Yadda ake Ƙara Mai watsa shiri na Linux zuwa uwar garken Kula da Nagios Ta amfani da Plugin NRPE
A cikin ɓangarenmu na farko na wannan labarin, mun yi bayani dalla-dalla kan yadda ake shigarwa da kuma daidaita sabon Nagios 4.4.5 akan RHEL/CentOS 8/7 da uwar garken Fedora 30. A cikin wannan labarin, za mu nuna muku yadda ake ƙara injin Linux mai nisa kuma sabis ne ga mai watsa shiri na Nagios Monitoring ta amfani da wakilin NRPE.
Muna fatan kun riga an shigar da Nagios kuma kuna aiki yadda ya kamata. Idan ba haka ba, da fatan za a yi amfani da jagorar shigarwa mai zuwa don shigar da shi akan tsarin.
- Yadda ake Sanya Nagios 4.4.5 akan RHEL/CentOS 8/7 da Fedora 30
- Yadda ake Ƙara Mai watsa shiri na Windows zuwa Sabar Kula da Nagios
Da zarar kun shigar, zaku iya ci gaba don shigar da wakilin NRPE akan mai masaukin ku na Linux Remote. Kafin mu ci gaba, bari mu ba ku taƙaitaccen bayanin NRPE.
Menene NRPE?
NRPE (Nagios Remote Plugin Executor) plugin yana ba ku damar saka idanu kowane sabis na Linux/Unix na nesa ko na'urorin cibiyar sadarwa. Wannan ƙari na NRPE yana ba Nagios damar saka idanu akan kowane albarkatun gida kamar nauyin CPU, Swap, amfani da ƙwaƙwalwar ajiya, masu amfani da kan layi, da sauransu akan injunan Linux masu nisa. Bayan haka, waɗannan albarkatun gida ba su fi dacewa da injunan waje ba, dole ne a shigar da wakili na NRPE kuma a daidaita shi akan injunan nesa.
Lura: NRPE addon yana buƙatar cewa dole ne a shigar da Nagios Plugins akan na'urar Linux mai nisa. Idan ba tare da waɗannan ba, NRPE daemon ba zai yi aiki ba kuma ba zai saka idanu akan komai ba.
Shigar da Plugin NRPE
Don amfani da NRPE, kuna buƙatar yin wasu ƙarin ayyuka akan duka Mai watsa shiri na Nagios Kulawa da Mai watsa shiri na Linux wanda NRPE ta shigar akan. Za mu rufe duka sassan shigarwa daban.
Muna ɗauka cewa kuna shigar da NRPE akan mai masaukin baki mai goyan bayan TCP wrappers da Xinted daemon da aka sanya akan shi. A yau, yawancin rarrabawar Linux na zamani an shigar da waɗannan biyu ta tsohuwa. Idan ba haka ba, za mu shigar da shi daga baya yayin shigarwa lokacin da ake buƙata.
Da fatan za a yi amfani da umarnin da ke ƙasa don shigar da Nagios Plugins da NRPE daemon akan Mai watsa shiri na Linux Mai Nisa.
Muna buƙatar shigar da ɗakunan karatu da ake buƙata kamar gcc, glibc, glibc-common da GD da ɗakunan karatu na haɓakawa kafin shigarwa.
yum install -y gcc glibc glibc-common gd gd-devel make net-snmp openssl-devel -------------- On Fedora -------------- dnf install -y gcc glibc glibc-common gd gd-devel make net-snmp openssl-devel
Ƙirƙiri sabon asusun mai amfani nagios kuma saita kalmar wucewa.
useradd nagios passwd nagios
Ƙirƙiri adireshi don shigarwa da duk abubuwan zazzagewar sa na gaba.
cd /root/nagios
Yanzu zazzage sabon fakitin Nagios Plugins 2.1.2 tare da umarnin wget.
wget https://www.nagios-plugins.org/download/nagios-plugins-2.1.2.tar.gz
Gudanar da umarnin kwal mai zuwa don cire lambar kwal ɗin tushen.
tar -xvf nagios-plugins-2.1.2.tar.gz
Bayan haka, cire sabon babban fayil guda ɗaya zai bayyana a waccan kundin adireshin.
ls -l total 2640 drwxr-xr-x. 15 root root 4096 Aug 1 21:58 nagios-plugins-2.1.2 -rw-r--r--. 1 root root 2695301 Aug 1 21:58 nagios-plugins-2.1.2.tar.gz
Na gaba, tattara kuma shigar ta amfani da umarni masu zuwa
cd nagios-plugins-2.1.2 ./configure make make install
Saita izini akan kundin adireshi.
chown nagios.nagios /usr/local/nagios chown -R nagios.nagios /usr/local/nagios/libexec
Yawancin tsarin, an shigar da shi ta tsohuwa. Idan ba haka ba, shigar da kunshin xinetd ta amfani da umarnin yum.
yum install xinetd -------------- On Fedora -------------- dnf install xinetd
Zazzage sabbin fakitin NRPE Plugin 3.2 tare da umarnin wget.
cd /root/nagios wget https://github.com/NagiosEnterprises/nrpe/releases/download/nrpe-3.2.1/nrpe-3.2.1.tar.gz
Cire fakitin lambar kwal ɗin tushen NRPE.
tar xzf nrpe-3.2.1.tar.gz cd nrpe-3.2.1
Haɗa kuma shigar da NRPE addon.
./configure make all
Na gaba, shigar da daemon plugin na NRPE, da samfurin daemon config file.
make install-plugin make install-daemon make install-daemon-config
Shigar da NRPE daemon karkashin xinetd azaman sabis.
make install-xinetd OR make install-inetd
Yanzu bude /etc/xinetd.d/nrpe fayil kuma ƙara localhost da adireshin IP na Nagios Monitoring Server.
only_from = 127.0.0.1 localhost <nagios_ip_address>
Na gaba, buɗe fayil ɗin /etc/services ƙara shigarwa mai zuwa don daemon NRPE a kasan fayil ɗin.
nrpe 5666/tcp NRPE
Sake kunna sabis na xinetd.
service xinetd restart
Gudun umarni mai zuwa don tabbatar da daemon NRPE yana aiki daidai a ƙarƙashin xinetd.
netstat -at | grep nrpe tcp 0 0 *:nrpe *:* LISTEN
Idan kun sami fitarwa mai kama da na sama, yana nufin yana aiki daidai. Idan ba haka ba, tabbatar da duba abubuwa masu zuwa.
- Duba kun ƙara shigarwar nrpe daidai a /etc/services file
- Kawai_daga cikin ya ƙunshi shigarwa don nagios_ip_address a cikin fayil ɗin /etc/xinetd.d/nrpe.
- An shigar da xinetd kuma an fara.
- Duba kurakurai a cikin fayilolin tsarin tsarin game da xinetd ko nrpe kuma gyara waɗannan matsalolin.
Na gaba, tabbatar da NRPE daemon yana aiki da kyau. Gudanar da umarnin check_nrpe wanda aka shigar a baya don dalilai na gwaji.
/usr/local/nagios/libexec/check_nrpe -H localhost
Za ku sami kirtani mai zuwa akan allon, yana nuna muku wane nau'in NRPE aka shigar:
NRPE v3.2
Tabbatar cewa Firewall akan na'ura na gida zai ba da damar samun dama ga daemon NRPE daga sabar mai nisa. Don yin wannan, gudanar da umarnin iptables mai zuwa.
-------------- On RHEL/CentOS 6/5 and Fedora -------------- iptables -A INPUT -p tcp -m tcp --dport 5666 -j ACCEPT -------------- On RHEL/CentOS 8/7 and Fedora 19 Onwards -------------- firewall-cmd --permanent --zone=public --add-port=5666/tcp
Gudun umarni mai zuwa don Ajiye sabuwar ƙa'idar iptables don haka zai rayu a sake yi tsarin.
-------------- On RHEL/CentOS 6/5 and Fedora -------------- service iptables save
Tsohuwar fayil ɗin sanyi na NRPE wanda aka shigar yana da ma'anar umarni da yawa waɗanda za a yi amfani da su don saka idanu akan wannan injin. Fayil ɗin daidaitawar samfurin da ke a.
vi /usr/local/nagios/etc/nrpe.cfg
Wadannan sune ma'anar ma'anar umarni na asali waɗanda suke a ƙasan fayil ɗin daidaitawa. A halin yanzu, muna ɗauka cewa kuna amfani da waɗannan umarni. Kuna iya duba su ta amfani da umarni masu zuwa.
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_users USERS OK - 1 users currently logged in |users=1;5;10;0
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_load OK - load average: 3.90, 4.37, 3.94|load1=3.900;15.000;30.000;0; load5=4.370;10.000;25.000;0; load15=3.940;5.000;20.000;0;
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_hda1 DISK OK - free space: /boot 154 MB (84% inode=99%);| /boot=29MB;154;173;0;193
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_total_procs PROCS CRITICAL: 297 processes
# /usr/local/nagios/libexec/check_nrpe -H localhost -c check_zombie_procs PROCS OK: 0 processes with STATE = Z
Kuna iya shirya da ƙara sabon ma'anar umarni ta hanyar gyara fayil ɗin daidaitawar NRPE. A ƙarshe, kun sami nasarar shigar da daidaita wakilin NRPE akan Mai watsa shiri na Linux Remote. Yanzu lokaci ya yi da za a shigar da bangaren NRPE kuma ƙara wasu ayyuka akan Sabar Kulawar Nagios…
Yanzu shiga cikin Sabar Kulawa ta Nagios. Anan zaka buƙaci yin abubuwa masu zuwa:
- Shigar da kayan aikin check_nrpe.
- Ƙirƙiri ma'anar umarnin Nagios ta amfani da plugin check_nrpe.
- Ƙirƙiri mai watsa shiri na Nagios kuma ƙara ma'anar sabis don saka idanu mai masaukin Linux mai nisa.
Je zuwa kundin adireshin zazzagewar nagios kuma zazzage sabuwar NRPE Plugin tare da umarnin wget.
cd /root/nagios wget https://github.com/NagiosEnterprises/nrpe/releases/download/nrpe-3.2.1/nrpe-3.2.1.tar.gz
Cire fakitin lambar kwal ɗin tushen NRPE.
tar xzf nrpe-3.2.1.tar.gz cd nrpe-3.2
Haɗa kuma shigar da NRPE addon.
./configure make all make install-daemon
Tabbatar cewa kayan aikin check_nrpe zai iya sadarwa tare da NRPE daemon akan mai masaukin Linux mai nisa. Ƙara adireshin IP a cikin umarnin da ke ƙasa tare da adireshin IP na mai masaukin Linux ɗin ku.
/usr/local/nagios/libexec/check_nrpe -H <remote_linux_ip_address>
Za ku sami kirtani baya wanda ke nuna muku nau'in nau'in NRPE da aka shigar akan mai masaukin nesa, kamar haka:
NRPE v3.2
Idan kun sami kuskuren ƙarewar plugin ɗin, to duba abubuwa masu zuwa.
- Tabbatar da Firewall ɗinku baya toshe hanyar sadarwa tsakanin mai watsa shiri da mai saka idanu.
- Tabbatar cewa an shigar da daemon NRPE daidai a ƙarƙashin xinetd.
- Tabbatar cewa dokokin Tacewar zaɓi na Linux mai nisa yana toshe sabar sa ido daga sadarwa zuwa NRPE daemon.
Ƙara Mai watsa shiri na Linux mai nisa zuwa uwar garken Kula da Nagios
Don ƙara mai watsa shiri mai nisa kuna buƙatar ƙirƙirar sabbin fayiloli guda biyu hosts.cfg da services.cfg ƙarƙashin /usr/local/nagios/etc/ location.
cd /usr/local/nagios/etc/ touch hosts.cfg [root[email ]# touch services.cfg
Yanzu ƙara waɗannan fayiloli guda biyu zuwa babban fayil ɗin Nagios. Buɗe fayil ɗin nagios.cfg tare da kowane edita.
vi /usr/local/nagios/etc/nagios.cfg
Yanzu ƙara sabbin fayiloli guda biyu da aka ƙirƙira kamar yadda aka nuna a ƙasa.
# You can specify individual object config files as shown below: cfg_file=/usr/local/nagios/etc/hosts.cfg cfg_file=/usr/local/nagios/etc/services.cfg
Yanzu buɗe fayil hosts.cfg kuma ƙara tsoho sunan samfuri kuma ayyana runduna nesa kamar yadda aka nuna a ƙasa. Tabbatar maye gurbin host_name, laƙabi da adireshi tare da cikakkun bayanan sabar uwar garken nesa.
vi /usr/local/nagios/etc/hosts.cfg
## Default Linux Host Template ## define host{ name linux-box ; Name of this template use generic-host ; Inherit default values check_period 24x7 check_interval 5 retry_interval 1 max_check_attempts 10 check_command check-host-alive notification_period 24x7 notification_interval 30 notification_options d,r contact_groups admins register 0 ; DONT REGISTER THIS - ITS A TEMPLATE } ## Default define host{ use linux-box ; Inherit default values from a template host_name tecmint ; The name we're giving to this server alias CentOS 6 ; A longer name for the server address 5.175.142.66 ; IP address of Remote Linux host }
Buɗe fayil ɗin services.cfg na gaba kuma ƙara ayyuka masu zuwa don a sa ido.
vi /usr/local/nagios/etc/services.cfg
define service{ use generic-service host_name tecmint service_description CPU Load check_command check_nrpe!check_load } define service{ use generic-service host_name tecmint service_description Total Processes check_command check_nrpe!check_total_procs } define service{ use generic-service host_name tecmint service_description Current Users check_command check_nrpe!check_users } define service{ use generic-service host_name tecmint service_description SSH Monitoring check_command check_nrpe!check_ssh } define service{ use generic-service host_name tecmint service_description FTP Monitoring check_command check_nrpe!check_ftp }
Yanzu ana buƙatar ƙirƙira ma'anar umarnin NRPE a cikin fayil Commands.cfg.
vi /usr/local/nagios/etc/objects/commands.cfg
Ƙara ma'anar umarnin NRPE mai zuwa a ƙasan fayil ɗin.
############################################################################### # NRPE CHECK COMMAND # # Command to use NRPE to check remote host systems ############################################################################### define command{ command_name check_nrpe command_line $USER1$/check_nrpe -H $HOSTADDRESS$ -c $ARG1$ }
A ƙarshe, tabbatar da fayilolin Kanfigareshan Nagios don kowane kurakurai.
/usr/local/nagios/bin/nagios -v /usr/local/nagios/etc/nagios.cfg Total Warnings: 0 Total Errors: 0
Sake kunna Nagios:
service nagios restart
Shi ke nan. Yanzu je zuwa Nagios Monitoring Web interface a \http://Your-server-IP-address/nagios ko http://FQDN/nagios da kuma samar da sunan mai amfani \nagiosadmin da kalmar sirri. Duba cewa Nesa. An ƙara Mai watsa shiri na Linux kuma ana sa ido.
Shi ke nan! a yanzu, a cikin labarinmu mai zuwa zan nuna muku yadda ake ƙara rundunar Windows zuwa Sabis na Kula da Nagios. Idan kuna fuskantar kowace matsala yayin ƙara mai watsa shiri mai nisa zuwa Nagios. Da fatan za a yi sharhi game da tambayoyinku ko matsalarku ta sashin sharhi, har sai ku kasance a saurare zuwa linux-console.net don ƙarin labarai masu mahimmanci.