nagios系统搭建笔记
1.背景
原来的服务器和监控系统在移动机房(2.14,外网IP120.132.xx.xx),新上家校圈服务器(17台)在世纪互联机房,新旧服务器不在统一内网。
现在家校圈服务器100.6(120.132.xx.xx)上部署nagios监控部署系统,通过nsca传送到2.14统一进行前端页面管理。
2.安装nagios
(1)yum -y install httpd gcc glibc glibc-common gd gd-devel
(2) rpm -ivh nagios-3.2.1-1.el5.rf
rmp -ivh nagios-plugins-1.4.13-1.el5.rf
(3)设置管理账号:
/etc/httpd/conf.d/nagios.conf
#AuthName “Nagios Access”
#AuthType Basic
# AuthUserFile /etc/nagios/htpasswd.users
#Require valid-user
cat /etc/nagios/htpasswd.users
139guest:JKvJx00FiMbKo
139admin:d4PvA4FyLnZHM
vi /etc/nagios/cgi.cfg
authorized_for_system_information=139admin
authorized_for_configuration_information=139admin
authorized_for_system_commands=139admin
authorized_for_all_services=139admin,139guest
authorized_for_all_hosts=139admin,139guest
authorized_for_all_service_commands=139admin
authorized_for_all_host_commands=139admin
(4)测试
默认有个localhost.cfg是对本机的监控。
/usr/bin/nagios -v /etc/nagios/nagios.cfg 一切正常
/etc/init.d/nagios start 不正常 报错
Starting nagios:CONFIG ERROR! Start aborted. Check your Nagios configuration.
(5) 排查
a)初步怀疑权限问题,检查/etc/nagios/权限、/etc/nagios/nagios.cfg里.cfg文件路径以及其他权限,未发现问题。
b)检查日志,/var/log/message,发现如下异常信息:
Nov 3 11:41:18 localhost kernel: audit(1288755678.187:52881): arch=c000003e syscall=2 success=no exit=-13 a0=6d61740 a1=10800 a2=feff72736b747264 a3=6d618f3 items=0 ppid=2377 pid=2380 auid=10015 uid=0 gid=0 euid=0 suid=0 fsuid=0 egid=0 sgid=0 fsgid=0 tty=pts0 ses=25 comm=”nagios” exe=”/usr/bin/nagios” subj=user_u:system_r:nagios_t:s0 key=(null)
怀疑selinux的问题,检查发现selinux是关闭的。无果。。。
cat /etc/selinux/config
SELINUX=disabled
c)继续追踪/etc//init.d/nagios启动脚本
start)
echo -n “Starting nagios:”
$NagiosBin -v $NagiosCfgFile > /dev/null 2>1;
if [ $? -eq 0 ]; then
su – $NagiosUser -c “touch $NagiosVarDir/nagios.log $NagiosRetentionFile”
rm -f $NagiosCommandFile
touch $NagiosRunFile
chown $NagiosUser:$NagiosGroup $NagiosRunFile
$NagiosBin -d $NagiosCfgFile
if [ -d $NagiosLockDir ]; then touch $NagiosLockDir/$NagiosLockFile; fi
echo ” done.”
exit 0
else
echo “CONFIG ERROR! Start aborted. Check your Nagios configuration.”
exit 1
fi
;;
根据nagios启动时的报错信息“CONFIG ERROR! Start aborted. Check your Nagios configuration.”,说明在nagios执行过程中,/usr/bin/nagios -v /etc/nagios/nagios.cfg是错误的,去掉> /dev/null 2>1,重新启动nagios,果然报错。提示nagios.cfg line465 配置错误。
vi /etc/nagios/nagios.cfg –line 465
check_result_path=/var/nagios/spool/checkresults
配置是没错的,权限也没错。把/var/nagios/spool/checkresults修改为777也不行。修改为check_result_path=/tmp/checkresults后启动nagios,line465错误解决。但出现更多的貌似权限错误的配置。。。要疯了。
d)怀疑nagios账户有问题,果然id nagios也是异常的。
e)怀疑selinux disabled后没有重启机器,征求重启机器,问题果断解决。
(6)done.
浏览器打开http://120.132.xx.xx/nagios/发现无法连接,Y的。
查看了http是正常的。。。。再查原来http端口被之前他们改为8080了。
浏览器重新打开http://120.132.xx.xx:8080/nagios/
everything done!!!
3.在所有(17台)被监控服务器上部署nrpe客户端
(1)安装相关软件包
rpm -ivh *.rpm
fping-2.4-1.b2.2.el5.rf.i386.rpm
perl-Net-SNMP-5.2.0-1.2.el5.rf.noarch.rpm
perl-Socket6-0.19-3.fc6.x86_64.rpm
perl-Crypt-DES-2.05-3.2.el5.rf.x86_64.rpm
lm_sensors-2.10.0-3.1.x86_64.rpm
perl-Digest-HMAC-1.01-15.noarch.rpm
perl-Digest-SHA1-2.11-1.2.1.x86_64.rpm
nagios-plugins-1.4.13-1.el5.rf.x86_64.rpm
nagios-nrpe-2.5.2-1.el5.rf.x86_64.rpm
sysstat-7.0.2-1.e
- REDIce-Linux--灵活的实时Linux内核(11-12)
- linux文件系统基础(02-09)
- Linux标准趋向统一(11-12)
- linux基础技术(02-09)
- LINUX的目录树(02-09)
- 在Windows下启动Linux(02-09)