|
| From: | Chuck Charleston |
| Subject: | Re: SSL Error | Handshake Failure |
| Date: | Mon, 8 Feb 2016 13:36:48 -0500 |
Please check monit log and try to run monit in debug mode:monit -vIsend the whole output, there was probably some problem with starting the httpd thread (you can send it to address@hidden if you don't want to uncover the configuration.Regards,MartinOn 08 Feb 2016, at 19:16, Chuck Charleston <address@hidden> wrote:Well monit is running but nothing is listening on port 2812netstat -plnt | grep 2812Returns nothing.Port 2812 is open in the firewall (CSF). I also tried disabling csf completely and it made no difference.Regards,Chuck--On 8 February 2016 at 12:35, Russell Simpkins <address@hidden> wrote:did you confirm you can connect using telnet and that the something is listening on 2812 e.g. lsof -i:2812On Mon, Feb 8, 2016 at 12:15 PM, Chuck Charleston <address@hidden> wrote:Hi Martin,I have tried as you suggested and reloaded monit but unfortunately, still receive the error: Cannot create socket to [localhost]:2812 -- Connection refusedRegards,ChuckOn 8 February 2016 at 11:56, Martin Pala <address@hidden> wrote:The "use addres 127.0.0.1" makes monit listen only on the loopback interface ... the "allow mmonit.server.ip" has no effect, as M/Monit won't be able to reach Monit's httpd.I suggest to change the configuration like this (remove "use address 127.0.0.1"):--8<--set httpd port 2812SSL enablepemfile /var/certs/monit.pemallowselfcertificationallow mmonit.server.ip #note: allow access from M/Monitallow 127.0.0.1 #note: allow access for monit CLIallow user:pass--8<--Monit will then listen on all interfaces, so it can be reached both from the M/Monit host and localhost.Please make sure to do "monit reload" after the configuration change.Regards,MartinOn 08 Feb 2016, at 15:29, Chuck Charleston <address@hidden> wrote:Hi Martin,I have done that now and reloaded monit, but the issue persists.Regards,Chuck--On 8 February 2016 at 09:16, Martin Pala <address@hidden> wrote:just add "allow 127.0.0.1" to the list of allow optionsRegards,MartinHi Martin,Here it is.set mmonit https://user:address@hidden:8443/collectorset httpd port 2812 and use address 127.0.0.1SSL enablepemfile /var/certs/monit.pemallowselfcertificationallow mmonit.server.ipallow user:passThis is on a Centos 7 cPanel DNSonly server.Regards,ChuckOn 8 February 2016 at 04:56, Martin Pala <address@hidden> wrote:Hi,
please send the "set httpd" statement from your monit configuration file include "allow" options (obfuscate credentials if any).
Regards,
Martin
> On 07 Feb 2016, at 22:59, Chuck Charleston <address@hidden> wrote:
>
> Hi Tino,
>
> Thanks for that! I have fixed it now and it is communicating with M/Monit fine. I now however have another error when running monit status:
>
> Cannot create socket to [127.0.0.1]:2812 -- Connection refused
>
> Same thing if I use the actual external IP or hostname. Never had this issue before so a bit strange though Monit seems to be working fine and I do not use the actual web interface for Monit since I have M/Monit.
>
> I'll keep digging into it but weird that it comes up.
--
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
--
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
--
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
--
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
--
To unsubscribe:
https://lists.nongnu.org/mailman/listinfo/monit-general
| [Prev in Thread] | Current Thread | [Next in Thread] |