I have installed Zabbix, specifically using the puppet module wdijkerman/zabbix. After installation, I can log in and there is only one node, the server itself. The status sometimes starts green with the 11 monitored applications from the default template. However, the SSH service always goes to Warning, and sometimes it starts that way. This is odd as I can ssh to the box remotely and from the box to itself on all its interfaces.
In Configuration -> Templates -> Template App SSH Service, there is one application/items/triggers tuple.
Applications: SSH service
Items:
Triggers:
I don't know much about zabbix yet but I believe zabbix_get will let me know how the net.tcp.service[ssh] is polling.
[rnelson0@zabbix ~]$ zabbix_get -s zabbix -k net.tcp.service[ssh]
1
[rnelson0@zabbix ~]$ netstat -an | grep 22
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 64 10.0.0.9:22 10.0.0.204:57872 ESTABLISHED
[rnelson0@zabbix ~]$ ssh zabbix
rnelson0@zabbix's password:
[rnelson0@zabbix ~]$ ssh localhost
The authenticity of host 'localhost (::1)' can't be established.
ECDSA key fingerprint is 0a:56:24:79:a4:3b:8d:df:93:24:aa:3e:da:a8:b6:8c.
Are you sure you want to continue connecting (yes/no)? yes
rnelson0@zabbix's password:
[rnelson0@zabbix ~]$ ssh 127.0.0.1
The authenticity of host '127.0.0.1 (127.0.0.1)' can't be established.
ECDSA key fingerprint is 0a:56:24:79:a4:3b:8d:df:93:24:aa:3e:da:a8:b6:8c.
Are you sure you want to continue connecting (yes/no)? yes
rnelson0@zabbix's password:
For comparison, the https service is running (and accessible via the browser) and gives a different return code:
[rnelson0@zabbix ~]$ zabbix_get -s zabbix -k net.tcp.service[https]
0
[rnelson0@zabbix ~]$ netstat -an | grep 443
tcp6 0 0 :::443 :::* LISTEN
I am also using SELinux.
As best I can tell, ssh itself is operational. However, the net.tcp.service[ssh] check fails. Can someone point me in the right direction to further diagnose this? Thanks!
In Configuration -> Templates -> Template App SSH Service, there is one application/items/triggers tuple.
Applications: SSH service
Items:
- Name: SSH service is running
- Key: net.tcp.service[ssh]
- Interval: 60
- History: 7
- Trends: 365
- Type: Simple check
- Applications: SSH service
- Status: Enabled
Triggers:
- Severity: Average (orange)
- Name: SSH service is down on {HOST.NAME}
- Expression: {Template App SSH Service:net.tcp.service[ssh].max(#3)}=0
- Status: Enabled
I don't know much about zabbix yet but I believe zabbix_get will let me know how the net.tcp.service[ssh] is polling.
[rnelson0@zabbix ~]$ zabbix_get -s zabbix -k net.tcp.service[ssh]
1
[rnelson0@zabbix ~]$ netstat -an | grep 22
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 64 10.0.0.9:22 10.0.0.204:57872 ESTABLISHED
[rnelson0@zabbix ~]$ ssh zabbix
rnelson0@zabbix's password:
[rnelson0@zabbix ~]$ ssh localhost
The authenticity of host 'localhost (::1)' can't be established.
ECDSA key fingerprint is 0a:56:24:79:a4:3b:8d:df:93:24:aa:3e:da:a8:b6:8c.
Are you sure you want to continue connecting (yes/no)? yes
rnelson0@zabbix's password:
[rnelson0@zabbix ~]$ ssh 127.0.0.1
The authenticity of host '127.0.0.1 (127.0.0.1)' can't be established.
ECDSA key fingerprint is 0a:56:24:79:a4:3b:8d:df:93:24:aa:3e:da:a8:b6:8c.
Are you sure you want to continue connecting (yes/no)? yes
rnelson0@zabbix's password:
For comparison, the https service is running (and accessible via the browser) and gives a different return code:
[rnelson0@zabbix ~]$ zabbix_get -s zabbix -k net.tcp.service[https]
0
[rnelson0@zabbix ~]$ netstat -an | grep 443
tcp6 0 0 :::443 :::* LISTEN
I am also using SELinux.
As best I can tell, ssh itself is operational. However, the net.tcp.service[ssh] check fails. Can someone point me in the right direction to further diagnose this? Thanks!
Comment