modules/nagios/manifests/client.pp

   1 class nagios::client inherits nagios {
   2     package {
   3         dsa-nagios-nrpe-config: ensure => purged;
   4         dsa-nagios-checks: ensure => installed;
   5     }
   6
   7     file {
   8         "/etc/default/nagios-nrpe-server":
   9             source  => [ "puppet:///modules/nagios/per-host/$fqdn/default",
  10                          "puppet:///modules/nagios/common/default" ],
  11             require => Package["nagios-nrpe-server"],
  12             notify  => Exec["nagios-nrpe-server restart"],
  13             ;
  14         "/etc/default/nagios-nrpe":
  15             ensure  => absent,
  16             notify  => Exec["nagios-nrpe-server restart"],
  17             ;
  18         "/etc/nagios/nrpe.cfg":
  19             content => template("nagios/nrpe.cfg.erb"),
  20             require => Package["nagios-nrpe-server"],
  21             notify  => Exec["service nagios-nrpe-server reload"],
  22             ;
  23         "/etc/nagios/nrpe.d":
  24             mode    => 755,
  25             require => Package["nagios-nrpe-server"],
  26             ensure  => directory,
  27             ;
  28         "/etc/nagios/nrpe.d/debianorg.cfg":
  29             content => template("nagios/inc-debian.org.erb"),
  30             require => Package["nagios-nrpe-server"],
  31             notify  => Exec["service nagios-nrpe-server reload"],
  32             ;
  33         "/etc/nagios/nrpe.d/nrpe_dsa.cfg":
  34             source  => [ "puppet:///modules/nagios/dsa-nagios/generated/nrpe_dsa.cfg" ],
  35             require => Package["dsa-nagios-checks"],
  36             notify  => Exec["service nagios-nrpe-server reload"],
  37             ;
  38
  39         "/etc/nagios/obsolete-packages-ignore":
  40             source  => [ "puppet:///modules/nagios/per-host/$fqdn/obsolete-packages-ignore",
  41                          "puppet:///modules/nagios/common/obsolete-packages-ignore" ],
  42             require => Package["dsa-nagios-checks"],
  43             ;
  44
  45         "/etc/nagios/obsolete-packages-ignore.d/hostspecific":
  46                         content => template("nagios/obsolete-packages-ignore.d-hostspecific.erb"),
  47             require => Package["dsa-nagios-checks"],
  48             ;
  49     }
  50
  51     exec {
  52         "nagios-nrpe-server restart":
  53             path        => "/etc/init.d:/usr/bin:/usr/sbin:/bin:/sbin",
  54             refreshonly => true,
  55             ;
  56         "service nagios-nrpe-server reload":
  57 # remove after lenny EOL (lenny has no service binary)
  58 # -cut-
  59             command    => "/etc/init.d/nagios-nrpe-server reload",
  60 # -cut-
  61             refreshonly => true,
  62             ;
  63     }
  64
  65     @ferm::rule {
  66         "dsa-nagios-v4":
  67             description     => "Allow nrpe from nagios master",
  68             rule            => "proto tcp mod state state (NEW) dport (5666) @subchain 'nagios' { saddr (\$HOST_NAGIOS_V4) ACCEPT; }",
  69             notarule        => true,
  70             ;
  71         "dsa-nagios-v6":
  72             description     => "Allow nrpe from nagios master",
  73             domain          => "ip6",
  74             rule            => "proto tcp mod state state (NEW) dport (5666) @subchain 'nagios' { saddr (\$HOST_NAGIOS_V6) ACCEPT; }",
  75             notarule        => true,
  76             ;
  77     }
  78 }
  79 # vim:set et:
  80 # vim:set sts=4 ts=4:
  81 # vim:set shiftwidth=4: