This role will install and configure various monitoring and audit utilities:
- lynis security auditing tool
- htop system monitor/process manager
- nethogs network bandwidth monitor
- ncdu disk usage viewer
- lnav log viewer
- (optional) duc disk usage analyzer
See meta/main.yml
- hosts: my.CHANGEME.org
roles:
- nodiscc.xsrv.common # (optional) basic setup, hardening, firewall
- nodiscc.xsrv.monitoring_utils
# - nodiscc.xsrv.monitoring # (optional) full monitoring suite including monitoring_utilsSee defaults/main.yml for all configuration variables
- Show htop process manager:
ssh -t user@my.CHANGEME.org sudo htop - Analyze disk usage by directory:
ssh -t user@my.CHANGEME.org sudo ncdu / - Show network bandwidth usage by process:
ssh -t user@my.CHANGEME.org sudo nethogs - Show network connections:
ssh -t user@my.CHANGEME.org sudo watch -n 2 ss -laptu - Visualize disk usage by directory:
TAGS=utils-duc xsrv deploy default my.CHANGEME.organd runduc gui --database=data/duc-my.CHANGEME.org.db /on the controller (requires duc) - Use
lnavto navigate/search/filter aggregated system logs:
# using https://xsrv.readthedocs.io/en/latest/
xsrv logs [project] [host]
# using ssh
ssh -t user@my.CHANGEME.org sudo lnav /var/log/syslogUseful lnav commands:
:filter-in <expression>only display messages matching filter expression:set-min-log-level debug|info|warning|erroronly display messages above a defined log level.:<TAB><TAB>display internal command listCtrl+Rclear all filters/reset session?lnav helpqexit lnav
To be able to read system logs as a non-root/sudoer user, add your user to the adm group. Example using the ../common role:
linux_users:
- name: "{{ ansible_user }}"
groups: adm
append: yes
comment: "ansible user/allowed to read system logs"See lnav documentation for more information.
lynis - setup lynis security audit tool
monitoring_utils - setup command-line/additional monitoring utilities
utils-duc - (manual) run duc disk usage analyzer and download the database on the controller