Could not complete ssl handshake

[Jayson Broughton]

Harry,

There are afew thing you can check that cause this problem.

 

1.       Check versions of the nrpe on both the server and the client

2.       Did you install check_nrpe from source or rpm?  You might want to
check if one is compiled with ssl support and the other isn't compiled for
SSL support (I had that problem, server was compiled for SSL and listening
for SSL connections, client wasn't)

3.       I know with RHEL (what we use here) you have to set up the SELinux
permissions to allow the port through, along with editing the
/etc/xinetd.d/nrpe file and send a hup to xinetd so it can talk to the
server/client.  Here's a copy of my xinetd file in /etc/xinetd.d/

a.       # default: on

b.      # description: NRPE (Nagios Remote Plugin Executor)

c.       service nrpe

d.      {

e.              flags           = REUSE

f.                socket_type     = stream    

g.               port            = 5666    

h.              wait            = no

i.                 user            = nagios

j.                group           = nagios

k.               server          = /usr/local/nagios/bin/nrpe

l.                 server_args     = -c /usr/local/nagios/etc/nrpe.cfg
--inetd

m.            log_on_failure  += USERID

n.              disable         = no

o.              only_from       = NAGIOS.SERVER.IP.ADDRESS

p.      }

 

4.       Try running a higher debug on the server and manually run
check_nrpe from the server to the client, check logs.

 

Hope this helps!

 

~Jayson Broughton

From: Hart, Harry M. CTR USJFCOM JTCI [mailto:harry.hart.ctr at jfcom.mil] 
Sent: Thursday, January 08, 2009 4:37 AM
To: Nagios Users Mailinglist
Subject: [Nagios-users] Could not complete ssl handshake

 

I know I've seen this error on this forum before but can not remember what
resolved the problem. I installed NRPE on a Linux system to talk to another
Linux machine that is the Nagios server. I do the check_nrpe and get Could
not complete SSL handshake. It works fine when I do it from the server to
the remote system.

Thanks for any help on this one. 

Harry 

Harry M. Hart Systems integrator 
SAIC 
USJFCOM JIOC DCGS-A 
(757) 203-7422 
DSN 668-7422 
Harry.Hart at intel.jwfc.jfcom.smil.mil 
Harry.Hart at jwfc.ic.gov 

 


The information in this electronic mail message and any attached files is confidential and may be legally privileged.  If you are not the intended recipient, delete this message and contact the sender immediately.  Access to this message by anyone other than its intended recipient is unauthorized.  You must not use or disseminate this information as it is proprietary property of the True companies.  Communications on or through the True companies' computer systems may be monitored or recorded to secure effective system operation and for other lawful purposes.  Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20090109/a85f88a2/attachment.html>
-------------- next part --------------
------------------------------------------------------------------------------
Check out the new SourceForge.net Marketplace.
It is the best place to buy or sell services for
just about anything Open Source.
http://p.sf.net/sfu/Xq1LFB
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null