evolix/ansible-roles
22
2
Fork 2
Code Issues 61 Pull requests 18 Releases 32 Wiki Activity

nagios-nrpe: Add --sni to check_https

Browse source 
Why? Because we want to use the right server name when checking.
And if you have a strict-sni enabled server you will have an error.
 CRITICAL - Cannot
make SSL connection.  139749570156288:error:14094458:SSL
routines:ssl3_read_bytes:tlsv1 unrecognized
name:../ssl/record/rec_layer_s3.c:1399:SSL alert number 112
This commit is contained in:
Benoît S. 2018-01-22 12:12:25 +01:00
parent 1f007c1ff0
commit 3ef353761f
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
nagios-nrpe/templates/evolix.cfg.j2
View file

@ -34,7 +34,7 @@ command[check_pop]=/usr/lib/nagios/plugins/check_pop -H localhost
command[check_pops]=/usr/lib/nagios/plugins/check_pop -S -H localhost -p 995
command[check_ftp]=/usr/lib/nagios/plugins/check_ftp -H localhost
command[check_http]=/usr/lib/nagios/plugins/check_http -e 200 -I 127.0.0.1 -H localhost
command[check_https]=/usr/lib/nagios/plugins/check_http -e 200 -I 127.0.0.1 -S -p 443 -H ssl.evolix.net
command[check_https]=/usr/lib/nagios/plugins/check_http -e 200 -I 127.0.0.1 -S -p 443 --sni -H ssl.evolix.net
command[check_bind]=/usr/lib/nagios/plugins/check_dig -l evolix.net -H localhost
command[check_unbound]=/usr/lib/nagios/plugins/check_dig -l evolix.net -H localhost
command[check_smb]=/usr/lib/nagios/plugins/check_tcp -H 127.0.0.1 -p 445