Nagios Support Forum

Hi. I have a couple of questions regards antivirus on the Nagios XI server:

Are there certain things (processes \ folders \ files) on the Nagios XI server that should be excluded from antivirus protection?

Are there are any known issues running Sophos on the Nagios XI server?

Hi,

We haven't had any reports of problems due to Sophos.

There isn't anything Nagios related that needs to be excluded from
anti-virus software.

Is there anything else that you need help with?

Thanks

Are there no best practices around anti virus exclusions for Nagios?

Foe example when running active checks exclude the libexec directory as it contains the plugins, the nrpe daemon etc..

Hi Tony,

We have a general guide on the ports and protocols used by Nagios XI to assist with configuration.

Nagios XI Ports and Protocals

We usually recommend leveraging a test server in these cases to determine the impact of the application and then working with your security team on the proper settings. With each Nagios XI license, 3 activations are allowed: production, test, and backup. For situations like this, it's really beneficial to test out any changes or upgrades, before deploying them to the production instance.

Regards,
Benjamin

Benjamin

That did not answer my query regarding are there any best practices for anti virus exclusions

Hi Tony,

While we are not experts in Sophos, I'd be happy to answer any product-specific questions you have on getting this set up in your environment. My recommendation would be to set a test instance and then try to work out any issues by adding exclusions as necessary. We currently do not maintain official guides on how to set up third-party Antivirus applications in Nagios XI.

The two main installation directories for Nagios XI are below. Best Regards,
Benajmin