parents: gw-HP-ftc
hostgroups: routing-infrastructure
gw-xandros:
- address: 142.46.212.33
+ address: 67.210.160.81
parents: gw-HP-ftc
hostgroups: routing-infrastructure
gw-nmmn:
agricola:
address: 82.195.75.86
parents: gw-man-da
- hostgroups: computers, porterbox, sw-raid, single-cpu
+ hostgroups: computers, porterbox, sw-raid, single-cpu, lenny
contacts: bzed
arcadelt:
address: 82.195.75.87
parents: gw-man-da
- hostgroups: computers, buildd, sw-raid, single-cpu
+ hostgroups: computers, buildd, sw-raid, single-cpu, lenny
contacts: bzed
liszt:
address: 82.195.75.100
parents: gw-man-da
- hostgroups: computers, service, apache2-hosts, bind9-hosts, postfix-hosts, heavy-postfix, dl385
+ hostgroups: computers, service, apache2-hosts, bind9-hosts, postfix-hosts, heavy-postfix, amavis-hosts, dl385
contacts: bzed
master:
argento:
address: 195.49.152.174
parents: gw-dg-i.net
- hostgroups: computers, buildd, sw-raid, single-cpu
+ hostgroups: computers, buildd, sw-raid, single-cpu, lenny
contacts: bzed
pergolesi:
hostgroups: computers, buildd, sw-raid, bind9-hosts
elara:
- address: 142.46.212.46
+ address: 67.210.160.90
parents: gw-xandros
hostgroups: deadslow
europa:
- address: 142.46.212.46
+ address: 67.210.160.89
parents: gw-xandros
hostgroups: deadslow
allegri:
address: 157.193.39.233
parents: gw-HP-ftc
- hostgroups: computers, buildd, postfix-hosts, sw-raid, single-cpu
+ hostgroups: computers, buildd, postfix-hosts, sw-raid, single-cpu, lenny
contacts: luk
agnesi:
alias: Hosts with only one CPU
private: 1
+ lenny:
+ alias: Hosts running lenny, not etch
+ private: 1
+
syslog-ng-hosts:
alias: hosts running syslog-ng instead of sysklogd
private: 1
alias: "hosts running the full mail stuff, including clamav, SA, and greylistd"
private: 1
heavy-postfix:
- alias: "postfix hosts running the full mail stuff, including clamav, SA, postgrey, amavis, policyd-weight"
+ alias: "postfix hosts running the full mail stuff, including clamav, SA, postgrey, policyd-weight"
private: 1
apache2-hosts:
alias: hosts running apache2
alias: raid checks
kernel:
alias: kernel checks
+ weaksshkeys:
+ alias: weak ssh keys
+ apt:
+ alias: apt upgrade status
+ security:
+ alias: security
+ servicegroup_members: apt, weaksshkeys, kernel
#############################
# services
servicegroups: diskspace
nrpe: "/usr/lib/nagios/plugins/check_disk 80 90 /"
hostgroups: computers
+ excludehosts: ries
+ -
+ name: disk usage on /
+ servicegroups: diskspace
+ nrpe: "/usr/lib/nagios/plugins/check_disk 90 95 /"
+ hosts: ries
-
name: disk usage on /boot
servicegroups: diskspace
name: disk usage on /org
servicegroups: diskspace
nrpe: "/usr/lib/nagios/plugins/check_disk 80 90 /org"
- hosts: bartok, sperger, samosa, raff, lobos, villa, steffani, saens, pergolesi, verdi, puccini, spontini
+ hosts: sperger, samosa, raff, lobos, villa, steffani, saens, pergolesi, verdi, puccini, spontini
-
name: disk usage on /org
servicegroups: diskspace
nrpe: "/usr/lib/nagios/plugins/check_disk 90 95 /org"
- hosts: merkel
+ hosts: merkel, bartok
-
name: disk usage on /srv
servicegroups: diskspace
############ All Computers ############
####
- #-
- # name: apt - security updates
- # nrpe: "/usr/local/bin/nagios-check-apt-updates --warnifupdates"
- # hostgroups: computers
- # normal_check_interval: 480
- # notification_interval: 480
- # max_check_attempts: 4
- # retry_check_interval: 12
+ -
+ name: apt - security updates
+ servicegroups: apt
+ nrpe: "/usr/lib/nagios/plugins/dsa-check-statusfile /var/cache/dsa/nagios/apt"
+ hostgroups: computers
+ normal_check_interval: 360
####
-
name: backup
check: dsa_check_ssh_port!443
hosts: gluck
normal_check_interval: 180
+
+ -
+ name: "network service - sshd - version"
+ check: "dsa_check_ssh_port_version!22!OpenSSH_4.3p2 Debian-9etch2"
+ depends: network service - sshd
+ hostgroups: computers, deadslow
+ excludehosts: agnesi, crest, kullervo
+ excludehostgroups: lenny
+ normal_check_interval: 360
+ -
+ name: "network service - sshd - version"
+ check: "dsa_check_ssh_port_version!22!OpenSSH_4.3p2 Debian-9etch2+m68k1"
+ depends: network service - sshd
+ hosts: crest, kullervo
+ normal_check_interval: 360
+ -
+ name: "network service - sshd - version"
+ check: "dsa_check_ssh_port_version!22!OpenSSH_4.7p1 Debian-9"
+ depends: network service - sshd
+ hostgroups: lenny
+ normal_check_interval: 360
+ -
+ name: "network service - sshd - version - 2260"
+ check: "dsa_check_ssh_port_version!2260!OpenSSH_4.3p2 Debian-9etch2"
+ depends: network service - sshd - 2260
+ hosts: agnesi
+ normal_check_interval: 360
+ #
+ -
+ name: ssh - weak keys
+ servicegroups: weaksshkeys
+ nrpe: "/usr/lib/nagios/plugins/dsa-check-statusfile /var/cache/dsa/nagios/weak-ssh-keys"
+ hostgroups: computers
+ normal_check_interval: 360
####
-
name: network service - nrpe
###
-
name: process - slapd
- nrpe: "/usr/lib/nagios/plugins/check_procs -w 1:20 -c 1:50 -u openldap -C slapd -a '/usr/sbin/slapd -g openldap -u openldap'"
+ nrpe: "/usr/lib/nagios/plugins/check_procs -w 1:20 -c 1:50 -u openldap -C slapd -a '/usr/sbin/slapd -h ldap:/// ldaps:/// -g openldap -u openldap'"
hosts: samosa
###
-
projects / mirror / dsa-nagios.git / blobdiff