NRPE says "Host not allowed to talk to us"

Support forum for Nagios Core, Nagios Plugins, NCPA, NRPE, NSCA, NDOUtils and more. Engage with the community of users including those using the open source solutions.
Locked
kevinlong206
Posts: 2
Joined: Thu Dec 12, 2013 8:55 pm

NRPE says "Host not allowed to talk to us"

Post by kevinlong206 »

I am having NRPE communication issues on my ubuntu VMs (debian machines are fine, same subnet and nrpe.conf file). The syslog on the nrpe machine is saying the IP is not allowed, but it should be allowed from the .conf file.

arrow@nagios:~$ /usr/lib/nagios/plugins/check_nrpe -H 10.20.10.158 -c check_all_disks
CHECK_NRPE: Error - Could not complete SSL handshake.


On the *client* machine running NRPE daemon (syslog)

Dec 12 18:13:10 monitor-01 nrpe[9095]: Connection from 10.20.11.38 port 9617
Dec 12 18:13:10 monitor-01 nrpe[9095]: Host 10.20.11.38 is not allowed to talk to us!
Dec 12 18:13:10 monitor-01 nrpe[9095]: Connection from 10.20.11.38 closed.


But that IP is indeed in the allowed_hosts file (the /24 of that subnet), and I have killed / restarted NRPE ( and even rebooted the server!) Also, this *is* the right path to the conf file, as verified by ps aux | grep nrpe .

# cat /etc/nagios/nrpe.cfg | grep allowed_hosts
allowed_hosts=10.20.11.0/24,127.0.0.1




The only other strange this is some error messages related to open-vm-tools , which I hope are not related but could be, this message is repeating every 30 seconds:

Dec 12 18:08:42 monitor-01 vmsvc[1153]: [ warning] [guestinfo] Failed to get nic info.
Top
abrist
Red Shirt
Posts: 8334
Joined: Thu Nov 15, 2012 1:20 pm

Re: NRPE says "Host not allowed to talk to us"

Post by abrist »

kevinlong206 wrote:But that IP is indeed in the allowed_hosts file (the /24 of that subnet), and I have killed / restarted NRPE ( and even rebooted the server!) Also, this *is* the right path to the conf file, as verified by ps aux | grep nrpe .

# cat /etc/nagios/nrpe.cfg | grep allowed_hosts
allowed_hosts=10.20.11.0/24,127.0.0.1
It may be the right path, depending on your installation method:
1) From a repo - many distros install nagios/nrpe configs to /etc/nagios. If you installed from a repo this is the right path usually.
2) From source - our source installer installs to /usr/local/nagios/etc. If you installed nrpe from source, your nrpe.cfg should be here.

Additionally, do you start nrpe through xinetd or as a standalone daemon?
Former Nagios employee
"It is turtles. All. The. Way. Down. . . .and maybe an elephant or two."
VI VI VI - The editor of the Beast!
Come to the Dark Side.
Top
kevinlong206
Posts: 2
Joined: Thu Dec 12, 2013 8:55 pm

Re: NRPE says "Host not allowed to talk to us"

Post by kevinlong206 »

abrist wrote: It may be the right path, depending on your installation method:
1) From a repo - many distros install nagios/nrpe configs to /etc/nagios. If you installed from a repo this is the right path usually.
2) From source - our source installer installs to /usr/local/nagios/etc. If you installed nrpe from source, your nrpe.cfg should be here.

Additionally, do you start nrpe through xinetd or as a standalone daemon?
Thanks Abrist - I was sure it was the right path because I can see in the ps aux|grep nrpe output, the -c /etc/nagios/nrpe.cfg argument is in the commandline of the running process.

I resolved the issue by installing nrpe v 2.14 from source, the package that was uninstalled previously was 2.12 in the Version: 2.12-4ubuntu3 package.

Regards,
Kevin
Top
tmcdonald
Posts: 9117
Joined: Mon Sep 23, 2013 8:40 am

Re: NRPE says "Host not allowed to talk to us"

Post by tmcdonald »

So is your issue fully resolved?
Former Nagios employee
Top
Locked

Return to “Open Source Nagios Projects”