|
Author: Dan Langille
Date: 04-10-01 02:49
Here's what I had to do for checking https:
hosts.cfg:
service[dev]=HTTPS;0;24x7;3;2;1;freebsd-admins;120;24x7;1;1;1;;check_https!
commands.cfg:
command[check_https]=$USER1$/check_http --ssl $HOSTADDRESS$
I recommend testing from the command line to ensure your check_http can do this:
$ /usr/local/libexec/netsaint/check_http --ssl 10.0.0.1
HTTP ok: HTTP/1.1 200 OK - 1 second response time
Make sure you have https not running and http running. Then test it again:
$ /usr/local/libexec/netsaint/check_http --ssl 10.0.0.1
Connection refused by host
$ /usr/local/libexec/netsaint/check_http 216.187.106.227
HTTP ok: HTTP/1.1 200 OK - 1 second response time
Then you know it's working and it's actually checking https and not http.
You might, and I stree might have to recompile the plugins. My memory is hazy but I don't think I had to do this in order to get the --ssl option to work:
cd /usr/local/etc/netsaint/plugins/netsaint-plugins-1.2.9-4
make clean
./configure
make
cp check_http /usr/local/libexec/netsaint
I'll verify this and update as necessary.
|
|
Reply To This Message
|
|
Author: RevDigger
Date: 13-10-01 06:17
I forget if this is standard or something I did myself, but my commands.cfg has this:
command[check_ssl]=$USER1$/check_http -H $ARG1$ -S -C $ARG2$
-H is for the host name, in case it's a VHost and that is pertinent. -S tells it to use ssl. And -C is the number of days before the cert expires to start warning me. That's right, it checks the expire date on the cert for you. Too cool.
So in my hosts.cfg I have something like:
service[lisa]=SSL;0;24x7;3;2;1;unix-admins;180;24x7;1;1;1;;check_ssl!secure.myhost.com!14
Works great. In my Netsaint Status Detail, I get, "Certificate will expire on 07/03/2002 23:59."
|
|
Reply To This Message
|
|
