126 lines
3.0 KiB
YAML
126 lines
3.0 KiB
YAML
# yamllint disable rule:line-length
|
|
---
|
|
- name: "Install nrpe"
|
|
openbsd_pkg:
|
|
name:
|
|
- nrpe--
|
|
state: present
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Install monitoring packages"
|
|
openbsd_pkg:
|
|
name:
|
|
- monitoring-plugins
|
|
- check_bioctl
|
|
state: present
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Create nrpe.d dir"
|
|
file:
|
|
path: /etc/nrpe.d
|
|
state: directory
|
|
owner: root
|
|
group: wheel
|
|
mode: "0755"
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Include nrpe.d dir in nrpe.cfg"
|
|
lineinfile:
|
|
dest: /etc/nrpe.cfg
|
|
line: 'include_dir=/etc/nrpe.d'
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Custom configuration is present"
|
|
blockinfile:
|
|
block: "{{ lookup('template', 'evolix_bsd.cfg.j2') }}"
|
|
path: /etc/nrpe.d/evolix.cfg
|
|
marker: "## {mark} ANSIBLE MANAGED BLOCK : Custom NRPE configuration file from EvoBSD"
|
|
create: true
|
|
mode: "0644"
|
|
insertbefore: BOF
|
|
notify: restart nrpe
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Allow NRPE hosts"
|
|
lineinfile:
|
|
dest: /etc/nrpe.d/evolix.cfg
|
|
insertbefore: BOF
|
|
backrefs: true
|
|
regex: "allowed_hosts={{ nagios_nrpe_allowed_hosts | join(',') }}(.*)"
|
|
line: 'allowed_hosts={{ nagios_nrpe_allowed_hosts | join(",") }}\1'
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Allow NRPE hosts - add comment"
|
|
lineinfile:
|
|
dest: /etc/nrpe.d/evolix.cfg
|
|
insertbefore: BOF
|
|
line: "# Allowed IPs"
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Create nrpe plugins dir"
|
|
file:
|
|
path: /usr/local/libexec/nagios/plugins/
|
|
state: directory
|
|
owner: root
|
|
group: wheel
|
|
mode: "0755"
|
|
tags:
|
|
- nagios-nrpe
|
|
|
|
- name: "Nagios plugins are installed"
|
|
copy:
|
|
src: plugins_bsd/{{ item.name }}
|
|
dest: /usr/local/libexec/nagios/plugins/{{ item.name }}
|
|
owner: root
|
|
group: wheel
|
|
mode: "0755"
|
|
force: "{{ item.force }}"
|
|
with_items:
|
|
- {name: 'check_carp_if', force: true}
|
|
- {name: 'check_connections_state.sh', force: false}
|
|
- {name: 'check_ipsecctl.sh', force: false}
|
|
- {name: 'check_ipsecctl_critiques.sh', force: false}
|
|
- {name: 'check_openbgpd', force: true}
|
|
- {name: 'check_openvpn', force: false}
|
|
- {name: 'check_openvpn.pl', force: true}
|
|
- {name: 'check_ospfd_simple', force: true}
|
|
- {name: 'check_packetfilter.sh', force: true}
|
|
- {name: 'check_pf_states', force: false}
|
|
- {name: 'check_mailq.pl', force: true}
|
|
- {name: 'check_dhcp_pool', force: false}
|
|
- {name: 'check_dhcpd.sh', force: false}
|
|
notify: restart nrpe
|
|
tags:
|
|
- nagios-nrpe
|
|
- nagios-nrpe-utils
|
|
|
|
- name: "Nagios plugins are installed - template"
|
|
template:
|
|
src: plugins_bsd/{{ item.name }}.j2
|
|
dest: /usr/local/libexec/nagios/plugins/{{ item.name }}
|
|
owner: root
|
|
group: wheel
|
|
mode: "0755"
|
|
force: "{{ item.force }}"
|
|
with_items:
|
|
- {name: 'check_free_mem.sh', force: true}
|
|
notify: restart nrpe
|
|
tags:
|
|
- nagios-nrpe
|
|
- nagios-nrpe-utils
|
|
|
|
- name: "Starting and enabling nrpe"
|
|
service:
|
|
name: nrpe
|
|
enabled: true
|
|
state: started
|
|
tags:
|
|
- nagios-nrpe
|