周五拒绝摸鱼，请收下这些经典的shell脚本！

2024-04-19码农

关注上方 浩道Linux ，回复资料，即可获取海量 L inux 、 Python 、 网络通信、网络安全 等学习资料！

前言

大家好，这里是 浩道Linux ，主要给大家分享 L inux 、 P ython 、 网络通信、网络安全等 相关的IT知识平台。

周五如约而至，今天浩道跟大家分享几个经典shell脚本给大家在办公电脑上练习，又是拒绝摸鱼的一天！

一、实现磁盘分区的

只支持分配主分区和标准的linux文件系统(ext4/xfs)的分区

#! /bin/bash# Function:对硬盘进行分区,得到一个标准的linux文件系统(ext4/xfs)的主分区cat /proc/partitions > oldread -p "请输入你要分区的硬盘(写绝对路径，如：/dev/sda)：" Aif [ -e $A ];thenecho"true"elseecho"该设备不存在！！"exitfiread -p "请输入你要创建的磁盘分区类型(这里只能是主分区，默认按回车即可):" Bread -p "请输入分区数字，范围1-4，默认从1开始，默认按回车即可：" Cread -p "请输入扇区起始表号，默认按回车即可：" Dread -p "请输入你要分区的分区大小(格式：如 +5G )：" Efdisk $A << EOFnp$C$D$EwEOFecho"一个标准的linux文件系统的分区已经建立好！！"partprobe $Aecho"-------------------------------"cat /proc/partitionscat /proc/partitions > newF=`diff new old | grep "<" | awk '{print $5}'`echo"-------------------------------"echo$Fecho"你想对新分区设定什么类型的文件系统？有以下选项："echo"A：ext4文件系统"echo"B：xfs文件系统"read -p "请输入你的选择：" Gcase$Gin a|A) mkfs.ext4 /dev/$Fecho"该分区将被挂载在 "/mnt/$F" 下" m=`ls /mnt/|grep $F | wc -l`if [ $m -eq 0 ];then mkdir /mnt/$Ffi n=`cat /etc/fstab | grep /dev/$F| wc -l`if [ $n -eq 0 ];thenecho"/dev/$F /mnt/$F ext4 defaults 0 0" >> /etc/fstabelse sed -i '/^\/dev\/$F/c\/dev/$F /mnt/$F ext4 defaults 0 0' /etc/fstabfi mount -a df -Th;; b|B) mkfs.xfs -f /dev/$Fecho"该分区将被挂载在 "/mnt/$F" 下" m=`ls /mnt/|grep $F | wc -l`if [ $m -eq 0 ];then mkdir /mnt/$Ffi n=`cat /etc/fstab | grep /dev/$F | wc -l`if [ $n -eq 0 ];thenecho"/dev/$F /mnt/$F xfs defaults 0 0" >> /etc/fstabelse sed -i '/^\/dev\/$F/c\/dev/$F /mnt/$F xfs defaults 0 0' /etc/fstabfi mount -a df -Th;; *)echo"你的输入有误！！"esac

二、服务器初始化

#/bin/bash # 设置时区并同步时间 ln -s /usr/share/zoneinfo/Asia/Shanghai /etc/localtime if ! crontab -l |grep ntpdate &>/dev/null ; then (echo"* 1 * * * ntpdate time.windows.com >/dev/null 2>&1";crontab -l) |crontab fi # 禁用selinux sed -i '/SELINUX/{s/permissive/disabled/}' /etc/selinux/config # 关闭防火墙 if egrep "7.[0-9]" /etc/redhat-release &>/dev/null; then systemctl stop firewalld systemctl disable firewalld elif egrep "6.[0-9]" /etc/redhat-release &>/dev/null; then service iptables stop chkconfig iptables off fi # 历史命令显示操作时间 if ! grep HISTTIMEFORMAT /etc/bashrc; then echo'export HISTTIMEFORMAT="%F %T `whoami` "' >> /etc/bashrc fi # SSH超时时间 if ! grep "TMOUT=600" /etc/profile &>/dev/null; then echo"export TMOUT=600" >> /etc/profile fi # 禁止root远程登录 sed -i 's/#PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config # 禁止定时任务向发送邮件 sed -i 's/^MAILTO=root/MAILTO=""/' /etc/crontab # 设置最大打开文件数 if ! grep "* soft nofile 65535" /etc/security/limits.conf &>/dev/null; then cat >> /etc/security/limits.conf << EOF * soft nofile 65535 * hard nofile 65535 EOF fi # 系统内核优化 cat >> /etc/sysctl.conf << EOF net.ipv4.tcp_syncookies = 1 net.ipv4.tcp_max_tw_buckets = 20480 net.ipv4.tcp_max_syn_backlog = 20480 net.core.netdev_max_backlog = 262144 net.ipv4.tcp_fin_timeout = 20 EOF # 减少SWAP使用 echo"0" > /proc/sys/vm/swappiness # 安装系统性能分析工具及其他 yum install gcc make autoconf vim sysstat net-tools iostat if

三、查看网卡实时流量

#!/bin/bash NIC=$1 echo -e " In ------ Out" whiletrue; do OLD_IN=$(awk '$0~"'$NIC'"{print $2}' /proc/net/dev) OLD_OUT=$(awk '$0~"'$NIC'"{print $10}' /proc/net/dev) sleep 1 NEW_IN=$(awk '$0~"'$NIC'"{print $2}' /proc/net/dev) NEW_OUT=$(awk '$0~"'$NIC'"{print $10}' /proc/net/dev) IN=$(printf"%.1f%s""$((($NEW_IN-$OLD_IN)/1024))""KB/s") OUT=$(printf"%.1f%s""$((($NEW_OUT-$OLD_OUT)/1024))""KB/s") echo"$IN$OUT" sleep 1 done

四、nginx日志按天切割

#!/bin/bash LOG_DIR=/usr/local/nginx/logs YESTERDAY_TIME=$(date -d "yesterday" +%F) LOG_MONTH_DIR=$LOG_DIR/$(date +"%Y-%m") LOG_FILE_LIST="default.access.log" for LOG_FILE in$LOG_FILE_LIST; do [ ! -d $LOG_MONTH_DIR ] && mkdir -p $LOG_MONTH_DIR mv $LOG_DIR/$LOG_FILE$LOG_MONTH_DIR/${LOG_FILE}_${YESTERDAY_TIME} done kill -USR1 $(cat /usr/local/nginx/nginx.pid)

五、nginx acc日志分析

#!/bin/bash # 日志格式: $remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" "$http_x_forwarded_for" LOG_FILE=$1 echo"统计访问最多的10个IP" awk '{a[$1]++}END{print "UV:",length(a);for(v in a)print v,a[v]}'$LOG_FILE |sort -k2 -nr |head -10 echo"----------------------" echo"统计时间段访问最多的IP" awk '$4>="[01/Dec/2018:13:20:25" && $4<="[27/Nov/2018:16:20:49"{a[$1]++}END{for(v in a)print v,a[v]}'$LOG_FILE |sort -k2 -nr|head -10 echo"----------------------" echo"统计访问最多的10个页面" awk '{a[$7]++}END{print "PV:",length(a);for(v in a){if(a[v]>10)print v,a[v]}}'$LOG_FILE |sort -k2 -nr echo"----------------------" echo"统计访问页面状态码数量" awk '{a[$7" "$9]++}END{for(v in a){if(a[v]>5) print v,a[v]}}'

六、监控服务器磁盘利用率

#!/bin/bash HOST_INFO=host.info # 主机列表，实现采集多台主机信息，需要能够ssh到目标主机 for IP in $(awk '/^[^#]/{print $1}'$HOST_INFO); do USER=$(awk -v ip=$IP'ip==$1{print $2}'$HOST_INFO) PORT=$(awk -v ip=$IP'ip==$1{print $3}'$HOST_INFO) TMP_FILE=/tmp/disk.tmp ssh -p $PORT$USER@$IP'df -h' > $TMP_FILE USE_RATE_LIST=$(awk 'BEGIN{OFS="="}/^\/dev/{print $NF,int($5)}'$TMP_FILE) for USE_RATE in$USE_RATE_LIST; do PART_NAME=${USE_RATE%=*} USE_RATE=${USE_RATE#*=} if [ $USE_RATE -ge 80 ]; then echo"Warning: $PART_NAME Partition usage $USE_RATE%!" fi done done

七、mysql备份

#!/bin/bash DATE=$(date +%F_%H-%M-%S) HOST=localhost USER=backup PASS=passwd BACKUP_DIR=/data/db_backup DB_LIST=$(mysql -h$HOST -u$USER -p$PASS -s -e "show databases;" 2>/dev/null |egrep -v "Database|information_schema|mysql|performance_schema|sys") for DB in$DB_LIST; do BACKUP_DB_DIR=$BACKUP_DIR/${DB}_${DATE} [ ! -d $BACKUP_DB_DIR ] && mkdir -p $BACKUP_DB_DIR &>/dev/null TABLE_LIST=$(mysql -h$HOST -u$USER -p$PASS -s -e "use $DB;show tables;" 2>/dev/null) for TABLE in$TABLE_LIST; do BACKUP_NAME=$BACKUP_DB_DIR/${TABLE}.sql if ! mysqldump -h$HOST -u$USER -p$PASS$DB$TABLE > $BACKUP_NAME 2>/dev/null; then echo"$BACKUP_NAME 备份失败!" fi done done

八、统计进程数，找出并kill掉僵尸进程

#!/bin/ bash ALL_PROCESS=$(1s /proc/ l egrep "[0-9]+") running_count=0 stoped_count=0s1eeping_count=0zombie_count=O for pid in${ALL_PROCESS[*]}do test -f /proc/$pid/status && state=$(egrep "state"/proc/$pid/status / awk'{print $2}') case""$state" in R) running_count=$ ((running_count+1)) ; T) stoped_count=$((stoped_count+1)) ;; s) sleeping_count=$((sleeping_count+1)); z) zombie_count=$( (zombie_count+1)) echo "$pid" >>zombie.txt kill -9 "$pid" ;; esacdone echo -e "total: $((running_count+stoped_count+sleeping_count+zombie_count))\nrunning:$running_count\nstoped: $stoped_count\nsleeping: $sleeping_count\nzombie:$zombie_count"

九、封禁大量恶意访问的IP

#!/bin/bash DATE=$(date +%d/%b/%Y:%H:%M) LOG_FILE=/usr/local/nginx/logs/access.log ABNORMAL_IP=$(tail -n10000 $LOG_FILE |grep $DATE |awk '{a[$1]++}END{for(i in a)if(a[i]>10)print i}') for IP in$ABNORMAL_IP; do if [ $(iptables -vnL |grep -c "$IP") -eq 0 ]; then iptables -I INPUT -s $IP -j DROP echo"$(date +'%F_%T')$IP" >> /tmp/drop_ip.log fi done