Agenda: exercises-nagios-I-III-basic.htm

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  <meta http-equiv="Content-Style-Type" content="text/css" />
  <meta name="generator" content="pandoc" />
  <title>Nagios Installation and Configuration</title>
  <style type="text/css">code{white-space: pre;}</style>
  <link rel="stylesheet" href="../../style.css" type="text/css" />
</head>
<body>
<div id="header">
<h1 class="title">Nagios Installation and Configuration</h1>
</div>
<div id="TOC">
<ul>
<li><a href="#introduction"><span class="toc-section-number">1</span> Introduction</a><ul>
<li><a href="#goals"><span class="toc-section-number">1.1</span> Goals</a></li>
<li><a href="#notes"><span class="toc-section-number">1.2</span> Notes</a></li>
</ul></li>
<li><a href="#exercises"><span class="toc-section-number">2</span> Exercises</a></li>
<li><a href="#part-i"><span class="toc-section-number">3</span> PART I</a><ul>
<li><a href="#log-in-to-your-virtual-machine-as-the-sysadm-user."><span class="toc-section-number">3.1</span> 1. Log in to your virtual machine as the sysadm user.</a></li>
<li><a href="#install-nagios-version-3"><span class="toc-section-number">3.2</span> 2. Install Nagios Version 3</a></li>
<li><a href="#see-initial-nagios-configuration"><span class="toc-section-number">3.3</span> 3. See Initial Nagios Configuration</a></li>
<li><a href="#add-routers-pcs-and-switches"><span class="toc-section-number">3.4</span> 4. Add Routers, PCs and Switches</a><ul>
<li><a href="#a.-creating-the-switches.cfg-file"><span class="toc-section-number">3.4.1</span> 4a. Creating the switches.cfg file</a></li>
<li><a href="#b.-creating-the-routers.cfg-file"><span class="toc-section-number">3.4.2</span> 4b. Creating the &quot;routers.cfg&quot; file</a></li>
<li><a href="#c.-creating-the-pcs.cfg-file"><span class="toc-section-number">3.4.3</span> 4c. Creating the pcs.cfg File</a></li>
</ul></li>
<li><a href="#steps-5a---5c-should-be-repeated-whenever-you-update-the-configuration"><span class="toc-section-number">3.5</span> STEPS 5a - 5c SHOULD BE REPEATED WHENEVER YOU UPDATE THE CONFIGURATION!</a><ul>
<li><a href="#a.-verify-that-your-configuration-files-are-ok"><span class="toc-section-number">3.5.1</span> 5a. Verify that your configuration files are OK</a></li>
<li><a href="#b.-reloadrestart-nagios"><span class="toc-section-number">3.5.2</span> 5b. Reload/Restart Nagios</a></li>
<li><a href="#c.-verify-via-the-web-interface"><span class="toc-section-number">3.5.3</span> 5c. Verify via the Web Interface</a></li>
</ul></li>
<li><a href="#view-status-map"><span class="toc-section-number">3.6</span> 6. View Status Map</a></li>
</ul></li>
<li><a href="#part-ii---configure-service-check-for-the-classroom-noc"><span class="toc-section-number">4</span> PART II - Configure Service check for the classroom NOC</a><ul>
<li><a href="#configuring"><span class="toc-section-number">4.1</span> 0. Configuring</a></li>
<li><a href="#associate-a-service-check-for-our-classroom-noc"><span class="toc-section-number">4.2</span> 1. Associate a service check for our classroom NOC</a></li>
</ul></li>
<li><a href="#part-iii---defining-services-for-all-pcs"><span class="toc-section-number">5</span> PART III - Defining Services for all PCs</a><ul>
<li><a href="#determine-what-services-to-define-for-what-devices"><span class="toc-section-number">5.1</span> 1. Determine what services to define for what devices</a></li>
<li><a href="#verify-that-ssh-is-running-on-the-routers-and-workshop-pcs-images"><span class="toc-section-number">5.2</span> 2. Verify that SSH is running on the routers and workshop PCs images</a></li>
<li><a href="#check-that-http-is-running-on-all-the-classroom-pcs."><span class="toc-section-number">5.3</span> 3. Check that http is running on all the classroom PCs.</a></li>
</ul></li>
</ul>
</div>
<h1 id="introduction"><a href="#introduction"><span class="header-section-number">1</span> Introduction</a></h1>
<h2 id="goals"><a href="#goals"><span class="header-section-number">1.1</span> Goals</a></h2>
<ul>
<li>Install and configure Nagios</li>
</ul>
<h2 id="notes"><a href="#notes"><span class="header-section-number">1.2</span> Notes</a></h2>
<ul>
<li>Commands preceded with &quot;$&quot; imply that you should execute the command as a general user - not as root.</li>
<li>Commands preceded with &quot;#&quot; imply that you should be working as root.</li>
<li>Commands with more specific command lines (e.g. &quot;rtrX&gt;&quot; or &quot;mysql&gt;&quot;) imply that you are executing commands on remote equipment, or within another program.</li>
</ul>
<h1 id="exercises"><a href="#exercises"><span class="header-section-number">2</span> Exercises</a></h1>
<h1 id="part-i"><a href="#part-i"><span class="header-section-number">3</span> PART I</a></h1>
<h2 id="log-in-to-your-virtual-machine-as-the-sysadm-user."><a href="#log-in-to-your-virtual-machine-as-the-sysadm-user."><span class="header-section-number">3.1</span> 1. Log in to your virtual machine as the sysadm user.</a></h2>
<h2 id="install-nagios-version-3"><a href="#install-nagios-version-3"><span class="header-section-number">3.2</span> 2. Install Nagios Version 3</a></h2>
<pre><code>$ sudo apt-get install nagios3 nagios3-doc</code></pre>
<p>During installation you will be prompted for the &quot;Nagios web administration password:&quot; - This will be for the Nagios user &quot;nagiosadmin&quot;. When prompted enter in the password you are using your sysadm account.</p>
<p>Note: if you have not already done so, you may be asked to configure the Postfix Mail Transport Agent during the Nagios installation process. Just accept the default &quot;Internet Site&quot;.</p>
<h2 id="see-initial-nagios-configuration"><a href="#see-initial-nagios-configuration"><span class="header-section-number">3.3</span> 3. See Initial Nagios Configuration</a></h2>
<p>Open a browser, and go to your machine like this:</p>
<pre><code>http://pcN.ws.nsrc.org/nagios3/</code></pre>
<p>At the login prompt, login as:</p>
<pre><code>        User Name: nagiosadmin
        Password:  &lt;CLASS PASSWORD&gt;</code></pre>
<p>Click on the &quot;Hosts&quot; link on the left of the initial Nagios page to see what has already been configured.</p>
<h2 id="add-routers-pcs-and-switches"><a href="#add-routers-pcs-and-switches"><span class="header-section-number">3.4</span> 4. Add Routers, PCs and Switches</a></h2>
<p>We will create three files, routers.cfg, switches.cfg and pcs.cfg and make entries for the hardware in our classroom.</p>
<h3 id="a.-creating-the-switches.cfg-file"><a href="#a.-creating-the-switches.cfg-file"><span class="header-section-number">3.4.1</span> 4a. Creating the switches.cfg file</a></h3>
<pre><code>$ cd /etc/nagios3/conf.d                (just to be sure)
$ sudo editor switches.cfg</code></pre>
<p>In this file add the following entry (COPY and PASTE!):</p>
<pre><code>define host {
    use         generic-host
    host_name   sw
    alias       Backbone Switch
    address     10.10.0.253
}</code></pre>
<p>Save the file and exit.</p>
<h3 id="b.-creating-the-routers.cfg-file"><a href="#b.-creating-the-routers.cfg-file"><span class="header-section-number">3.4.2</span> 4b. Creating the &quot;routers.cfg&quot; file</a></h3>
<p>We have up to 10 total routers. These are rtr1-rtr9 and gw. And, we have 1 or 2 wireless Access Points (ap1, ap2). We will define entries for some of these. If any of these devices do not exist in your workshop, then do not include them. Remember, COPY and PASTE!</p>
<pre><code>$ sudo editor routers.cfg</code></pre>
<pre><code>define host {
    use         generic-host
    host_name   gw
    alias       Classrooom Gateway Router
    address     10.10.0.254
}

define host {
    use         generic-host
    host_name   rtr1
    alias       Group 1 Gateway Router
    address     10.10.1.254
}

define host {
    use         generic-host
    host_name   rtr2
    alias       Group 2 Gateway Router
    address     10.10.2.254
}</code></pre>
<p>*** Note: you do not need to add definitions for all routers now = you can always come back and add the rest later! ***</p>
<pre><code>define host {
    use         generic-host
    host_name   ap1
    alias       Wireless Access Point 1
    address     10.10.0.251
}

define host {
    use         generic-host
    host_name   ap2
    alias       Wireless Access Point 2
    address     10.10.0.252
}</code></pre>
<p>Now save the file and exit the editor.</p>
<h3 id="c.-creating-the-pcs.cfg-file"><a href="#c.-creating-the-pcs.cfg-file"><span class="header-section-number">3.4.3</span> 4c. Creating the pcs.cfg File</a></h3>
<p>Now we will create entries for some of the Virtual Machines in our classroom Below we give you the first few entries. You should complete the file with as many PCs as you wish to add. We recommend that, at least, you add the 4 PCs that are members of your group as well as an entry for the classroom NOC, and at least one PC from another group (remember to COPY and PASTE!):</p>
<pre><code>$ sudo editor pcs.cfg</code></pre>
<pre><code>define host {
    use         generic-host
    host_name   noc
    alias       Workshop NOC machine
    address     10.10.0.250
}

#
# Group 1
# 

define host {
    use         generic-host
    host_name   pc1
    alias       pc1
    address     10.10.1.1
}

define host {
    use         generic-host
    host_name   pc2
    alias       pc2
    address     10.10.1.2
}

#
# Another PC (example only!)
#

define host {
    use         generic-host
    host_name   pc20
    alias       pc20
    address     10.10.5.20
}</code></pre>
<p>You can save and exit from the file now. You can add more PC entries later.</p>
<h2 id="steps-5a---5c-should-be-repeated-whenever-you-update-the-configuration"><a href="#steps-5a---5c-should-be-repeated-whenever-you-update-the-configuration"><span class="header-section-number">3.5</span> STEPS 5a - 5c SHOULD BE REPEATED WHENEVER YOU UPDATE THE CONFIGURATION!</a></h2>
<h3 id="a.-verify-that-your-configuration-files-are-ok"><a href="#a.-verify-that-your-configuration-files-are-ok"><span class="header-section-number">3.5.1</span> 5a. Verify that your configuration files are OK</a></h3>
<pre><code>$ sudo nagios3 -v /etc/nagios3/nagios.cfg </code></pre>
<p>You will get some warnings like the ones below. You can ignore them for now.</p>
<pre><code>Checking services...
    Checked 7 services.
Checking hosts...
Warning: Host &#39;gw&#39; has no services associated with it!
Warning: Host &#39;rtr1&#39; has no services associated with it!
Warning: Host &#39;rtr2&#39; has no services associated with it!

etc....
...
Total Warnings: N
Total Errors:   0</code></pre>
<p>Things look okay - No serious problems were detected during the check. Nagios is saying that it's unusual to monitor a device just for its existence on the network, without also monitoring some service.</p>
<h3 id="b.-reloadrestart-nagios"><a href="#b.-reloadrestart-nagios"><span class="header-section-number">3.5.2</span> 5b. Reload/Restart Nagios</a></h3>
<pre><code>$ sudo service nagios3 restart</code></pre>
<p>HINT: You will be doing this a lot. If you do it all on one line, like this, then you can use arrow-up and call back the command:</p>
<pre><code>$ sudo nagios3 -v /etc/nagios3/nagios.cfg &amp;&amp; sudo /etc/init.d/nagios3 restart</code></pre>
<p>The '&amp;&amp;' ensures that the restart only happens if the config is valid.</p>
<h3 id="c.-verify-via-the-web-interface"><a href="#c.-verify-via-the-web-interface"><span class="header-section-number">3.5.3</span> 5c. Verify via the Web Interface</a></h3>
<p>Go to the web interface (http://pcN.ws.nsrc.org/nagios3) and check that the hosts you just added are now visible in the interface. Click on the &quot;Hosts&quot; item on the left of the Nagios screen to see this. You may see it in &quot;PENDING&quot; status until the check is carried out.</p>
<h2 id="view-status-map"><a href="#view-status-map"><span class="header-section-number">3.6</span> 6. View Status Map</a></h2>
<p>Go to http://pcN.ws.nsrc.org/nagios3</p>
<p>Click on the &quot;Map&quot; item on the left. You should see all your hosts with the Nagios process in the middle. The &quot;?&quot; are because we have not told Nagios what type of host each items is (router, switch, AP, PC running Linux, etc...)</p>
<h1 id="part-ii---configure-service-check-for-the-classroom-noc"><a href="#part-ii---configure-service-check-for-the-classroom-noc"><span class="header-section-number">4</span> PART II - Configure Service check for the classroom NOC</a></h1>
<h2 id="configuring"><a href="#configuring"><span class="header-section-number">4.1</span> 0. Configuring</a></h2>
<p>Now that we have our hardware configured we can start telling Nagios what services to monitor on the configured hardware, how to group the hardware in interesting ways, how to group services, etc.</p>
<h2 id="associate-a-service-check-for-our-classroom-noc"><a href="#associate-a-service-check-for-our-classroom-noc"><span class="header-section-number">4.2</span> 1. Associate a service check for our classroom NOC</a></h2>
<pre><code>$ sudo editor hostgroups_nagios2.cfg</code></pre>
<ul>
<li>Find the hostgroup named &quot;ssh-servers&quot;. In the members section of the defintion change the line:</li>
</ul>
<pre><code>members         localhost</code></pre>
<p>to</p>
<pre><code>members         localhost,noc</code></pre>
<p>Exit and save the file.</p>
<p>Verify that your changes are OK:</p>
<pre><code>$ sudo nagios3 -v /etc/nagios3/nagios.cfg</code></pre>
<p>Restart Nagios to see the new service assocation with your host:</p>
<pre><code>$ sudo service nagios3 restart</code></pre>
<p>In the Nagios web interface, find the &quot;Services&quot; link (left menu), and click on it.</p>
<p>You should be able to find your recent change:</p>
<pre><code>noc  SSH      PENDING ...</code></pre>
<h1 id="part-iii---defining-services-for-all-pcs"><a href="#part-iii---defining-services-for-all-pcs"><span class="header-section-number">5</span> PART III - Defining Services for all PCs</a></h1>
<p>Note: The default normal_check_interval is 5 (minutes) for checking services. This is defined in &quot;generic-service_nagios2.cfg&quot;. You may wish to change this to 1 (1 minute) to speed up how quickly service issues are detected, at least during this workshop.</p>
<h2 id="determine-what-services-to-define-for-what-devices"><a href="#determine-what-services-to-define-for-what-devices"><span class="header-section-number">5.1</span> 1. Determine what services to define for what devices</a></h2>
<p>This is a central concept in using Nagios and network monitoring tools in general. So far we are simply using ping to verify that physical hosts are up on our network and we have started monitoring a single service on a single host (your PC). The next step is to decide what services (web server, SSH, etc.) you wish to monitor for each host in the classroom.</p>
<p>In this particular class we have:</p>
<ul>
<li>routers: running ssh and snmp</li>
<li>switches: running telnet and possibly ssh as well as snmp</li>
<li>pcs: All PCs are running ssh and http and should be running snmp The NOC is currently running an snmp daemon</li>
</ul>
<p>So, let's configure Nagios to check for these services on these devices.</p>
<h2 id="verify-that-ssh-is-running-on-the-routers-and-workshop-pcs-images"><a href="#verify-that-ssh-is-running-on-the-routers-and-workshop-pcs-images"><span class="header-section-number">5.2</span> 2. Verify that SSH is running on the routers and workshop PCs images</a></h2>
<p>In the file &quot;services_nagios2.cfg&quot; there is already an entry for the SSH service check, so you do not need to create this step. Instead, you simply need to re-define the &quot;ssh-servers&quot; entry in the file /etc/nagios3/conf.d/hostgroups_nagios2.cfg. The initial entry in the file looked like:</p>
<pre><code># A list of your ssh-accessible servers
define hostgroup {
        hostgroup_name  ssh-servers
                alias           SSH servers
                members         localhost
        }</code></pre>
<p>What do you think you should change? Correct, the &quot;members&quot; line. You should add in entries for all the classroom pcs, routers and the switches that run ssh. With this information and the network diagram you should be able complete this entry.</p>
<p>The entry will look something like this:</p>
<pre><code>define hostgroup {
        hostgroup_name  ssh-servers
                alias           SSH servers
                members         localhost,pc1,pc2,...,ap1,noc,rtr1,rtr2,...,gw
        }</code></pre>
<p>Note: do not remove &quot;localhost&quot; - This is your PC and represents Nagios' network point of view. So, for instance, if you are on &quot;pc3&quot; you would NOT list &quot;pc3&quot; in the list of all the classroom pcs as it is represented by the &quot;localhost&quot; entry.</p>
<p>The &quot;members&quot; entry will be a long line and will likely wrap on the screen. If you want to start additional entries on newline then use &quot;&quot; to indicate a newline like this:</p>
<p>Remember to include all the PCs and routers that you have defined in the files &quot;pcs.cfg&quot;, &quot;switches.cfg&quot; and &quot;routers.cfg&quot;. Only add entries from these files (i.e.: don't add &quot;pc8&quot; in your hostgroup list if &quot;pc8&quot; isn't defined in &quot;pcs.cfg&quot; as well).</p>
<p>Once you are done, run the pre-flight check and restart Nagios:</p>
<pre><code>$ sudo nagios3 -v /etc/nagios3/nagios.cfg &amp;&amp; sudo /etc/init.d/nagios3 restart</code></pre>
<p>... and view your changes in the Nagios web interface.</p>
<p>To continue with hostgroups you can add additional groups for later use, such as all our virtual routers. Go ahead and edit the file hostgroups_nagios2.cfg again:</p>
<pre><code>$ sudo editor hostgroups_nagios2.cfg</code></pre>
<p>and add the following to the end of the file (COPY and PASTE this):</p>
<pre><code># A list of our virtual routers

define hostgroup {
        hostgroup_name  routers
                alias           Cisco 7200 Routers
                members         rtr1,rtr2,...
        }</code></pre>
<p>Only list the routers you have defined in the &quot;routers.cfg&quot;.</p>
<p>Save and exit from the file. Verify that everything is OK:</p>
<pre><code>$ sudo nagios3 -v /etc/nagios3/nagios.cfg</code></pre>
<p>If everything looks good, then restart Nagios</p>
<pre><code>$ sudo service nagios3 restart</code></pre>
<h2 id="check-that-http-is-running-on-all-the-classroom-pcs."><a href="#check-that-http-is-running-on-all-the-classroom-pcs."><span class="header-section-number">5.3</span> 3. Check that http is running on all the classroom PCs.</a></h2>
<p>This is almost identical to the previous exercise. Just make the change to the HTTP service adding in each PC (no routers or switches). Remember, you don't need to add your machine as it is already defined as &quot;localhost&quot;. Look for this hostgroup in the file hostgroups_nagios2.cfg and update the &quot;members&quot; line appropriately.</p>
<p>If you have questions or are confused please ask an instructor for help.</p>
</body>
</html>