Hi Tomas,
Your host is down since 13-09-2012 08:54:22, (Last state change and last
notification. That should be the time, your host has been checked for
the third time with CRITICAL state. In the History (icinga.log) for this
host you should find something like (times depends on your configuration):
13-09-2012 08:52:22 Host xxx CRITICAL (1/3) SOFT
13-09-2012 08:53:22 Host xxx CRITICAL (2/3) SOFT
13-09-2012 08:54:22 Host xxx CRITICAL (3/3) HARD
after that each host check should be
13-09-2012 xx:xx:xx Host xxx CRITICAL (1/3) HARD
as long as your host is down
regards,
Peter
Am 13.09.2012 12:47, schrieb Tomas Macek:
> Hello Philipp,
> just one question: where is written, that 3 checks failed? I hoped it's
> the "1/3 (HARD state)", but I thought, that this means the host is in
> hard state, but 3 checks were not still done - only one check was
> done and that's wrong.
>
> I understand the things this way:
> When host gets to critical state, it should be checked 3 times before
> being switched to HARD state and only after HARD state the notification
> should be sent. But you are saying I'm wrong... :-)
>
> Tomas
>
>
> On Thu, 13 Sep 2012, Phil Bieber wrote:
>
>> Hi Tomas,
>> this is the normal behaviour.
>> What this means is:
>> - The host is down
>> - 3 checks failed and so the status is 'hard'
>> - Every next check attempt is the 1st again.
>>
>> So, this is a host that hs been down for 4 checks or more.
>>
>> Cheers
>> Philipp Bieber
>> --
>> *It might be just possible, by lying very still in a cellar somewhere, to
>> get through a day without committing a crime. But only just. And, even
>> then, you were probably guilty of loitering. *- Terry Pratchett: Feet of
>> clay.
>>
>> And all those exclamation marks, you notice? Five? A sure sign of someone
>> who wears his underpants on his head. - Terry Pratchett: Mascerade
>>
>>
>>
>> 2012/9/13 Tomas Macek<ma...@fortech.cz>
>>
>>> Hi,
>>> maybe I'm missing something, but it's not clear to me, why is this host in
>>> hard state and current attempt is 1/3? Using Icinga 1.7.2.
>>>
>>> Regards, Tomas
>>>
>>> This is copied from gui and slightly modified:
>>> -------------
>>> Host Status: DOWN (for 0d 0h 31m 36s)
>>> Status Information: CRITICAL - 10.1.5.3: Host unreachable @
>>> x.x.x.x. rta nan, lost 100%
>>> Performance Data: rta=0.000ms;5000.000;5000.000;0; pl=100%;100;100;;
>>> rtmax=0.000ms;;;; rtmin=0.000ms;;;;
>>> Current Attempt: 1/3 (HARD state)
>>> Last Check Time: 13-09-2012 09:24:41
>>> Check Type: ACTIVE
>>> Check Latency / Duration: 0.257 / 3.008 seconds
>>> Next Scheduled Active Check: 13-09-2012 09:29:45
>>> Last State Change: 13-09-2012 08:54:22
>>> Last Notification: 13-09-2012 08:54:22 (notification 1)
>>> Is This Host Flapping? N/A
>>> In Scheduled Downtime? NO
>>> Last Update: 13-09-2012 09:25:54 ( 0d 0h 0m 4s ago)
>>> Modified Attributes: None
>>>
>>>
>>> Host definition is here:
>>> --------------------------
>>> define host{
>>> use generic-host ; Name of host
>>> template to use
>>>
>>> host_name radio.host
>>> alias Radio host
>>> address 10.1.5.3
>>> parents rt.8p
>>> check_command check-host-alive
>>> contact_groups g.mailALL,g.smsALL
>>> max_check_attempts 3
>>> notification_interval 60
>>> notification_period 24x7
>>> notification_options d,r
>>> }
>>>
>>>
>>>
>>> ------------------------------------------------------------------------------
>>> Live Security Virtual Conference
>>> Exclusive live event will cover all the ways today's security and
>>> threat landscape has changed and how IT managers can respond. Discussions
>>> will include endpoint security, mobile security and the latest in malware
>>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
>>> _______________________________________________
>>> icinga-users mailing list
>>> icinga-users@lists.sourceforge.net
>>> https://lists.sourceforge.net/lists/listinfo/icinga-users
>>>
>>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> icinga-users mailing list
> icinga-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/icinga-users
>
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
icinga-users mailing list
icinga-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/icinga-users
