maybe chmod 0755 'icinga2/zones.d'
maybe chmod 0644 'icinga2/zones.d/README'
maybe chmod 0755 'icinga2/zones.d/master'
+maybe chmod 0644 'icinga2/zones.d/master/cron.conf'
maybe chmod 0644 'icinga2/zones.d/master/hosts.conf'
+maybe chmod 0644 'icinga2/zones.d/master/mail.conf'
+maybe chmod 0644 'icinga2/zones.d/master/salt.conf'
maybe chmod 0644 'icinga2/zones.d/master/services.conf'
maybe chmod 0755 'init'
maybe chmod 0755 'init.d'
# "ignoreip" can be an IP address, a CIDR mask or a DNS host. Fail2ban will not
# ban a host which matches an address in this list. Several addresses can be
# defined using space (and/or comma) separator.
-ignoreip = 127.0.0.1/8
+ignoreip = 127.0.0.1/8 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 185.48.118.128 162.254.24.33 185.102.95.107 185.48.118.130
# External command that will take an tagged arguments to ignore, e.g. <ip>,
# and return true if the IP is to be ignored. False otherwise.
--- /dev/null
+apply Service "proc cron" {
+ import "generic-service"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ check_command = "procs"
+ vars.procs_argument = "/usr/sbin/cron"
+ vars.procs_ppid = 1
+ vars.procs_warning = "1:1"
+ vars.procs_critical = "1:2"
+ vars.procs_user = "root"
+
+ assign where host.address
+
+}
+
vars.mailq_warning = 3
vars.mailq_critical = 10
+ vars.is_salt_master = true
/* Define http vhost attributes for service apply rules in `services.conf`. */
vars.http_vhosts["http"] = {
--- /dev/null
+
+apply Service "mailq" {
+ import "generic-service"
+
+ check_command = "mailq"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ vars.mailq_warning = 100
+ vars.mailq_critical = 300
+
+ assign where host.vars.is_mta && ! host.vars.is_mail_sattelite
+}
+
+apply Service "mailq" {
+ import "generic-service"
+
+ check_command = "mailq"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ vars.mailq_warning = 3
+ vars.mailq_critical = 10
+
+ assign where host.vars.is_mail_sattelite
+}
+
+apply Service "proc postfix" {
+ import "generic-service"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ check_command = "procs"
+ vars.procs_argument = "/usr/lib/postfix/sbin/master"
+ vars.procs_ppid = 1
+ vars.procs_warning = "1:1"
+ vars.procs_critical = "1:2"
+ vars.procs_user = "root"
+
+ assign where host.vars.is_mta || host.vars.is_mail_sattelite
+}
+
+apply Service "smtp" {
+ import "generic-service"
+ check_command = "smtp"
+ assign where host.vars.is_mta && ! host.vars.is_mail_sattelite
+}
+
+apply Service "imap" {
+ import "generic-service"
+ check_command = "imap"
+ assign where host.vars.is_imap_server
+}
+
--- /dev/null
+
+apply Service "proc salt-minion" {
+ import "generic-service"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ check_command = "procs"
+ vars.procs_argument = "/usr/bin/salt-minion"
+ vars.procs_ppid = 1
+ vars.procs_warning = "1:1"
+ vars.procs_critical = "1:2"
+ vars.procs_user = "root"
+
+ assign where host.address
+
+}
+
+apply Service "proc salt-master" {
+ import "generic-service"
+
+ if ( host.vars.client_endpoint ) {
+ // specify where the check is executed
+ command_endpoint = host.vars.client_endpoint
+ }
+
+ check_command = "procs"
+ vars.procs_argument = "/usr/bin/salt-master"
+ vars.procs_ppid = 1
+ vars.procs_warning = "1:1"
+ vars.procs_critical = "1:2"
+ vars.procs_user = "root"
+
+ assign where host.vars.is_salt_master
+}
+
assign where host.vars.client_endpoint
}
-apply Service "mailq" {
- import "generic-service"
-
- check_command = "mailq"
-
- if ( host.vars.client_endpoint ) {
- // specify where the check is executed
- command_endpoint = host.vars.client_endpoint
- }
-
- vars.mailq_warning = 100
- vars.mailq_critical = 300
-
- assign where host.vars.is_mta && ! host.vars.is_mail_sattelite
-}
-
-apply Service "mailq" {
- import "generic-service"
-
- check_command = "mailq"
-
- if ( host.vars.client_endpoint ) {
- // specify where the check is executed
- command_endpoint = host.vars.client_endpoint
- }
-
- vars.mailq_warning = 3
- vars.mailq_critical = 10
-
- assign where host.vars.is_mail_sattelite
-}
-
-apply Service "proc postfix" {
- import "generic-service"
-
- if ( host.vars.client_endpoint ) {
- // specify where the check is executed
- command_endpoint = host.vars.client_endpoint
- }
-
- check_command = "procs"
- vars.procs_argument = "/usr/lib/postfix/sbin/master"
- vars.procs_ppid = 1
- vars.procs_warning = "1:1"
- vars.procs_critical = "1:2"
- vars.procs_user = "root"
-
- assign where host.vars.is_mta || host.vars.is_mail_sattelite
-}
-
-apply Service "smtp" {
- import "generic-service"
- check_command = "smtp"
- assign where host.vars.is_mta && ! host.vars.is_mail_sattelite
-}
-
-apply Service "imap" {
- import "generic-service"
- check_command = "imap"
- assign where host.vars.is_imap_server
-}
-
projects / config / ns1 / etc.git / commitdiff