Context Navigation

Changes between Version 2 and Version 3 of doc/configuration

Timestamp:: 02/15/08 22:47:47 (5 years ago)
Author:: mickem
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

doc/configuration

-                      v2
+                      v3
 [[TracNav(TracNav/TOC)]]
 == Configuration ==
+= Configuration =
 Configuration is fairly simple and straight forward. Open the configuration file in notepad (or you favorite editor) "notepad <installation path>\NSC.ini" and edit it accordingly. A longer description of the Configuration file is included in the following page.
 …
 }}}
+== Modules ==
+This is a list of modules to load at startup. All the modules included in this list has to be NSClient++ modules and located in the modules subdirectory. This is in effect the list of plug-ins that will be available as the service is running.
+A good idea here is to disable all modules you don’t actually use for two reasons. One less code equals less potential security holes and two less modules means less resource drain.
 === Settings ===
 …
 ||date_mask||%Y-%m-%d %H:%M:%S||The date format used when logging to a file
-=== Systray ===
-This section configures the system tray module.
-||Option||Default value||Description||
-||defaultCommand||...||A string that will be the default in the inject command dialog.
 === NSClient ===
 This is the NSClient module configuration options.
 …
 ||bind_to_address|| ||The address to bind to when listening to sockets.
+=== NRPE ===
+== NRPE ==
 This is configuration for the NRPE module that controls how the NRPE listener operates.
 ||Option||Default value||Description||
 …
 ||performance_data||1||Send performance data back to nagios
+=== NRPE Handlers ===
+This is a list of handlers for NRPE execution this can of course be used by any module (such as NSClient) but for historical reasons they are located in this section especially as NRPE plug-in is the one that does the actual execution.
+The handlers can have two different syntaxes:
+ * command[my_command]=/some/executable
+ * my_command=/some/executable<br>The latter is the preferred way as it is shorter.
+=== Check System ===
+== Check System ==
 Here you can set various options to configure the System Check module.
 …
 ||ProcessEnumerationMethod||auto||Set the PROCESS enumeration method (auto or TOOLHELP or PSAPI)
+=== modules ===
+== External Scripts ==
+TODO
+This is a list of modules to load at startup. All the modules included in this list has to be NSClient++ modules and located in the modules subdirectory. This is in effect the list of plug-ins that will be available as the service is running.
+== External Scripts ==
+TODO
+A good idea here is to disable all modules you don’t actually use for two reasons. One less code equals less potential security holes and two less modules means less resource drain.
+== External Alias ==
+TODO
+== includes ==
+=== Sample configuration ===
+This is the default sample confiuration file
+{{{
+ [modules]
+ ;# NSCLIENT++ MODULES
+ ;# A list with DLLs to load at startup.
+ ;  You will need to enable some of these for NSClient++ to work.
+ ; ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! !
+ ; *                                                               *
+ ; * N O T I C E ! ! ! - Y O U   H A V E   T O   E D I T   T H I S *
+ ; *                                                               *
+ ; ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! !
+ ;FileLogger.dll
+ ;CheckSystem.dll
+ ;CheckDisk.dll
+ ;NSClientListener.dll
+ ;NRPEListener.dll
+ ;SysTray.dll
+ ;CheckEventLog.dll
+ ;CheckHelpers.dll
+ ;
+ ; CheckWMI IS AN EXTREM EARLY IDEA SO DONT USE FOR PRODUCTION ENVIROMNEMTS!
+ ;CheckWMI.dll
+ [Settings]
+ ;# OBFUSCATED PASSWORD
+ ;  This is the same as the password option but here you can store the password in an obfuscated manner.
+ ;  *NOTICE* obfuscation is *NOT* the same as encryption, someone with access to this file can still figure out the
+ ;  password. Its just a bit harder to do it at first glance.
+ ;obfuscated_password=Jw0KAUUdXlAAUwASDAAB
+ ;
+ ;# PASSWORD
+ ;  This is the password (-s) that is required to access NSClient remotely. If you leave this blank everyone will be able to access the daemon remotly.
+ ;password=secret-password
+ ;
+ ;# ALLOWED HOST ADDRESSES
+ ;  This is a comma-delimited list of IP address of hosts that are allowed to talk to the all daemons.
+ ;  If leave this blank anyone can access the deamon remotly (NSClient still requires a valid password).
+ ;allowed_hosts=127.0.0.1
+ [log]
+ ;# LOG DEBUG
+ ;  Set to 1 if you want debug message printed in the log file (debug messages are always printed to stdout when run with -test)
+ ;debug=1
+ ;
+ ;# LOG FILE
+ ;  The file to print log statements to
+ ;file=NSC.log
+ ;
+ ;# LOG DATE MASK
+ ;  The format to for the date/time part of the log entry written to file.
+ ;date_mask=%Y-%m-%d %H:%M:%S
+ [NSClient]
+ ;# NSCLIENT PORT NUMBER
+ ;  This is the port the NSClientListener.dll will listen to.
+ ;port=12489
+ [Check System]
+ ;# CPU BUFFER SIZE
+ ;  Can be anything ranging from 1s (for 1 second) to 10w for 10 weeks. Notice that a larger buffer will waste memory
+ ;  so don't use a larger buffer then you need (ie. the longest check you do +1).
+ ;CPUBufferSize=1h
+ ;
+ ;# CHECK RESOLUTION
+ ;  The resolution to check values (currently only CPU).
+ ;  The value is entered in 1/10:th of a second and the default is 10 (which means ones every second)
+ ;CheckResolution=10
+ [NRPE]
+ ;# NRPE PORT NUMBER
+ ;  This is the port the NRPEListener.dll will listen to.
+ ;port=5666
+ ;
+ ;# COMMAND TIMEOUT
+ ;  This specifies the maximum number of seconds that the NRPE daemon will allow plug-ins to finish executing before killing them off.
+ ;command_timeout=60
+ ;
+ ;# COMMAND ARGUMENT PROCESSING
+ ;  This option determines whether or not the NRPE daemon will allow clients to specify arguments to commands that are executed.
+ ;allow_arguments=0
+ ;
+ ;# COMMAND ALLOW NASTY META CHARS
+ ;  This option determines whether or not the NRPE daemon will allow clients to specify nasty (as in |`&><'"\[]{}) characters in arguments.
+ ;allow_nasty_meta_chars=0
+ ;
+ ;# USE SSL SOCKET
+ ;  This option controls if SSL should be used on the socket.
+ ;use_ssl=1
+ [NRPE Handlers]
+ ;# COMMAND DEFINITIONS
+ ;# Command definitions that this daemon will run.
+ ;# Can be either NRPE syntax:
+ ;command[check_users]=/usr/local/nagios/libexec/check_users -w 5 -c 10
+ ;# Or simplified syntax:
+ ;test=c:\test.bat foo $ARG1$ bar
+ ;check_disk1=/usr/local/nagios/libexec/check_disk -w 5 -c 10
+ ;# Or even loopback (inject) syntax (to run internal commands)
+ ;# This is a way to run "NSClient" commands and other internal module commands such as check eventlog etc.
+ ;check_cpu=inject checkCPU warn=80 crit=90 5 10 15
+ ;check_eventlog=inject CheckEventLog Application warn.require.eventType=error warn.require.eventType=warning critical.require.eventType=error critical.exclude.eventType=info truncate=1024 descriptions
+ ;check_disk_c=inject CheckFileSize ShowAll MaxWarn=1024M MaxCrit=4096M File:WIN=c:\ATI\*.*
+ ;# But be careful:
+ ; dont_check=inject dont_check This will "loop forever" so be careful with the inject command...
+ ;# Check some escapings...
+ ; check_escape=inject CheckFileSize ShowAll MaxWarn=1024M MaxCrit=4096M "File: foo \" WIN=c:\\WINDOWS\\*.*"
+}}}
+== NSCA Agent ==
+== NSCA Commands ==
+=== NRPE Handlers ===
+This is a list of handlers for NRPE execution this can of course be used by any module (such as NSClient) but for historical reasons they are located in this section especially as NRPE plug-in is the one that does the actual execution.
+The handlers can have two different syntaxes:
+ * command[my_command]=/some/executable
+ * my_command=/some/executable<br>The latter is the preferred way as it is shorter.