Alan McKay wrote:
>
> nrpe server without ssl can be achieved by telling the daemon not
> to use it.
>
>
> Ohhhhhh, I'm an idiot! Of course!
>
> It is now working as expected - thanks so much for your patience!
np - been there myself, resolved funny nrpe issues too.
>
> Well, it is working when I use the command line on the server and
> supply the -n argument manually. I'm sure I'll figure out how to get
> that into the config files for monitoring remote hosts. I used to
> know Nagios fairly well about 3 or 4 years ago but have not used it in
> that time - I'm sure it will come back once I start digging into those
> files.
the actual problem is to tell the daemon not to start with ssl support.
this is _only_ possible with the -n flag currently. but instead of
hacking around the initscripts, you might wanna install nrpe with
xinetd, where you just define the startup daemon flags within the xinetd
config then - much easier to maintain and initscript won't be
overwritten when there's a new package.
something like this then ...
cat /etc/xinet.d/nrpe.cfg
# default: on
# description: NRPE primary
service nrpe
{
flags = REUSE
type = UNLISTED
port = 5666
socket_type = stream
wait = no
user = nagios
group = nagios
server = /usr/sbin/nrpe
server_args = -n -c /etc/nagios/nrpe.cfg --inetd
log_on_failure += USERID
disable = no
only_from = 127.0.0.1 <yourremotehost>
}
and of course the other parts like installing xinetd and starting that
daemon ... but that can be found in the docs as well. only paths are
different due to packages.
http://docs.icinga.org/latest/en/nrpe.html
using the xinetd method, you can easily run different nrpe instances on
different ports, i.e. one with ssl, one without, one for a different
subnet, etc.
i'm still lacking of the time to add the xinetd information to the wiki
guides, but feel free to help out and add that yourself. a wiki account
is the same as a dev tracker account and can be registered here -
https://www.icinga.org/register/index.php?view=index
kind regards,
michael
--
DI (FH) Michael Friedrich
Vienna University Computer Center
Universitaetsstrasse 7 A-1010 Vienna, Austria
email: michael.friedr...@univie.ac.at
phone: +43 1 4277 14359
mobile: +43 664 60277 14359
fax: +43 1 4277 14338
web: http://www.univie.ac.at/zid
http://www.aco.net
Lead Icinga Core Developer
http://www.icinga.org
------------------------------------------------------------------------------
Ridiculously easy VDI. With Citrix VDI-in-a-Box, you don't need a complex
infrastructure or vast IT resources to deliver seamless, secure access to
virtual desktops. With this all-in-one solution, easily deploy virtual
desktops for less than the cost of PCs and save 60% on VDI infrastructure
costs. Try it free! http://p.sf.net/sfu/Citrix-VDIinabox
_______________________________________________
icinga-users mailing list
icinga-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/icinga-users
