Yadda ake Ƙara Mai watsa shiri na Linux zuwa uwar garken Kula da Nagios Ta amfani da Plugin NRPE


A cikin ɓangarenmu na farko na wannan labarin, mun yi bayani dalla-dalla kan yadda ake shigarwa da kuma daidaita sabon Nagios 4.4.5 akan RHEL/CentOS 8/7 da uwar garken Fedora 30. A cikin wannan labarin, za mu nuna muku yadda ake ƙara injin Linux mai nisa kuma sabis ne ga mai watsa shiri na Nagios Monitoring ta amfani da wakilin NRPE.

Muna fatan kun riga an shigar da Nagios kuma kuna aiki yadda ya kamata. Idan ba haka ba, da fatan za a yi amfani da jagorar shigarwa mai zuwa don shigar da shi akan tsarin.

    Yadda ake Sanya Nagios 4.4.5 akan RHEL/CentOS 8/7 da Fedora 30
  1. Yadda ake Ƙara Mai watsa shiri na Windows zuwa Sabar Kula da Nagios

Da zarar kun shigar, zaku iya ci gaba don shigar da wakilin NRPE akan mai masaukin ku na Linux Remote. Kafin mu ci gaba, bari mu ba ku taƙaitaccen bayanin NRPE.

Menene NRPE?

NRPE (Nagios Remote Plugin Executor) plugin yana ba ku damar saka idanu kowane sabis na Linux/Unix na nesa ko na'urorin cibiyar sadarwa. Wannan ƙari na NRPE yana ba Nagios damar saka idanu akan kowane albarkatun gida kamar nauyin CPU, Swap, amfani da ƙwaƙwalwar ajiya, masu amfani da kan layi, da sauransu akan injunan Linux masu nisa. Bayan haka, waɗannan albarkatun gida ba su fi dacewa da injunan waje ba, dole ne a shigar da wakili na NRPE kuma a daidaita shi akan injunan nesa.

Lura: NRPE addon yana buƙatar cewa dole ne a shigar da Nagios Plugins akan na'urar Linux mai nisa. Idan ba tare da waɗannan ba, NRPE daemon ba zai yi aiki ba kuma ba zai saka idanu akan komai ba.

Shigar da Plugin NRPE

Don amfani da NRPE, kuna buƙatar yin wasu ƙarin ayyuka akan duka Mai watsa shiri na Nagios Kulawa da Mai watsa shiri na Linux wanda NRPE ta shigar akan. Za mu rufe duka sassan shigarwa daban.

Muna ɗauka cewa kuna shigar da NRPE akan mai masaukin baki mai goyan bayan TCP wrappers da Xinted daemon da aka sanya akan shi. A yau, yawancin rarrabawar Linux na zamani an shigar da waɗannan biyu ta tsohuwa. Idan ba haka ba, za mu shigar da shi daga baya yayin shigarwa lokacin da ake buƙata.

Da fatan za a yi amfani da umarnin da ke ƙasa don shigar da Nagios Plugins da NRPE daemon akan Mai watsa shiri na Linux Mai Nisa.

Muna buƙatar shigar da ɗakunan karatu da ake buƙata kamar gcc, glibc, glibc-common da GD da ɗakunan karatu na haɓakawa kafin shigarwa.

 yum install -y gcc glibc glibc-common gd gd-devel make net-snmp openssl-devel

-------------- On Fedora --------------
 dnf install -y gcc glibc glibc-common gd gd-devel make net-snmp openssl-devel

Ƙirƙiri sabon asusun mai amfani nagios kuma saita kalmar wucewa.

 useradd nagios
 passwd nagios

Ƙirƙiri adireshi don shigarwa da duk abubuwan zazzagewar sa na gaba.

 cd /root/nagios

Yanzu zazzage sabon fakitin Nagios Plugins 2.1.2 tare da umarnin wget.

 wget https://www.nagios-plugins.org/download/nagios-plugins-2.1.2.tar.gz

Gudanar da umarnin kwal mai zuwa don cire lambar kwal ɗin tushen.

 tar -xvf nagios-plugins-2.1.2.tar.gz

Bayan haka, cire sabon babban fayil guda ɗaya zai bayyana a waccan kundin adireshin.

 ls -l

total 2640
drwxr-xr-x. 15 root root    4096 Aug  1 21:58 nagios-plugins-2.1.2
-rw-r--r--.  1 root root 2695301 Aug  1 21:58 nagios-plugins-2.1.2.tar.gz

Na gaba, tattara kuma shigar ta amfani da umarni masu zuwa

 cd nagios-plugins-2.1.2
 ./configure 
 make
 make install

Saita izini akan kundin adireshi.

 chown nagios.nagios /usr/local/nagios
 chown -R nagios.nagios /usr/local/nagios/libexec

Yawancin tsarin, an shigar da shi ta tsohuwa. Idan ba haka ba, shigar da kunshin xinetd ta amfani da umarnin yum.

 yum install xinetd

-------------- On Fedora --------------
 dnf install xinetd

Zazzage sabbin fakitin NRPE Plugin 3.2 tare da umarnin wget.

 cd /root/nagios
 wget https://github.com/NagiosEnterprises/nrpe/releases/download/nrpe-3.2.1/nrpe-3.2.1.tar.gz

Cire fakitin lambar kwal ɗin tushen NRPE.

 tar xzf nrpe-3.2.1.tar.gz
 cd nrpe-3.2.1

Haɗa kuma shigar da NRPE addon.

 ./configure
 make all

Na gaba, shigar da daemon plugin na NRPE, da samfurin daemon config file.

 make install-plugin
 make install-daemon
 make install-daemon-config

Shigar da NRPE daemon karkashin xinetd azaman sabis.

 make install-xinetd
OR
 make install-inetd

Yanzu bude /etc/xinetd.d/nrpe fayil kuma ƙara localhost da adireshin IP na Nagios Monitoring Server.

only_from = 127.0.0.1 localhost <nagios_ip_address>

Na gaba, buɗe fayil ɗin /etc/services ƙara shigarwa mai zuwa don daemon NRPE a kasan fayil ɗin.

nrpe            5666/tcp                 NRPE

Sake kunna sabis na xinetd.

 service xinetd restart

Gudun umarni mai zuwa don tabbatar da daemon NRPE yana aiki daidai a ƙarƙashin xinetd.

 netstat -at | grep nrpe

tcp        0      0 *:nrpe                      *:*                         LISTEN

Idan kun sami fitarwa mai kama da na sama, yana nufin yana aiki daidai. Idan ba haka ba, tabbatar da duba abubuwa masu zuwa.

  1. Duba kun ƙara shigarwar nrpe daidai a /etc/services file
  2. Kawai_daga cikin ya ƙunshi shigarwa don nagios_ip_address a cikin fayil ɗin /etc/xinetd.d/nrpe.
  3. An shigar da xinetd kuma an fara.
  4. Duba kurakurai a cikin fayilolin tsarin tsarin game da xinetd ko nrpe kuma gyara waɗannan matsalolin.

Na gaba, tabbatar da NRPE daemon yana aiki da kyau. Gudanar da umarnin check_nrpe wanda aka shigar a baya don dalilai na gwaji.

 /usr/local/nagios/libexec/check_nrpe -H localhost

Za ku sami kirtani mai zuwa akan allon, yana nuna muku wane nau'in NRPE aka shigar:

NRPE v3.2

Tabbatar cewa Firewall akan na'ura na gida zai ba da damar samun dama ga daemon NRPE daga sabar mai nisa. Don yin wannan, gudanar da umarnin iptables mai zuwa.

-------------- On RHEL/CentOS 6/5 and Fedora --------------
 iptables -A INPUT -p tcp -m tcp --dport 5666 -j ACCEPT

-------------- On RHEL/CentOS 8/7 and Fedora 19 Onwards --------------
 firewall-cmd --permanent --zone=public --add-port=5666/tcp

Gudun umarni mai zuwa don Ajiye sabuwar ƙa'idar iptables don haka zai rayu a sake yi tsarin.

-------------- On RHEL/CentOS 6/5 and Fedora --------------
 service iptables save

Tsohuwar fayil ɗin sanyi na NRPE wanda aka shigar yana da ma'anar umarni da yawa waɗanda za a yi amfani da su don saka idanu akan wannan injin. Fayil ɗin daidaitawar samfurin da ke a.

 vi /usr/local/nagios/etc/nrpe.cfg

Wadannan sune ma'anar ma'anar umarni na asali waɗanda suke a ƙasan fayil ɗin daidaitawa. A halin yanzu, muna ɗauka cewa kuna amfani da waɗannan umarni. Kuna iya duba su ta amfani da umarni masu zuwa.

# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_users

USERS OK - 1 users currently logged in |users=1;5;10;0
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_load

OK - load average: 3.90, 4.37, 3.94|load1=3.900;15.000;30.000;0; load5=4.370;10.000;25.000;0; load15=3.940;5.000;20.000;0;
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_hda1

DISK OK - free space: /boot 154 MB (84% inode=99%);| /boot=29MB;154;173;0;193
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_total_procs

PROCS CRITICAL: 297 processes
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_zombie_procs

PROCS OK: 0 processes with STATE = Z

Kuna iya shirya da ƙara sabon ma'anar umarni ta hanyar gyara fayil ɗin daidaitawar NRPE. A ƙarshe, kun sami nasarar shigar da daidaita wakilin NRPE akan Mai watsa shiri na Linux Remote. Yanzu lokaci ya yi da za a shigar da bangaren NRPE kuma ƙara wasu ayyuka akan Sabar Kulawar Nagios…

Yanzu shiga cikin Sabar Kulawa ta Nagios. Anan zaka buƙaci yin abubuwa masu zuwa:

  1. Shigar da kayan aikin check_nrpe.
  2. Ƙirƙiri ma'anar umarnin Nagios ta amfani da plugin check_nrpe.
  3. Ƙirƙiri mai watsa shiri na Nagios kuma ƙara ma'anar sabis don saka idanu mai masaukin Linux mai nisa.

Je zuwa kundin adireshin zazzagewar nagios kuma zazzage sabuwar NRPE Plugin tare da umarnin wget.

 cd /root/nagios
 wget https://github.com/NagiosEnterprises/nrpe/releases/download/nrpe-3.2.1/nrpe-3.2.1.tar.gz

Cire fakitin lambar kwal ɗin tushen NRPE.

 tar xzf nrpe-3.2.1.tar.gz
 cd nrpe-3.2

Haɗa kuma shigar da NRPE addon.

 ./configure
 make all
 make install-daemon

Tabbatar cewa kayan aikin check_nrpe zai iya sadarwa tare da NRPE daemon akan mai masaukin Linux mai nisa. Ƙara adireshin IP a cikin umarnin da ke ƙasa tare da adireshin IP na mai masaukin Linux ɗin ku.

 /usr/local/nagios/libexec/check_nrpe -H <remote_linux_ip_address>

Za ku sami kirtani baya wanda ke nuna muku nau'in nau'in NRPE da aka shigar akan mai masaukin nesa, kamar haka:

NRPE v3.2

Idan kun sami kuskuren ƙarewar plugin ɗin, to duba abubuwa masu zuwa.

  1. Tabbatar da Firewall ɗinku baya toshe hanyar sadarwa tsakanin mai watsa shiri da mai saka idanu.
  2. Tabbatar cewa an shigar da daemon NRPE daidai a ƙarƙashin xinetd.
  3. Tabbatar cewa dokokin Tacewar zaɓi na Linux mai nisa yana toshe sabar sa ido daga sadarwa zuwa NRPE daemon.

Ƙara Mai watsa shiri na Linux mai nisa zuwa uwar garken Kula da Nagios

Don ƙara mai watsa shiri mai nisa kuna buƙatar ƙirƙirar sabbin fayiloli guda biyu hosts.cfg da services.cfg ƙarƙashin /usr/local/nagios/etc/ location.

 cd /usr/local/nagios/etc/
 touch hosts.cfg
[root[email ]# touch services.cfg

Yanzu ƙara waɗannan fayiloli guda biyu zuwa babban fayil ɗin Nagios. Buɗe fayil ɗin nagios.cfg tare da kowane edita.

 vi /usr/local/nagios/etc/nagios.cfg

Yanzu ƙara sabbin fayiloli guda biyu da aka ƙirƙira kamar yadda aka nuna a ƙasa.

# You can specify individual object config files as shown below:
cfg_file=/usr/local/nagios/etc/hosts.cfg
cfg_file=/usr/local/nagios/etc/services.cfg

Yanzu buɗe fayil hosts.cfg kuma ƙara tsoho sunan samfuri kuma ayyana runduna nesa kamar yadda aka nuna a ƙasa. Tabbatar maye gurbin host_name, laƙabi da adireshi tare da cikakkun bayanan sabar uwar garken nesa.

 vi /usr/local/nagios/etc/hosts.cfg
## Default Linux Host Template ##
define host{
name                            linux-box               ; Name of this template
use                             generic-host            ; Inherit default values
check_period                    24x7        
check_interval                  5       
retry_interval                  1       
max_check_attempts              10      
check_command                   check-host-alive
notification_period             24x7    
notification_interval           30      
notification_options            d,r     
contact_groups                  admins  
register                        0                       ; DONT REGISTER THIS - ITS A TEMPLATE
}

## Default
define host{
use                             linux-box               ; Inherit default values from a template
host_name                       tecmint		        ; The name we're giving to this server
alias                           CentOS 6                ; A longer name for the server
address                         5.175.142.66            ; IP address of Remote Linux host
}

Buɗe fayil ɗin services.cfg na gaba kuma ƙara ayyuka masu zuwa don a sa ido.

 vi /usr/local/nagios/etc/services.cfg
define service{
        use                     generic-service
        host_name               tecmint
        service_description     CPU Load
        check_command           check_nrpe!check_load
        }

define service{
        use                     generic-service
        host_name               tecmint
        service_description     Total Processes
        check_command           check_nrpe!check_total_procs
        }

define service{
        use                     generic-service
        host_name               tecmint
        service_description     Current Users
        check_command           check_nrpe!check_users
        }

define service{
        use                     generic-service
        host_name               tecmint
        service_description     SSH Monitoring
        check_command           check_nrpe!check_ssh
        }

define service{
        use                     generic-service
        host_name               tecmint
        service_description     FTP Monitoring
        check_command           check_nrpe!check_ftp
        }

Yanzu ana buƙatar ƙirƙira ma'anar umarnin NRPE a cikin fayil Commands.cfg.

 vi /usr/local/nagios/etc/objects/commands.cfg

Ƙara ma'anar umarnin NRPE mai zuwa a ƙasan fayil ɗin.

###############################################################################
# NRPE CHECK COMMAND
#
# Command to use NRPE to check remote host systems
###############################################################################

define command{
        command_name check_nrpe
        command_line $USER1$/check_nrpe -H $HOSTADDRESS$ -c $ARG1$
        }

A ƙarshe, tabbatar da fayilolin Kanfigareshan Nagios don kowane kurakurai.

 /usr/local/nagios/bin/nagios -v /usr/local/nagios/etc/nagios.cfg

Total Warnings: 0
Total Errors:   0

Sake kunna Nagios:

 service nagios restart

Shi ke nan. Yanzu je zuwa Nagios Monitoring Web interface a \http://Your-server-IP-address/nagios ko http://FQDN/nagios da kuma samar da sunan mai amfani \nagiosadmin da kalmar sirri. Duba cewa Nesa. An ƙara Mai watsa shiri na Linux kuma ana sa ido.

Shi ke nan! a yanzu, a cikin labarinmu mai zuwa zan nuna muku yadda ake ƙara rundunar Windows zuwa Sabis na Kula da Nagios. Idan kuna fuskantar kowace matsala yayin ƙara mai watsa shiri mai nisa zuwa Nagios. Da fatan za a yi sharhi game da tambayoyinku ko matsalarku ta sashin sharhi, har sai ku kasance a saurare zuwa linux-console.net don ƙarin labarai masu mahimmanci.