NRPE issue

Sean Knox sean.knox at sbcglobal.net
Tue Nov 12 00:33:23 CET 2002

Previous message: NRPE issue
Next message: NRPE issue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Trace.

    You state that you are calling NRPE from inetd. Problem is, NRPE 
doesn't use nrpe.cfg for IP access when running from inetd. To restrict 
access to NRPE by IP or hostname, you have to use TCP Wrappers. A quick 
howto is here:

http://www.nagios.org/faqs/viewfaq.php?faq_id=101

-Sean

p.s. if you are running nrpe from daemon mode and wish to use NRPE to 
restrict access to multiple IPs, you just use a comma-delimited list.

# NOTE: This option is ignored if NRPE is running under either inetd or 
xinetd
allowed_hosts=127.0.0.1,192.168.1.1,172.16.0.2


Trace McQuaig wrote:

>Sure is. Extra Points Question: How would you specify multiple ip addr's?
>
>		Trace McQuaig
>		US Unwired
>		Systems Engineer
>		Unix Ninja
>		MCSE Exchange A+
>(o_
>//\  "It is all fun and games 'till someone gets a virus."
>V_/_     All spelling errors are completely intentional.
>
>
>
>-----Original Message-----
>From: Subhendu Ghosh [mailto:sghosh at sghosh.org]
>Sent: Monday, November 11, 2002 4:18 PM
>To: nagios-users at lists.sourceforge.net
>Subject: Re: [Nagios-users] NRPE issue
>
>
>Is you IP addr listed in nrpe.cfg?
>
>
>On Mon, 11 Nov 2002, Trace McQuaig wrote:
>
>  
>
>>I must not have everything configured right. I have triple checked my
>>configs and everything is in par with the docs. Trying to use NRPE on a
>>solaris box. I am running my check from a RedHat box to check users on a
>>Solaris 8 machine.
>>
>>
>>[root at tranceportal libexec]# ./check_nrpe 10.1.1.240 -p 5666 -c check_load
>>CHECK_NRPE: Received 0 bytes.  Are we allowed to connect to the host?
>>
>>--
>>So no data. Lets try to telnet to the port.
>>--
>>[root at tranceportal libexec]# telnet 10.1.1.240 5666
>>Trying 10.1.1.240...
>>Connected to usuposarch01-01 (10.1.1.240).
>>Escape character is '^]'.
>>Connection closed by foreign host.
>>[root at tranceportal libexec]# 
>>
>>Immediate disconnection. My ip is listed in the inetd.conf file and I have
>>restarted inetd.conf with pkill -HUP inetd
>>
>>
>>Any ideas?
>>
>>
>>		Trace McQuaig
>>		US Unwired
>>		Systems Engineer
>>		Unix Ninja
>>		MCSE Exchange A+
>>(o_
>>//\  "It is all fun and games 'till someone gets a virus."
>>V_/_     All spelling errors are completely intentional.
>>
>>
>>-------------------------------------------------------
>>This sf.net email is sponsored by:ThinkGeek
>>Welcome to geek heaven.
>>http://thinkgeek.com/sf
>>_______________________________________________
>>Nagios-users mailing list
>>Nagios-users at lists.sourceforge.net
>>https://lists.sourceforge.net/lists/listinfo/nagios-users
>>
>>    
>>
>
>  
>



-------------------------------------------------------
This sf.net email is sponsored by:ThinkGeek
Welcome to geek heaven.
http://thinkgeek.com/sf

Previous message: NRPE issue
Next message: NRPE issue
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list