSYSTM:00/device:00/PNP0A03:00/LNXVIDEO:00/input/input6
[ 8.745993] piix4_smbus 0000:00:07.0: SMBus Host Controller at 0x4100, revision 0
[ 8.797002] sd 0:0:0:0: Attached scsi generic sg0 type 0
[ 8.797051] sr 1:0:0:0: Attached scsi generic sg1 type 5
[ 8.863194] cryptd: max_cpu_qlen set to 1000
[ 8.905358] SSE version of gcm_enc/dec engaged.
[ 8.919289] alg: No test for __gcm-aes-aesni (__driver-gcm-aes-aesni)
[ 8.919335] alg: No test for __generic-gcm-aes-aesni (__driver-generic-gcm-aes-aesni)
[ 8.922286] ppdev: user-space parallel port driver
[ 9.039012] Adding 2150396k swap on /dev/mapper/SangomaVG-swaplv1. Priority:-2 extents:1 across:2150396k FS
[ 9.352578] EXT4-fs (sda1): mounted filesystem with ordered data mode. Opts: (null)
[ 9.361124] snd_intel8x0 0000:00:05.0: measure - unreliable DMA position..
[ 9.714102] snd_intel8x0 0000:00:05.0: measure - unreliable DMA position..
[ 10.074399] snd_intel8x0 0000:00:05.0: measure - unreliable DMA position..
[ 10.074403] snd_intel8x0 0000:00:05.0: clocking to 48000
[ 11.794384] floppy0: no floppy controllers found
[ 12.022357] type=1305 audit(1620616403.501:3): audit_pid=627 old=0 auid=4294967295 ses=4294967295 res=1
[ 13.716794] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[ 13.719102] IPv6: ADDRCONF(NETDEV_UP): eth0: link is not ready
[ 13.719122] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready
[ 17.508612] Key type dns_resolver registered
[ 17.679311] Key type cifs.spnego registered
[ 17.679318] Key type cifs.idmap registered
[ 17.680627] No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3 (or SMB2.1) specify vers=1.0 on mount.
[ 52.995300] dahdi: loading out-of-tree module taints kernel.
[ 52.996654] dahdi: module verification failed: signature and/or required key missing - tainting kernel
[ 52.999909] dahdi: Version: 2.11.1
[ 53.000129] dahdi: Telephony Interface Registered on major 196
[ 54.012049] dahdi_transcode: Loaded.
[ 54.101310] INFO-xpp: revision Unknown MAX_XPDS=64 (8*8)
[ 54.101316] INFO-xpp: FEATURE: with PROTOCOL_DEBUG
[ 54.101356] INFO-xpp: FEATURE: with sync_tick() from DAHDI
[ 54.116266] INFO-xpp_usb: revision Unknown
[ 54.116329] usbcore: registered new interface driver xpp_usb
[ 95.673697] Bluetooth: Core ver 2.22
[ 95.673717] NET: Registered protocol family 31
[ 95.673719] Bluetooth: HCI device and connection manager initialized
[ 95.673724] Bluetooth: HCI socket layer initialized
[ 95.673726] Bluetooth: L2CAP socket layer initialized
[ 95.673734] Bluetooth: SCO socket layer initialized
You have new mail in /var/spool/mail/root

Придется ждать следующего раза и уже нормально все анализировать без паники
Kornur
 
Сообщений: 30
Зарегистрирован: 02 апр 2021, 18:56

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Zavr2008 » 11 май 2021, 14:25

Правильно не ждать у моря погоды - просто поднять на второй виртуалке rsyslog сервер и лить все логи на него.
Если будет взлом, доступа на этот сервер не будет и ничего не пропадет. Аналогично и при краше.
Российские шлюзы E1 Alvis-GW. Модернизация УПАТС с E1, Установка FreePBX, Системы антифрод "в разрыв" потоков E1 PRI / SS#7 ISUP.
Аватар пользователя
Zavr2008
 
Сообщений: 2159
Зарегистрирован: 27 янв 2011, 01:35

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Kornur » 11 май 2021, 14:35

Спасибо, думаю так и нужно сделать.
Правда, взлом крайне маловероятен, т.к. Asterisk находится во внутренней сети за кучей файрволлов и не имеет никаких выходов наружу.
Внешние вызовы приходят и уходят через Avaya.
Для обновления и установки чего-либо каждый раз прописываю и удаляю в yum.conf учетку для прокси.
Но полностью исключать какие-то злонамеренные действия, конечно, нельзя.
Поэтому идея хранить все логи на внешнем сервере мне очень нравится, буду поднимать его прямо сейчас.
Вот уже и мануал нашел )
Kornur
 
Сообщений: 30
Зарегистрирован: 02 апр 2021, 18:56

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Kornur » 11 май 2021, 15:01

Сейчас еще увидел, что не сработали скрипты ночью.
На них пропали права на исполнение. Как такое возможно?
Kornur
 
Сообщений: 30
Зарегистрирован: 02 апр 2021, 18:56

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение ded » 11 май 2021, 16:24

Скрипты - ваши собственные?
Kornur писал(а):не сработали скрипты ночью.
На них пропали права на исполнение. Как такое возможно?

По условиям регистрации на форуме - это должно быть самостоятельным исследованием и уже ответом на этот вопрос.
Возможная причина такого поведения - 100% заполнение памяти/дискового пространства. При этом начинают отключаться сервисы - mysql, apache2, etc, но телефония при этом работает.

Ну и -
Asterisk comes with ABSOLUTELY NO WARRANTY; type ‘core show warranty’ for details.
FreePBX - тоже.
ded
 
Сообщений: 15803
Зарегистрирован: 26 авг 2010, 19:00

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение Kornur » 11 май 2021, 16:36

Да, скрипты собственные.

По поводу заполнения памяти - спасибо, посмотрю.
CPU
Изображение
Memory
Изображение

В не сильно информативной панели FreePBX за 9 мая вообще нет данных. И видно, что средняя нагрузка на сервер увеличилась
Kornur
 
Сообщений: 30
Зарегистрирован: 02 апр 2021, 18:56

Re: Пропал доступ к серверу по web-нитерфейсу и SSH

Сообщение ded » 11 май 2021, 17:22

Общая методология поиска проблем и причин: забиваем в Гугл вашу фразу
No slotmem from mod_heartmonitor
https://www.google.com/search?q=+No+slo ... artmonitor

исходя из предположения, что случай не может быть уникальным, и читаем всё последовательно. Можно начать с [SOLVED]
https://forums.fedoraforum.org/showthre ... artmonitor
ded
 
Сообщений: 15803
Зарегистрирован: 26 авг 2010, 19:00

След.

Вернуться в Вопросы новичков

Кто сейчас на форуме

Сейчас этот форум просматривают: нет зарегистрированных пользователей и гости: 13

© 2008 — 2024 Asterisk.ru
Digium, Asterisk and AsteriskNOW are registered trademarks of Digium, Inc.
Design and development by PostMet-Netzwerk GmbH