Presentation is loading. Please wait.

Presentation is loading. Please wait.

Rational Configuration Design John Murphy To Prevent Irrational Problem Solving.

Similar presentations


Presentation on theme: "Rational Configuration Design John Murphy To Prevent Irrational Problem Solving."— Presentation transcript:

1 Rational Configuration Design John Murphy To Prevent Irrational Problem Solving

2 Introduction Contacts Hosts Services 20122 Parents and dependencies Managing exceptions Automation BasicAdvanced

3 Our Scenario 20123

4 2011 Contacts

5 Contact address for support. Email, SMS, Ticketing, etc. 20125 Login account for an actual user. No contact information. ContactUser

6 Contacts define contact { contact_namecu-contact contactgroupscg-main email servers@domain.com use contact-user } define contactgroup { contactgroup_namecg-main aliasKmart Contact contactgroup_membersvg-team } 20126 define contact { name contact-user host_notifications_enabled1 service_notifications_enabled1 host_notification_period24x7 service_notification_period24x7 host_notification_optionsd,u service_notification_optionsc host_notification_commandsnotify-h-email service_notification_commands notify-s-email register 0 } Contact Definition

7 Contacts define contact { contact_namevu-jsmurphy contactgroupsvg-team use read-contact } define contactgroup { contactgroup_namevg-team aliasKmart Team } define contactgroup { contactgroup_namecg-main aliasKmart Contact contactgroup_membersvg-team } 20127 define contact { name read-contact host_notifications_enabled0 service_notifications_enabled0 host_notification_periodnone service_notification_periodnone host_notification_optionsn service_notification_optionsn host_notification_commandscheck_none service_notification_commands check_none register 0 } User Definition

8 Contacts ScriptAlias /nagios/cgi-bin "/usr/local/nagios/sbin" SetEnv TZ "Australia/Melbourne" Options ExecCGI AllowOverride None Order allow,deny Allow from all AuthName "Nagios Core" AuthType Basic # AuthUserFile /usr/local/nagios/etc/htpasswd.users # Require valid-user AuthBasicProvider ldap AuthName “Nagios server" AuthzLDAPAuthoritative off AuthLDAPBindDN "CN=bindAccount,OU=User,DC=domain,DC=com" AuthLDAPBindPassword xxxxxxxxx AuthLDAPURL ldaps://domain.com/OU=User,DC=Domain,DC=com?sAMAccountName?sub?(objectClass=user) AuthLDAPGroupAttribute member AuthLDAPGroupAttributeIsDN on Require ldap-group CN=NagiosAccessGroup,OU=Groups,DC=domain,DC=com 20128 LDAP/AD For Nagios Core

9 Contacts Summary Distinguish between your users and your contacts. Use an existing authentication source for your user logins. Consider the end-user experience… try to ensure it’s easy to get the information they need. 20129

10 2011 Hosts

11 Focus on minimizing host configuration to make automation easier. Use templates to assign user view information. Create host groups based on shared monitoring profiles. 201211

12 Hosts define host { host_nameexchange01 usesrv-template aliasExchange server addressexchange01 parentsswitch001,switch002 hostgroupssrv-exchange, srv-windows icon_imageexchange.png register 1 } define hostgroup { hostgroup_namesrv-windows aliasWindows group } 201212 define host { namesrv-template aliasServer host template check_command check_icmp!250.0,60%!500.0,80% max_check_attempts3 check_interval10 retry_interval2 check_period24x7 contact_groupscg-main notification_interval60 notification_period24x7 notification_optionsd,f notifications_enabled1 register0 } Host Definitions

13 Hosts Summary Minimize configuration in host objects to make automation easier. Hostnames allow for easier maintenance than IP addresses. Create logical host-groupings that will make service assignment easier e.g. OS type, Location, Applications it serves. 201213

14 2011 Services

15 Keep services as generic as possible to prevent the need for duplicate services. Minimizing service templates allows for easier management and baseline changes. Use service groups for applications. 201215

16 Services define service { service_descriptionWindows C: usage usemain-service-template hostgroup_namesrv-windows,srv-v-windows check_command check_nt!USEDDISKSPACE!-w 80 -c 90 contact_groupscg-main,cg-main-SMS register1 } 201216 define service { namemain-service-template service_descriptionmain service template max_check_attempts3 check_interval10 retry_interval2 check_period24x7 notification_interval60 notification_period24x7 notification_optionsc register0 } Service Definitions

17 The puzzle completed 201217

18 Services Summary Strike a balance between your service- templates and your service definitions. Service groups are a very useful feature when used appropriately, used inappropriately they are an administrative burden. Device life-cycle happens, ensure your configuration isn’t burdened by over- complexity. 201218

19 2011 Advanced

20 Good Parenting (or how to not get woken up 20 times at ~3am) Use host parenting. 201220 Parent indirectly monitored services with service dependencies. ParentingService Dependencies

21 Indirect Services 201221 …And the art of dependencies A typical ESX monitoring setup… Q. But what happens when the vSphere server fails?

22 Indirect Services 201222 …And the art of dependencies A. Something like this

23 Indirect Services define service { host_name vSphereServer service_descriptionPing dependency use main-service-template check_command check_ping!100,80%!200,90% register 1 } define service { service_descriptionCPU Usage use main-service-template hostgroup_namesrv-v-windows check_commandcheck_esx!CPU contact_groupscg-main register 1 } 201223 define servicedependency { dependent_hostgroup_namesrv-v-windows dependent_service_descriptionCPU Usage host_namevSphereServer service_descriptionPing dependency inherits_parent 1 execution_failure_criteriaw,u,c,p notification_failure_criteriaw,u,c dependency_period24x7 } …And the art of dependencies

24 Managing Exceptions Clearly label exceptions in your config. Make sure you can use the same solution again if necessary. 201224 Image by Mike Bade: http://robotseatingpies.blogspot.com.au/2011/06/robots- dont-have-feelings_16.htmlhttp://robotseatingpies.blogspot.com.au/2011/06/robots- dont-have-feelings_16.html

25 Automation (or intrapreneurship ideas for the lazy) Every piece of infrastructure is a potential data source… make use of it! AD/LDAP Servers. Virtual infrastructure API’s. Patching systems. Asset databases. Network management platforms. Network LLDP/CDP tables. SNMP enabled servers. Help I’m running out of space! 201225

26 2011 Nagios World Conference 26 Q&A

27 2011 Nagios World Conference 27 Thanks For Listening!


Download ppt "Rational Configuration Design John Murphy To Prevent Irrational Problem Solving."

Similar presentations


Ads by Google