Page 1 of 1
Tripwire and nagios
Posted: Sat May 09, 2015 9:02 am
by giuseppe92
hello guys , I recently started using nagiosCore .
I wanted to know if it is possible to integrate NagiosCore with Tripwire .
for example if there was a fault in a host where you installed tripwire , it should notify the nagios server and the server should notify the administrator.
ps:Sorry for my english
Re: Tripwire and nagios
Posted: Sun May 10, 2015 10:45 pm
by Box293
There are several methods how you could do this.
If you wanted the host that has Tripwire installed to notify Nagios, this would be a passive check.
Nagios can listen to passive checks using NSCA, NRDP or SNMP Traps.
I also noticed on the Nagios Exchange some checks for Tripwire that indicate there is some sort of central Tripwire server. You could configure Nagios to use one of these plugins as an active check.
http://exchange.nagios.org/index.php?op ... d=tripwire
Does this help at all?
Re: Tripwire and nagios
Posted: Mon May 11, 2015 9:49 am
by giuseppe92
ok.
If I used this plugin
http://exchange.nagios.org/directory/Pl ... ol/details ,I should install it on server with Nagios and create a command to invoke it(every minute for example);
on host with tripwire should I do something ?
Re: Tripwire and nagios
Posted: Mon May 11, 2015 1:25 pm
by ssax
Those plugins look to be the same and the requirements for them are:
1. You need to setup your tripwire server to send snmp traps to your Nagios Core server.
2. Your Nagios Core service check for your tripwire server would then call check_tripwire.pl
It looks like it just reads your trap log (defined in the script, on your Nagios Core box) and it outputs an ordered alphabetic list of hosts for which tripwire has detected a violation.
If you wanted it to do active checks that query each host or your tripwire server you would probably have to write your own plugin, we do offer customized development, if you're interested you can email
[email protected].
Re: Tripwire and nagios
Posted: Mon May 11, 2015 4:10 pm
by giuseppe92
ssax wrote:
2. Your Nagios Core service check for your tripwire server would then call check_tripwire.pl
I must first configure SNMP Manager on the Nagios server, and then create a command to check_tripwire.pl, right?
there is documentation to configure it or a particular plugin?
Re: Tripwire and nagios
Posted: Mon May 11, 2015 4:49 pm
by ssax
Should be able to use this guide for setting it up, I know it says it's for XI but I tested and it works for Core as well.
http://assets.nagios.com/downloads/nagi ... ios_XI.pdf
Then you would point the check_tripwire.pl script to the /var/log/snmptt/snmptt.log file.
Re: Tripwire and nagios
Posted: Sat May 16, 2015 3:49 am
by giuseppe92
OK thanks.