Browse Source

init

tags/pkg/dev/eole-2.7.0/0.0.1-0
Emmanuel Garette 4 months ago
commit
9382ca614e
5 changed files with 718 additions and 0 deletions
  1. 27
    0
      Makefile
  2. 64
    0
      apps.mk
  3. 22
    0
      dicos/20_nrpe.xml
  4. 231
    0
      eole.mk
  5. 374
    0
      tmpl/nagios.cfg

+ 27
- 0
Makefile View File

@@ -0,0 +1,27 @@
1
+################################
2
+# Makefile pour eole-keepalived
3
+################################
4
+
5
+SOURCE=eole-nrpe
6
+VERSION=0.0.1
7
+EOLE_VERSION=2.7
8
+EOLE_RELEASE=2.7.0
9
+PKGAPPS=non
10
+#FLASK_MODULE=<APPLICATION>
11
+
12
+################################
13
+# Début de zone à ne pas éditer
14
+################################
15
+
16
+include eole.mk
17
+include apps.mk
18
+
19
+################################
20
+# Fin de zone à ne pas éditer
21
+################################
22
+
23
+# Makefile rules dedicated to application
24
+# if exists
25
+ifneq (, $(strip $(wildcard $(SOURCE).mk)))
26
+include $(SOURCE).mk
27
+endif

+ 64
- 0
apps.mk View File

@@ -0,0 +1,64 @@
1
+# 
2
+# NE PAS EDITER CE FICHIER
3
+#
4
+# Voir Makefile
5
+
6
+
7
+##########################
8
+# Application web envole #
9
+##########################
10
+ifneq (, $(filter oui web, $(PKGAPPS)))
11
+#
12
+# Sanity check
13
+#
14
+ifeq (, $(filter-out X.X, $(strip $(VERSION))))
15
+$(error $$(VERSION) variable has incorrect value '$(VERSION)')
16
+endif
17
+
18
+# Where to store web application files
19
+WEB_PATH				:= $(DESTDIR)/var/www/html
20
+
21
+# Envole
22
+sharenvole_PROG_DIR			:= $(DESTDIR)/usr/share/envole/$(SOURCE)
23
+
24
+src_$(SOURCE)-$(VERSION)_REC_DIR	:= $(WEB_PATH)/$(SOURCE)
25
+src_plugins-$(VERSION)_REC_DIR		:= $(WEB_PATH)/$(SOURCE)/plugin
26
+src_lang-$(VERSION)_REC_DIR		:= $(WEB_PATH)/$(SOURCE)/lang
27
+
28
+endif
29
+
30
+##########################
31
+# Application EOLE flask #
32
+##########################
33
+ifneq (, $(filter flask, $(PKGAPPS)))
34
+#
35
+# Sanity check
36
+#
37
+ifeq (, $(filter-out XXX, $(strip $(FLASK_MODULE))))
38
+$(error $$(FLASK_MODULE) variable has incorrect value '$(FLASK_MODULE)')
39
+endif
40
+
41
+ifeq (, $(strip $(wildcard src/$(FLASK_MODULE).conf)))
42
+$(error missing eoleflask configuration file 'src/$(FLASK_MODULE).conf')
43
+endif
44
+
45
+# Everything is related to mount point
46
+APPS_MOUNT_POINT	:= $(shell sed -ne 's|^"MOUNT_POINT"[[:space:]]*:[[:space:]]*"/\([^"]*\)",|\1|p' \
47
+	src/$(FLASK_MODULE).conf)
48
+
49
+ifeq (, $(strip $(APPS_MOUNT_POINT)))
50
+$(error no "MOUNT_POINT" in eoleflask configuration file 'src/$(FLASK_MODULE).conf')
51
+endif
52
+
53
+# eole-flask configuration
54
+src_DATA_DIR		:= $(DESTDIR)/etc/eole/flask/available
55
+
56
+# Where to store flask application files
57
+FLASK_PATH		:= $(eole_DIR)/flask/$(APPS_MOUNT_POINT)
58
+
59
+# static files
60
+src_$(FLASK_MODULE)_static_REC_DIR	:= $(FLASK_PATH)/static
61
+src_$(FLASK_MODULE)_templates_REC_DIR	:= $(FLASK_PATH)/templates
62
+src_$(FLASK_MODULE)_instance_REC_DIR	:= $(FLASK_PATH)/resources
63
+
64
+endif

+ 22
- 0
dicos/20_nrpe.xml View File

@@ -0,0 +1,22 @@
1
+<?xml version="1.0" encoding="utf-8"?>
2
+
3
+<creole>
4
+    <files>
5
+        <service>nagios-nrpe-server</service>
6
+        <service_access service='nagios-nrpe-server'>
7
+            <port>5666</port>
8
+        </service_access>
9
+        <service_restriction service='nagios-nrpe-server'>
10
+            <ip interface='auto' netmask='255.255.255.255' ip_type='SymLinkOption'>nrpe_allowed_hosts</ip>
11
+        </service_restriction>
12
+    </files>
13
+
14
+    <variables>
15
+        <family name="nrpe">
16
+            <variable name="nrpe_allowed_hosts" type="ip" description="Adresse IP autorisée à se connecter au serveur NRPE"/>
17
+        </family>
18
+    </variables>
19
+</creole>
20
+<!-- vim: ts=4 sw=4 expandtab
21
+-->
22
+

+ 231
- 0
eole.mk View File

@@ -0,0 +1,231 @@
1
+#
2
+# NE PAS EDITER CE FICHIER
3
+#
4
+# Utiliser <appli>.mk à inclure à la fin de Makefile
5
+
6
+#################
7
+# Sanity checks #
8
+#################
9
+
10
+ifeq (, $(DESTDIR))
11
+$(warning $$(DESTDIR) is empty, installation will be done in /)
12
+endif
13
+
14
+ifeq (, $(filter-out XXX-XXX, $(strip $(SOURCE))))
15
+$(error $$(SOURCE) variable has incorrect value '$(SOURCE)')
16
+endif
17
+
18
+ifeq (, $(filter-out 2.X, $(strip $(EOLE_VERSION))))
19
+$(error $$(EOLE_VERSION) variable has incorrect value '$(EOLE_VERSION)')
20
+endif
21
+
22
+ifeq (, $(filter-out 2.X.Y, $(strip $(EOLE_RELEASE))))
23
+$(error $$(EOLE_RELEASE) variable has incorrect value '$(EOLE_RELEASE)')
24
+endif
25
+
26
+#########################
27
+# Variables definitions #
28
+#########################
29
+
30
+INSTALL                 := install
31
+INSTALL_DATA            := install -m 644
32
+INSTALL_PROGRAM         := install -m 755
33
+INSTALL_DIRECTORY       := install -m 755 -d
34
+INSTALL_RECURSIVE       := cp -dr --no-preserve=ownership
35
+
36
+# Standard path
37
+bin_PROG_DIR		:= $(DESTDIR)/usr/bin
38
+sbin_PROG_DIR		:= $(DESTDIR)/usr/sbin
39
+man8_DATA_DIR		:= $(DESTDIR)/usr/share/man/fr.UTF-8/man8
40
+
41
+# Base
42
+eole_DIR                := $(DESTDIR)/usr/share/eole
43
+
44
+ifeq ($(strip $(EOLE_VERSION)), 2.3)
45
+diagnose_PROG_DIR       := $(eole_DIR)/diagnose/module
46
+else
47
+diagnose_PROG_DIR       := $(eole_DIR)/diagnose/
48
+endif
49
+
50
+# Creole
51
+creole_DIR              := $(eole_DIR)/creole
52
+dicos_DATA_DIR          := $(creole_DIR)/dicos
53
+tmpl_DATA_DIR           := $(creole_DIR)/distrib
54
+preservice_PROG_DIR     := $(eole_DIR)/preservice
55
+pretemplate_PROG_DIR    := $(eole_DIR)/pretemplate
56
+posttemplate_PROG_DIR   := $(eole_DIR)/posttemplate
57
+postservice_PROG_DIR    := $(eole_DIR)/postservice
58
+ifeq ($(strip $(EOLE_VERSION)), 2.3)
59
+firewall_DATA_DIR       := $(eole_DIR)/firewall
60
+endif
61
+bacula_restore_DATA_DIR := $(eole_DIR)/bacula/restore
62
+bareos_restore_DATA_DIR := $(eole_DIR)/bareos/restore
63
+bacula_fichier_DATA_DIR := $(DESTDIR)/etc/bacula/baculafichiers.d
64
+bareos_fichier_DATA_DIR	:= $(DESTDIR)/etc/bareos/bareosfichiers.d
65
+ifeq ($(strip $(EOLE_VERSION)), 2.3)
66
+schedule_pre_PROG_DIR   := $(eole_DIR)/schedule/pre
67
+schedule_post_PROG_DIR  := $(eole_DIR)/schedule/post
68
+else
69
+schedule_scripts_PROG_DIR	:= $(eole_DIR)/schedule/scripts
70
+endif
71
+extra_REC_DIR		:= $(creole_DIR)/extra
72
+
73
+# Zéphir
74
+zephir_DATA_DIR         := $(DESTDIR)/usr/share/zephir
75
+zephir_configs_DATA_DIR := $(zephir_DATA_DIR)/monitor/configs
76
+zephir_srv_DATA_DIR     := $(zephir_configs_DATA_DIR)/services
77
+zephir_scripts_PROG_DIR := $(zephir_DATA_DIR)/scripts
78
+
79
+# SSO
80
+sso_DATA_DIR            := $(DESTDIR)/usr/share/sso
81
+sso_filtres_DATA_DIR    := $(sso_DATA_DIR)/app_filters
82
+sso_user-info_DATA_DIR  := $(sso_DATA_DIR)/user_infos
83
+
84
+# EAD
85
+ead_DATA_DIR            := $(DESTDIR)/usr/share/ead2/backend/config
86
+ead_actions_DATA_DIR    := $(ead_DATA_DIR)/actions
87
+ead_perms_DATA_DIR      := $(ead_DATA_DIR)/perms
88
+ead_roles_DATA_DIR      := $(ead_DATA_DIR)/roles
89
+
90
+# Program libraries goes under /usr/lib/<PROGRAM>/
91
+lib_$(SOURCE)_DATA_DIR	:= $(DESTDIR)/usr/lib/$(SOURCE)
92
+
93
+# Scripts Eole
94
+scripts_PROG_DIR        := $(eole_DIR)/sbin
95
+lib_eole_DATA_DIR	:= $(DESTDIR)/usr/lib/eole
96
+
97
+# LDAP
98
+ldap_passwords_DATA_DIR := $(eole_DIR)/annuaire/password_files
99
+
100
+# LXC
101
+lxc_DATA_DIR            := $(eole_DIR)/lxc
102
+lxc_fstab_DATA_DIR      := $(lxc_DATA_DIR)/fstab
103
+lxc_hosts_DATA_DIR	:= $(lxc_DATA_DIR)/hosts
104
+
105
+# SQL
106
+sql_DATA_DIR            := $(eole_DIR)/mysql/$(SOURCE)
107
+sql_gen_DATA_DIR        := $(sql_DATA_DIR)/gen
108
+sql_updates_DATA_DIR    := $(sql_DATA_DIR)/updates
109
+
110
+sql_conf_gen_DATA_DIR		:= $(eole_DIR)/applications/gen
111
+sql_conf_passwords_DATA_DIR	:= $(eole_DIR)/applications/passwords
112
+sql_conf_updates_DATA_DIR	:= $(eole_DIR)/applications/updates/$(SOURCE)
113
+
114
+# EoleDB sql directory
115
+db_DIR               := $(eole_DIR)/db
116
+db_gen_DATA_DIR      := $(eole_DIR)/db/$(SOURCE)/gen
117
+db_updates_DATA_DIR  := $(eole_DIR)/db/$(SOURCE)/updates
118
+
119
+# Certifs
120
+certs_DATA_DIR		:= $(eole_DIR)/certs
121
+
122
+# Logrotate
123
+logrotate_DATA_DIR      := $(DESTDIR)/etc/logrotate.d
124
+
125
+# Cron
126
+cron_PROG_DIR 		:= $(DESTDIR)/etc/cron.daily
127
+
128
+# Python modules
129
+ifneq ($(DESTDIR),)
130
+PYTHON_OPTS     := --root $(DESTDIR)
131
+endif
132
+
133
+# Translation
134
+TRANSLATION_SRC := translation
135
+TRANSLATION_DEST := $(DESTDIR)/usr/share/locale
136
+PO_FILES = $(wildcard $(TRANSLATION_SRC)/*/*.po)
137
+MO_FOLDERS = $(addprefix $(TRANSLATION_DEST), $(addsuffix LC_MESSAGES,$(subst $(TRANSLATION_SRC),,$(dir $(PO_FILES)))))
138
+
139
+#############################################
140
+# Common directories and files installation #
141
+#############################################
142
+
143
+all:
144
+
145
+$(MO_FOLDERS):
146
+	$(INSTALL_DIRECTORY) $@
147
+
148
+$(PO_FILES): $(MO_FOLDERS)
149
+	msgfmt -o $(TRANSLATION_DEST)$(subst $(TRANSLATION_SRC),,$(addsuffix LC_MESSAGES,$(dir $@)))/$(notdir $(@:.po=.mo)) $@
150
+
151
+install-lang: $(PO_FILES)
152
+
153
+install:: install-dirs install-files install-lang
154
+
155
+# $1 = command to run
156
+# $2 = source directory
157
+# $3 = destination directory
158
+define fc_install_file
159
+	if [ -d $2 ]; then					\
160
+		for file in `ls -1 $2/`; do			\
161
+		   $1 $2/$$file $3 || true;			\
162
+	    done;						\
163
+	fi
164
+endef
165
+
166
+##
167
+## Directory creation
168
+##
169
+
170
+# use % to catch local name in $*
171
+# data, program and recursive directory require a corresponding
172
+# directory in local sources
173
+%_DATA_DIR %_PROG_DIR %REC_DIR:
174
+	test ! -d $(subst _,/,$*) || $(INSTALL_DIRECTORY) $($@)
175
+
176
+# Create the directory referenced by the variable without a local one.
177
+%_DIR:
178
+	@: # do nothing
179
+
180
+##
181
+## Install files present directly under data, program and recursive directories
182
+##
183
+
184
+# $*   : name of variable
185
+# $($*): value of variable
186
+%-instdata:
187
+	$(call fc_install_file, $(INSTALL_DATA), $(subst _,/,$(subst _DATA_DIR,,$*)), $($*))
188
+
189
+%-instprog:
190
+	$(call fc_install_file, $(INSTALL_PROGRAM), $(subst _,/,$(subst _PROG_DIR,,$*)), $($*))
191
+
192
+%-instrec:
193
+	$(call fc_install_file, $(INSTALL_RECURSIVE), $(subst _,/,$(subst _REC_DIR,,$*)), $($*))
194
+
195
+
196
+# Use second expansion as variables may be created in included
197
+# Makefiles
198
+.SECONDEXPANSION:
199
+
200
+# List of all directories
201
+installdirs_LIST	= $(foreach V, $(filter %_DIR, $(.VARIABLES)),	\
202
+				$(if $(filter file, $(origin $(V))),	\
203
+					$(V)))
204
+# List of data directories
205
+installdata_LIST	= $(filter %_DATA_DIR, $(installdirs_LIST))
206
+# List of program directories
207
+installprog_LIST	= $(filter %_PROG_DIR, $(installdirs_LIST))
208
+# List of recursive directories
209
+installrec_LIST	 	= $(filter %_REC_DIR, $(installdirs_LIST))
210
+
211
+# Expand directories to create as dependency
212
+# Use double-colon to permit user to define additionnal install-dirs
213
+install-dirs:: $$(installdirs_LIST)
214
+
215
+# Expand files to install as dependency
216
+# Use double-colon to permit user to define additionnal install-files
217
+install-files:: install-data-files install-prog-files install-rec-dirs
218
+
219
+install-data-files: $$(patsubst %,%-instdata,$$(installdata_LIST))
220
+
221
+install-prog-files: $$(patsubst %,%-instprog,$$(installprog_LIST))
222
+
223
+install-rec-dirs:   $$(patsubst %,%-instrec,$$(installrec_LIST))
224
+
225
+# Installation of python modules
226
+ifeq ($(shell test -f setup.py && echo 0), 0)
227
+install-files::
228
+	python setup.py install --no-compile --install-layout=deb $(PYTHON_OPTS)
229
+endif
230
+
231
+.PHONY: install install-dirs install-files install-data-files install-prog-files install-rec-dirs

+ 374
- 0
tmpl/nagios.cfg View File

@@ -0,0 +1,374 @@
1
+#############################################################################
2
+#
3
+#  Sample NRPE Config File
4
+#
5
+#  Notes:
6
+#
7
+#  This is a sample configuration file for the NRPE daemon.  It needs to be
8
+#  located on the remote host that is running the NRPE daemon, not the host
9
+#  from which the check_nrpe client is being executed.
10
+#
11
+#############################################################################
12
+
13
+
14
+# LOG FACILITY
15
+# The syslog facility that should be used for logging purposes.
16
+
17
+log_facility=daemon
18
+
19
+
20
+
21
+# LOG FILE
22
+# If a log file is specified in this option, nrpe will write to
23
+# that file instead of using syslog.
24
+
25
+#log_file=/var/log/nrpe.log
26
+
27
+
28
+
29
+# DEBUGGING OPTION
30
+# This option determines whether or not debugging messages are logged to the
31
+# syslog facility.
32
+# Values: 0=debugging off, 1=debugging on
33
+
34
+debug=0
35
+
36
+
37
+
38
+# PID FILE
39
+# The name of the file in which the NRPE daemon should write it's process ID
40
+# number.  The file is only written if the NRPE daemon is started by the root
41
+# user and is running in standalone mode.
42
+
43
+pid_file=/var/run/nagios/nrpe.pid
44
+
45
+
46
+
47
+# PORT NUMBER
48
+# Port number we should wait for connections on.
49
+# NOTE: This must be a non-privileged port (i.e. > 1024).
50
+# NOTE: This option is ignored if NRPE is running under either inetd or xinetd
51
+
52
+server_port=5666
53
+
54
+
55
+
56
+# SERVER ADDRESS
57
+# Address that nrpe should bind to in case there are more than one interface
58
+# and you do not want nrpe to bind on all interfaces.
59
+# NOTE: This option is ignored if NRPE is running under either inetd or xinetd
60
+
61
+#server_address=127.0.0.1
62
+
63
+
64
+
65
+# LISTEN QUEUE SIZE
66
+# Listen queue size (backlog) for serving incoming connections.
67
+# You may want to increase this value under high load.
68
+
69
+#listen_queue_size=5
70
+
71
+
72
+
73
+# NRPE USER
74
+# This determines the effective user that the NRPE daemon should run as.
75
+# You can either supply a username or a UID.
76
+#
77
+# NOTE: This option is ignored if NRPE is running under either inetd or xinetd
78
+
79
+nrpe_user=nagios
80
+
81
+
82
+
83
+# NRPE GROUP
84
+# This determines the effective group that the NRPE daemon should run as.
85
+# You can either supply a group name or a GID.
86
+#
87
+# NOTE: This option is ignored if NRPE is running under either inetd or xinetd
88
+
89
+nrpe_group=nagios
90
+
91
+
92
+
93
+# ALLOWED HOST ADDRESSES
94
+# This is an optional comma-delimited list of IP address or hostnames
95
+# that are allowed to talk to the NRPE daemon. Network addresses with a bit mask
96
+# (i.e. 192.168.1.0/24) are also supported. Hostname wildcards are not currently
97
+# supported.
98
+#
99
+# Note: The daemon only does rudimentary checking of the client's IP
100
+# address.  I would highly recommend adding entries in your /etc/hosts.allow
101
+# file to allow only the specified host to connect to the port
102
+# you are running this daemon on.
103
+#
104
+# NOTE: This option is ignored if NRPE is running under either inetd or xinetd
105
+
106
+allowed_hosts=127.0.0.1,::1,%%nrpe_allowed_hosts
107
+
108
+
109
+
110
+# COMMAND ARGUMENT PROCESSING
111
+# This option determines whether or not the NRPE daemon will allow clients
112
+# to specify arguments to commands that are executed.  This option only works
113
+# if the daemon was configured with the --enable-command-args configure script
114
+# option.
115
+#
116
+# *** ENABLING THIS OPTION IS A SECURITY RISK! ***
117
+# Read the SECURITY file for information on some of the security implications
118
+# of enabling this variable.
119
+#
120
+# Values: 0=do not allow arguments, 1=allow command arguments
121
+
122
+dont_blame_nrpe=0
123
+
124
+
125
+
126
+# BASH COMMAND SUBSTITUTION
127
+# This option determines whether or not the NRPE daemon will allow clients
128
+# to specify arguments that contain bash command substitutions of the form
129
+# $(...).  This option only works if the daemon was configured with both
130
+# the --enable-command-args and --enable-bash-command-substitution configure
131
+# script options.
132
+#
133
+# *** ENABLING THIS OPTION IS A HIGH SECURITY RISK! ***
134
+# Read the SECURITY file for information on some of the security implications
135
+# of enabling this variable.
136
+#
137
+# Values: 0=do not allow bash command substitutions,
138
+#         1=allow bash command substitutions
139
+
140
+allow_bash_command_substitution=0
141
+
142
+
143
+
144
+# COMMAND PREFIX
145
+# This option allows you to prefix all commands with a user-defined string.
146
+# A space is automatically added between the specified prefix string and the
147
+# command line from the command definition.
148
+#
149
+# *** THIS EXAMPLE MAY POSE A POTENTIAL SECURITY RISK, SO USE WITH CAUTION! ***
150
+# Usage scenario:
151
+# Execute restricted commmands using sudo.  For this to work, you need to add
152
+# the nagios user to your /etc/sudoers.  An example entry for allowing
153
+# execution of the plugins from might be:
154
+#
155
+# nagios          ALL=(ALL) NOPASSWD: /usr/lib/nagios/plugins/
156
+#
157
+# This lets the nagios user run all commands in that directory (and only them)
158
+# without asking for a password.  If you do this, make sure you don't give
159
+# random users write access to that directory or its contents!
160
+
161
+# command_prefix=/usr/bin/sudo
162
+
163
+
164
+# MAX COMMANDS
165
+# This specifies how many children processes may be spawned at any one
166
+# time, essentially limiting the fork()s that occur.
167
+# Default (0) is set to unlimited
168
+# max_commands=0
169
+
170
+
171
+
172
+# COMMAND TIMEOUT
173
+# This specifies the maximum number of seconds that the NRPE daemon will
174
+# allow plugins to finish executing before killing them off.
175
+
176
+command_timeout=60
177
+
178
+
179
+
180
+# CONNECTION TIMEOUT
181
+# This specifies the maximum number of seconds that the NRPE daemon will
182
+# wait for a connection to be established before exiting. This is sometimes
183
+# seen where a network problem stops the SSL being established even though
184
+# all network sessions are connected. This causes the nrpe daemons to
185
+# accumulate, eating system resources. Do not set this too low.
186
+
187
+connection_timeout=300
188
+
189
+
190
+
191
+# WEAK RANDOM SEED OPTION
192
+# This directive allows you to use SSL even if your system does not have
193
+# a /dev/random or /dev/urandom (on purpose or because the necessary patches
194
+# were not applied). The random number generator will be seeded from a file
195
+# which is either a file pointed to by the environment valiable $RANDFILE
196
+# or $HOME/.rnd. If neither exists, the pseudo random number generator will
197
+# be initialized and a warning will be issued.
198
+# Values: 0=only seed from /dev/[u]random, 1=also seed from weak randomness
199
+
200
+#allow_weak_random_seed=1
201
+
202
+
203
+
204
+# SSL/TLS OPTIONS
205
+# These directives allow you to specify how to use SSL/TLS.
206
+
207
+# SSL VERSION
208
+# This can be any of: SSLv2 (only use SSLv2), SSLv2+ (use any version),
209
+#        SSLv3 (only use SSLv3), SSLv3+ (use SSLv3 or above), TLSv1 (only use
210
+#        TLSv1), TLSv1+ (use TLSv1 or above), TLSv1.1 (only use TLSv1.1),
211
+#        TLSv1.1+ (use TLSv1.1 or above), TLSv1.2 (only use TLSv1.2),
212
+#        TLSv1.2+ (use TLSv1.2 or above)
213
+# If an "or above" version is used, the best will be negotiated. So if both
214
+# ends are able to do TLSv1.2 and use specify SSLv2, you will get TLSv1.2.
215
+# If you are using openssl 1.1.0 or above, the SSLv2 options are not available.
216
+
217
+#ssl_version=SSLv2+
218
+
219
+# SSL USE ADH
220
+# This is for backward compatibility and is DEPRECATED. Set to 1 to enable
221
+# ADH or 2 to require ADH. 1 is currently the default but will be changed
222
+# in a later version.
223
+
224
+#ssl_use_adh=1
225
+
226
+# SSL CIPHER LIST
227
+# This lists which ciphers can be used. For backward compatibility, this
228
+# defaults to 'ssl_cipher_list=ALL:!MD5:@STRENGTH' for < OpenSSL 1.1.0,
229
+# and 'ssl_cipher_list=ALL:!MD5:@STRENGTH:@SECLEVEL=0' for OpenSSL 1.1.0 and
230
+# greater.
231
+
232
+#ssl_cipher_list=ALL:!MD5:@STRENGTH
233
+#ssl_cipher_list=ALL:!MD5:@STRENGTH:@SECLEVEL=0
234
+#ssl_cipher_list=ALL:!aNULL:!eNULL:!SSLv2:!LOW:!EXP:!RC4:!MD5:@STRENGTH
235
+
236
+# SSL Certificate and Private Key Files
237
+
238
+#ssl_cacert_file=/etc/ssl/servercerts/ca-cert.pem
239
+#ssl_cert_file=/etc/ssl/servercerts/nagios-cert.pem
240
+#ssl_privatekey_file=/etc/ssl/servercerts/nagios-key.pem
241
+
242
+# SSL USE CLIENT CERTS
243
+# This options determines client certificate usage.
244
+# Values: 0 = Don't ask for or require client certificates (default)
245
+#         1 = Ask for client certificates
246
+#         2 = Require client certificates
247
+
248
+#ssl_client_certs=0
249
+
250
+# SSL LOGGING
251
+# This option determines which SSL messages are send to syslog. OR values
252
+# together to specify multiple options.
253
+
254
+# Values: 0x00 (0)  = No additional logging (default)
255
+#         0x01 (1)  = Log startup SSL/TLS parameters
256
+#         0x02 (2)  = Log remote IP address
257
+#         0x04 (4)  = Log SSL/TLS version of connections
258
+#         0x08 (8)  = Log which cipher is being used for the connection
259
+#         0x10 (16) = Log if client has a certificate
260
+#         0x20 (32) = Log details of client's certificate if it has one
261
+#         -1 or 0xff or 0x2f = All of the above
262
+
263
+#ssl_logging=0x00
264
+
265
+
266
+
267
+# NASTY METACHARACTERS
268
+# This option allows you to override the list of characters that cannot
269
+# be passed to the NRPE daemon.
270
+
271
+# nasty_metachars="|`&><'\\[]{};\r\n"
272
+
273
+
274
+
275
+# COMMAND DEFINITIONS
276
+# Command definitions that this daemon will run.  Definitions
277
+# are in the following format:
278
+#
279
+# command[<command_name>]=<command_line>
280
+#
281
+# When the daemon receives a request to return the results of <command_name>
282
+# it will execute the command specified by the <command_line> argument.
283
+#
284
+# Unlike Nagios, the command line cannot contain macros - it must be
285
+# typed exactly as it should be executed.
286
+#
287
+# Note: Any plugins that are used in the command lines must reside
288
+# on the machine that this daemon is running on!  The examples below
289
+# assume that you have plugins installed in a /usr/local/nagios/libexec
290
+# directory.  Also note that you will have to modify the definitions below
291
+# to match the argument format the plugins expect.  Remember, these are
292
+# examples only!
293
+
294
+
295
+# The following examples use hardcoded command arguments...
296
+# This is by far the most secure method of using NRPE
297
+
298
+command[check_users]=/usr/lib/nagios/plugins/check_users -w 5 -c 10
299
+command[check_load]=/usr/lib/nagios/plugins/check_load -r -w .15,.10,.05 -c .30,.25,.20
300
+command[check_hda1]=/usr/lib/nagios/plugins/check_disk -w 20% -c 10% -p /dev/hda1
301
+command[check_zombie_procs]=/usr/lib/nagios/plugins/check_procs -w 5 -c 10 -s Z
302
+command[check_total_procs]=/usr/lib/nagios/plugins/check_procs -w 150 -c 200
303
+
304
+
305
+# The following examples allow user-supplied arguments and can
306
+# only be used if the NRPE daemon was compiled with support for
307
+# command arguments *AND* the dont_blame_nrpe directive in this
308
+# config file is set to '1'.  This poses a potential security risk, so
309
+# make sure you read the SECURITY file before doing this.
310
+
311
+### MISC SYSTEM METRICS ###
312
+#command[check_users]=/usr/lib/nagios/plugins/check_users $ARG1$
313
+#command[check_load]=/usr/lib/nagios/plugins/check_load $ARG1$
314
+#command[check_disk]=/usr/lib/nagios/plugins/check_disk $ARG1$
315
+#command[check_swap]=/usr/lib/nagios/plugins/check_swap $ARG1$
316
+#command[check_cpu_stats]=/usr/lib/nagios/plugins/check_cpu_stats.sh $ARG1$
317
+#command[check_mem]=/usr/lib/nagios/plugins/custom_check_mem -n $ARG1$
318
+
319
+### GENERIC SERVICES ###
320
+#command[check_init_service]=sudo /usr/lib/nagios/plugins/check_init_service $ARG1$
321
+#command[check_services]=/usr/lib/nagios/plugins/check_services -p $ARG1$
322
+
323
+### SYSTEM UPDATES ###
324
+#command[check_yum]=/usr/lib/nagios/plugins/check_yum
325
+#command[check_apt]=/usr/lib/nagios/plugins/check_apt
326
+
327
+### PROCESSES ###
328
+#command[check_all_procs]=/usr/lib/nagios/plugins/custom_check_procs
329
+#command[check_procs]=/usr/lib/nagios/plugins/check_procs $ARG1$
330
+
331
+### OPEN FILES ###
332
+#command[check_open_files]=/usr/lib/nagios/plugins/check_open_files.pl $ARG1$
333
+
334
+### NETWORK CONNECTIONS ###
335
+#command[check_netstat]=/usr/lib/nagios/plugins/check_netstat.pl -p $ARG1$ $ARG2$
336
+
337
+### ASTERISK ###
338
+#command[check_asterisk]=/usr/lib/nagios/plugins/check_asterisk.pl $ARG1$
339
+#command[check_sip]=/usr/lib/nagios/plugins/check_sip $ARG1$
340
+#command[check_asterisk_sip_peers]=sudo /usr/lib/nagios/plugins/check_asterisk_sip_peers.sh $ARG1$
341
+#command[check_asterisk_version]=/usr/lib/nagios/plugins/nagisk.pl -c version
342
+#command[check_asterisk_peers]=/usr/lib/nagios/plugins/nagisk.pl -c peers
343
+#command[check_asterisk_channels]=/usr/lib/nagios/plugins/nagisk.pl -c channels
344
+#command[check_asterisk_zaptel]=/usr/lib/nagios/plugins/nagisk.pl -c zaptel
345
+#command[check_asterisk_span]=/usr/lib/nagios/plugins/nagisk.pl -c span -s 1
346
+
347
+
348
+
349
+# INCLUDE CONFIG FILE
350
+# This directive allows you to include definitions from an external config file.
351
+
352
+#include=<somefile.cfg>
353
+
354
+
355
+
356
+# INCLUDE CONFIG DIRECTORY
357
+# This directive allows you to include definitions from config files (with a
358
+# .cfg extension) in one or more directories (with recursion).
359
+
360
+#include_dir=<somedirectory>
361
+#include_dir=<someotherdirectory>
362
+
363
+
364
+
365
+# local configuration:
366
+# if you'd prefer, you can instead place directives here
367
+
368
+include=/etc/nagios/nrpe_local.cfg
369
+
370
+# you can place your config snipplets into nrpe.d/
371
+# only snipplets ending in .cfg will get included
372
+
373
+include_dir=/etc/nagios/nrpe.d/
374
+

Loading…
Cancel
Save