Check_Nt checks work but check_NRPE ones don't
Posted: Wed Feb 24, 2021 11:45 am
We have Nagios XI version 5.6.14 installed on a Red Hat system (RH 7.9) with a two node MySQL cluster (also RH 7.9). I have some servers where the checks using check_nt are functioning fine, but ones that use check_nrpe are not. Those have the error: CHECK_NRPE: Error - Could not connect to 172.x.x.x. Check system logs on 172.x.x.x.
These servers (which are Windows) show the following entries in the nsclient log:
error:c:\source\master\include\socket/connections.hpp:271: Please review the insecure options as well as ssl options in settings.
error:c:\source\master\include\socket/connections.hpp:270: Seems we cant agree on SSL: no shared cipher
These servers are in a DMZ, but #1 - we have other servers in the same DMZ where both types of checks ARE working. And #2 - we have verified with our firewall team that both ports 5666 and 12489 are open for the servers in question.
Not quite sure where to go from here.
These servers (which are Windows) show the following entries in the nsclient log:
error:c:\source\master\include\socket/connections.hpp:271: Please review the insecure options as well as ssl options in settings.
error:c:\source\master\include\socket/connections.hpp:270: Seems we cant agree on SSL: no shared cipher
These servers are in a DMZ, but #1 - we have other servers in the same DMZ where both types of checks ARE working. And #2 - we have verified with our firewall team that both ports 5666 and 12489 are open for the servers in question.
Not quite sure where to go from here.