![- tcpdump -i eth0 -T snmp "(src port 161 or 162)"
- tcpdump -i eth0 'udp port 53'
- tcpdump "tcp[tcpflags] & (tcp-syn|tcp-ack) != 0"
- tcpdump -i eth0 'tcp port 22' -w saida.pcap
- tshark -r saida.pcap
COLETA DE INFORMAÇÕES
https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com](https://image.slidesharecdn.com/apresentacaoltsflisol2016-160417134351/85/Debugging-is-on-the-table-Dr-House-pergunta-a-um-Sysadmin-14-320.jpg)
![- tcpdump -i eth0 -T snmp "(src port 161 or 162)"
- tcpdump -i eth0 'udp port 53'
- tcpdump "tcp[tcpflags] & (tcp-syn|tcp-ack) != 0"
- tcpdump -i eth0 'tcp port 22' -w saida.pcap
- tshark -r saida.pcap
COLETA DE INFORMAÇÕES
# apt-get install tshark
# apt-get install tcpdump
https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com](https://image.slidesharecdn.com/apresentacaoltsflisol2016-160417134351/85/Debugging-is-on-the-table-Dr-House-pergunta-a-um-Sysadmin-15-320.jpg)
Uploaded byLeonardo Martins
“Debugging is on the table” Dr. House pergunta a um Sysadmin
The document outlines a structured approach to debugging, beginning with problem identification and information gathering, followed by hypothesis construction and testing. It includes various tools and commands for collecting data and analyzing system performance, such as tcpdump, strace, and sysdig. Additionally, it references monitoring and automation tools like collectd, InfluxDB, and Grafana, alongside external resources for further exploration.
“Debugging is on the table” Dr. House pergunta a um Sysadmin
- 1. “Debugging is onthe table” Dr. House pergunta a um Sysadmin Leonardo Martins Abril/2016
- 2. POR ONDE COMEÇAR? https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 3. https://br.linkedin.com/in/leonardoml Leonardo Martins- leonardoml@gmail.com
- 4. Leonardo Martins https://br.linkedin.com/in/leonardoml LeonardoMartins - leonardoml@gmail.com
- 5. Leonardo Martins https://br.linkedin.com/in/leonardoml LeonardoMartins - leonardoml@gmail.com
- 6.
- 7. Hipótese confirmada? Problema resolvido!! SIM NÃO Coletar informações Definir problema Construir hipótese Testar hipótese Construir nova hipótese Guardar os dadoscoletados https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 8. Hipótese confirmada? Problema resolvido!! Coletar informações Definir problema Construir hipótese Testar hipótese Construir nova hipótese Guardar os dadoscoletados SIM NÃO https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 9. DEFINIÇÃO DE PROBLEMA Oque te faz pensar que existe um problema? O que causou esse problema? O que foi mudado recentemente? Isso já funcionou alguma vez ? https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 10. COLETA DE INFORMAÇÕES https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 11. COLETA DE INFORMAÇÃO #apt-get install htop https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 12. COLETA DE INFORMAÇÕES https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 13. COLETA DE INFORMAÇÕES #apt-get install sysstat # apt-get install dstat https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 14. - tcpdump -ieth0 -T snmp "(src port 161 or 162)" - tcpdump -i eth0 'udp port 53' - tcpdump "tcp[tcpflags] & (tcp-syn|tcp-ack) != 0" - tcpdump -i eth0 'tcp port 22' -w saida.pcap - tshark -r saida.pcap COLETA DE INFORMAÇÕES https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 15. - tcpdump -ieth0 -T snmp "(src port 161 or 162)" - tcpdump -i eth0 'udp port 53' - tcpdump "tcp[tcpflags] & (tcp-syn|tcp-ack) != 0" - tcpdump -i eth0 'tcp port 22' -w saida.pcap - tshark -r saida.pcap COLETA DE INFORMAÇÕES # apt-get install tshark # apt-get install tcpdump https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 16. COLETA DE INFORMAÇÕES -strace ./get_http.py - strace -e trace=open,close ./get_http.py - strace -f -e trace=network ./test_tcp.sh # apt-get install strace https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 17. COLETA DE INFORMAÇÕES -lsof /var/log/nginx/access.log - lsof -u $USER - lsof -p PID - lsof -i |grep LISTEN - lsof -i :80 # apt-get install lsof https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 18. COLETA DE INFORMAÇÕES -sysdig -c topprocs_cpu - sysdig -c topscalls_time - sysdig -c topfiles_time proc.name=nginx # apt-get install sysdig https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 19. ANÁLISE DAS INFORMAÇÕES http://www.zastavki.com/pictures/1600x1200/2008/Movies_Movies_H_House_M.D._010043_.jpg https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 20. Hipótese confirmada? Problema resolvido!! SIM NÃO Coletar informações Definir problema Construir hipótese Testar hipótese Construir nova hipótese Guardar os dadoscoletados https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 21. TESTAR HIPÓTESES https://br.linkedin.com/in/leonardoml LeonardoMartins - leonardoml@gmail.com
- 22.
- 23.
- 24. http://computernetworkhomeworkhelp.com/wp-content/uploads/2014/01/comparision.png DIVIDIR E CONQUISTAR https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 25. CONSTRUIR NOVAS HIPÓTESES ? ? ? ? ? ? ? ? http://watchesinmovies.info/img/f/House-Pathfinder.jpg ? https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 26.
- 27.
- 28. FOLLOW THE REQUEST https://d0.awsstatic.com/architecture-diagrams/customers/parse-arch-diagram.png https://br.linkedin.com/in/leonardomlLeonardo Martins - leonardoml@gmail.com
- 29.
- 30. LOGS https://www.graylog.org/overview - Graylog https://br.linkedin.com/in/leonardoml LeonardoMartins - leonardoml@gmail.com
- 31. LOGS https://www.graylog.org/overview - Graylog https://br.linkedin.com/in/leonardoml LeonardoMartins - leonardoml@gmail.com
- 32. MONITORAÇÃO https://br.linkedin.com/in/leonardoml Leonardo Martins- leonardoml@gmail.com
- 33. MONITORAÇÃO - CollectD +InfluxDB + Grafana https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 34. AUTOMAÇÃO https://br.linkedin.com/in/leonardoml Leonardo Martins- leonardoml@gmail.com
- 35. “Everybody lies” byDr. House https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com
- 36.
- 37. REFERÊNCIAS https://br.linkedin.com/in/leonardoml Leonardo Martins- leonardoml@gmail.com
- 38. - http://www.zabbix.com - https://www.graylog.org -https://collectd.org - https://influxdata.com - http://grafana.org - https://www.chef.io - https://puppet.com - https://www.ansible.com - http://saltstack.com https://br.linkedin.com/in/leonardoml Leonardo Martins - leonardoml@gmail.com REFERÊNCIAS
- 39.