Hi Guys,
my name is Simone (alias SierraBravo), new entry in the nagios-world
I worked with nagios since 1.3 version, but never with solaris servers.
Now, itâs time to starting up with Sun
Can anyone help me,pls?
Scenario
Nagios Server (core) 3.0.3 under Linux (Ubuntu 8.04) - NRPE 2.12 (latest)
Monitored Host: Solaris 10 (SunOS S10DBSERVER 5.10 Generic sun4u sparc SUNW,Sun-Blade-2500)
I tried to install NRPE 2.12 on S10:
Download package, extract in folder.
I HAVE NOT SUNWcry installed. I canât find where download package for my S10 Sparc. Free download only for Solaris 8
- Apply the patch:
As mentioned here (The second solution is to change line 222 of src/nrpe.c like this: - SSL_CTX_set_cipher_list(ctx,âADHâ); + SSL_CTX_set_cipher_list(ctx,âADH:-ADH-AES256-SHAâ); and recompile. )
DONE.
Comment these line in nrpe.c
/* else if(!strcmp(varvalue,âauthprivâ))
log_facility=LOG_AUTHPRIV;
else if(!strcmp(varvalue,âftpâ))
log_facility=LOG_FTP; */
DONE.
- Compile with:
./configure --with-ssl-lib=/usr/sfw/lib
âwith-ssl-inc=/usr/sfw/include --with-ssl=/usr/sfw
âprefix=/opt/nagios
OK, done.
-
Edit the /opt/nagios/etc/nrpe.cfg file.
Only 1 change to do: change paths to nagios plugins -
Edit the /etc/inetd.conf file, setting up like this:
nrpe stream tcp nowait nagios /usr/sfw/sbin/tcpd /opt/nagios/bin/nrpe -c /opt/nagios/etc/nrpe.cfg --inetd -
Edit /etc/services adding
nrpe 5666/tcp # NRPE -
Converting inetd to SMF
inetconv
inetconv -e
svcs svc:/network/nrpe/tcp:default
netstat -a | grep nrpe
inetadm -l svc:/network/nrpe/tcp:default
inetadm -m svc:/network/nrpe/tcp:default tcp_wrappers=TRUE
inetadm -l svc:/network/nrpe/tcp:default
vi /etc/hosts.allow (nrpe: LOCAL, NagiosServerIPaddress)
vi /etc/hosts.deny (nrpe: ALL)
Testing:
On S10:
bash-3.00# /opt/nagios/libexec/check_nrpe -H localhost
NRPE v2.12
bash-3.00# /opt/nagios/libexec/check_nrpe -H localhost -c check_load
OK - load average: 0.21, 0.27, 0.27|load1=0.211;15.000;30.000;0; load5=0.270;10.000;25.000;0; load15=0.270;5.000;20.000;0;
WOWâŚit seems workingâŚ
Now, testing on Nagios Core server:
root@nagios-srv:~# /usr/local/nagios/libexec/check_nrpe -H 192.168.10.241
CHECK_NRPE: Error - Could not complete SSL handshake.
LOG on S10 tell: Aug 26 10:29:28 S10DBSERVER nrpe[32]: [ID 813741 daemon.error] Error: Could not complete SSL handshake. 1
Without SSL
root@nagios-srv:~# /usr/local/nagios/libexec/check_nrpe -H 192.168.10.241 -n
CHECK_NRPE: Received 0 bytes from daemon. Check the remote server logs for error messages.
LOG on S10 tell: Aug 26 10:29:58 S10DBSERVER nrpe[33]: [ID 813741 daemon.error] Error: Could not complete SSL handshake. 1
Same error -.-
I installed also openssl0.9.8h:
./config --prefix=/opt/openssl
make
make test
make install
No errors
Recompile NRPE with:
./configure --with-ssl-lib=/opt/openssl/lib
âwith-ssl-inc=/opt/openssl/include --with-ssl=/opt/openssl
âprefix=/opt/nagios
Error:
checking for SSL headers⌠SSL headers found in /opt/openssl/include/âŚ
checking for SSL libraries⌠configure: error: Cannot find ssl libraries
bash-3.00# find . / -name âlibssl.so.0.9.7â
/usr/sfw/lib/sparcv9/libssl.so.0.9.7
/usr/sfw/lib/libssl.so.0.9.7
So, no libssl.so.0.9.7 present in /opt/openssl/lib
PLEASE help
THANKS