On 14 Apr 2010, at 13:43, Steve Thomas wrote:
Ok I'll give it ago with those - I was just curious to know if there
was a config setting in the agent to say "only allow connections
from this IP" type of thing...
It looks like we haven't updated the nrpe.cfg file with all possible
variables. You can add this:
allowed_hosts=127.0.0.1
to /usr/local/nagios/etc/nrpe.cfg to restrict which IP addresses can
connect. If you do and you try to connect from a different IP address,
you will get:
CHECK_NRPE: Error - Could not complete SSL handshake.
I've added a note on http://docs.opsview.org/doku.php?id=opsview-community:pluginoutput#check_nrpeerror_-_could_not_complete_ssl_handshake
and the next release of Opsview Agent will have this value commented
out.
For Windows, this parameter is also available:
http://nsclient.org/nscp/wiki/doc/usage/nagios/nrpe
Ton
_______________________________________________
Opsview-users mailing list
[email protected]
http://lists.opsview.org/lists/listinfo/opsview-users
