NH CONSULTORIA

De Wiki NOC
Edição feita às 14h46min de 28 de agosto de 2013 por 172.3.3.1 (Discussão)

Tabela de conteúdo

Contatos

Donos, sócios e gerentes:

Responsáveis por solicitações: Luciano

Info e dados cadastrais

Razão Social: NH CONSULTORIA AUDITORIA E SISTEMA CONTABEIS
CNPJ: 01.202.920/0001-55

Link

Firewall

Patrimônio:
Atendimento:

Versão SO: debian 6.0.7
Hardware: 
Proc: VIA C7-D Processor 1800MHz
Mem: 2GB    / HD:  320GB
Acesso WEB: https://nh.no-ip.info:8181/
Acesso SSH: ssh -l lupa nh.no-ip.info -p 6622
IP's
LAN   192.168.0.1/24
WAN1  192.168.7.2/24


Servidores

Arquivos+Banco de Dados

Patrimônio:
Atendimento:
Versão SO: Linux SUSE 2.6.22
Nome na Rede: servdb
Hardware: Intel(R) Pentium(R) Dual  CPU  E2180  @ 2.00GHz
Proc: 
Mem: 2GB    / HD: 2 x 160GB
Acesso Externo: ssh -l lupa nh.no-ip.info -p 2222
Acesso Interno: ssh -l lupa 192.168.0.5
IP LAN   192.168.0.5/24

Logins

anne, an2013!

danilo, da2013!

gislaine, gi2013!

hiugui, hi2013!

icaro, ic2013!

juliana, ju2013!

karla, ka2013!

luciano, lu2013!

marcelo, ma2013!
marcelo.hausmann, ma2013!

nei, ne2013!

robson, ro2013!

vania, va2013!

Grupos

[administrativo]
anne, danilo, icaro, nei, luciano, marcelo, marcelo.hausmann, vania

[contabil]
danilo, gislaine, juliana, karla, luciano, marcelo, marcelo.hausmann, vania

[fiscal]
danilo, gislaine, luciano, marcelo, marcelo.hausmann, robson, vania

[pessoal]
danilo, icaro, nei, luciano, marcelo, marcelo.hausmann, vania

[sistema]
danilo, luciano, marcelo, marcelo.hausmann, vania

[societario]
danilo, hiugui, luciano, marcelo, marcelo.hausmann, vania

Compartilhamentos

[netlogon]
   comment = Network Logon Service
   path = /media/disk-2/rede/samba

[todos]
	comment = Pasta Compartilhada da REDE NH
	path = /media/disk-2/rede/todos
	#valid users = @nhcontabil root
	read only = No
	public = yes

[sw_livres]
	comment = Pasta Compartilhada Softwares
	path = /media/disk-2/sw_livres
	valid users = root

[contabil]
	comment = Pasta Compartilhada Contabilidade
	path = /media/disk-2/rede/contabil/sc/contabil
	valid users = @nhcontabil root

[pessoal]
        comment = Pasta Compartilhada Pessoal
        path = /media/disk-2/rede/pessoal
        valid users = @nhcontabil root

[sc_info]
	comment = Pasta Compartilhada Contabilidade
	path = /media/disk-2/rede/contabil/sc
	valid users = @nhcontabil root

[sc_2005]
	comment = Pasta Compartilhada Contabilidade
	path = /media/disk-2/rede/contabil/sc2005
	valid users = @nhcontabil root

[dbsybase]
        comment = Pasta Publica do Banco
        path = /home/sybase/dados
        public = yes

[Rede NH]
	comment = Rede NH-Consultoria Arquivod
        path = /home/rede-nh
        valid users = @ti root


Sistemas

Backup

FIREWALL--CONFIG

rc.local

### LIBERA MSN PARA OS IPs ABAIXO                                                                                                                              
#iptables -t mangle -A POSTROUTING -s 192.168.0.21 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.21 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.68 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.68 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.89 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                         
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.89 -m layer7 --l7proto msnmessenger -j ACCEPT                                                           
#iptables -t mangle -A POSTROUTING -s 192.168.0.154 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                        
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.154 -m layer7 --l7proto msnmessenger -j ACCEPT                                                          
#iptables -t mangle -A POSTROUTING -s 192.168.0.243 -d 0/0 -m layer7 --l7proto msnmessenger -j ACCEPT #                                                        
#iptables -t mangle -A POSTROUTING -s 0/0 -d 192.168.0.243 -m layer7 --l7proto msnmessenger -j ACCEPT                                                          
                                                                                                                                                               
### BLOQUEIO MSN RESTANTE DA REDE                                                                                                                              
#iptables -t mangle -A POSTROUTING -m layer7 --l7proto msnmessenger -j DROP                                                                                    
                                                                                                                                                               
# Speed UP DNS                                                                                                                                                 
iptables -t mangle -A OUTPUT -p udp --dport 53 -j TOS --set-tos 0x08                                                                                           
iptables -t mangle -A PREROUTING -p udp --dport 53 -j TOS --set-tos 0x10                                                                                       
                                                                                                                                                               
# Speed UP HTTP                                                                                                                                                
iptables -t mangle -A OUTPUT -p tcp -j TOS --sport 80 --set-tos 0x08                                                                                           
iptables -t mangle -A PREROUTING -p tcp --dport 80 -j TOS --set-tos 0x08                                                                                       
                                                                         
### Bloqueio por usuario Leandro                                                                                                                               
                                                                                                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                  
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                        
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                           
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                             
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                             
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                           
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                          
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                              
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                          
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                            
                                                                                                                                                               
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                            
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                                  
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                                     
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                       
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                       
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                                     
iptables -I FORWARD -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                                         
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                                    
iptables -I FORWARD -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                                        
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                                    
iptables -I FORWARD -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                                      
                                                                                                                                                               
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.receita.fazenda.gov.br -j ACCEPT                                                                              
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.jucesc.sc.gov.br -j ACCEPT                                                                                    
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.sef.sc.gov.br -j ACCEPT                                                                                       
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.mpas.gov.br -j ACCEPT                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.pmf.sc.gov.br -j ACCEPT                                                                                       
iptables -I INPUT -p tcp -s 192.168.0.125 -d pmf.sc.gov.br -j ACCEPT                                                                                           
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.pmsj.sc.gov.br -j ACCEPT                                                                                      
iptables -I INPUT -p tcp -s 192.168.0.125 -d pmsj.sc.gov.br -j ACCEPT                                                                                          
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.cremesc.org.br -j ACCEPT                                                                                      
iptables -I INPUT -p tcp -s 192.168.0.125 -d www.crcsc.org.br -j ACCEPT                                                                                        
                                                                                                                                                               
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d webmail.nhconsultoria.com.br -j ACCEPT                                                                
iptables -I FORWARD -p tcp -s 192.168.0.125 -d webmail.ita.locaweb.com.br -j ACCEPT                                                                            
iptables -I OUTPUT -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                               
iptables -I OUTPUT -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                               
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 --dport 110 -j ACCEPT                                                                                       
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 --dport 587 -j ACCEPT                                                                                       
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d pop.nhconsultoria.com.br -j ACCEPT                                                                    
iptables -t nat -I PREROUTING -p tcp -s 192.168.0.125 -d smtp.nhconsultoria.com.br -j ACCEPT                                                                   
                                                                                                                                                               
iptables -I PREROUTING -p tcp -s 192.168.0.125 -j DROP                                                                                                         
iptables -I INPUT -p tcp -s 192.168.0.125 -j DROP                                                                                                              
iptables -I OUTPUT -p tcp -s 192.168.0.125 -j DROP                                                                                                             
iptables -I FORWARD -m tcp -p tcp -s 192.168.0.125 -j DROP

### AMD                                                                                                                                                        
cp /partition/meu_profile/profile /root/.profile                                                                                                               
cp /partition/lupa.png /var/htdocs/webadmin/images/logo.png                                                                                                    
                                                                                                                                                               
/partition/lupa/scripts/snmpd.sh                                                                                                                               
Ferramentas pessoais