monit-general
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: HTTP: allowing a whole network to view the

From: Jan-Henrik Haukeland
Subject: Re: HTTP: allowing a whole network to view the
Date: Fri, 17 Oct 2003 01:51:38 +0200
User-agent: Gnus/5.1002 (Gnus v5.10.2) XEmacs/21.4 (Reasonable Discussion, linux) 
Guy <address@hidden> writes:

> Monit web page. i would like to know how to configure monit in order
> to allow the web page to be accessed by every machine on the network.

If you simply want the server to be accessible for all hosts do _not_
set the bind address for the server (or at least do not set it to
localhost). Use a statement like this:

set httpd port 2812 
    allow localhost       
    allow host1       
    allow host2       
    allow host3
    ...

You must define the host allowed to connect to the monit httpd server,
using several "allow host" statement as shown above. Unfortunately you
must specify each host on a line by itself, monit does _not_ support
wildcard ip-addresses such as "allow 193.12.44.*"

An alternative to "allow host" is to use basic authentication only,
then any host can connect to the monit httpd as long as the client
supply the correct username:password. If you choose this solution you
should run the monit httpd server over SSL (as shown below). If not
passwords will be transported over the network in cleartext (base64
encoded).
       
set httpd port 2812 
    enable SSL pemfile /etc/cert/monit.pem 
    allow admin:secret # Allow Basic Auth
    allow foo:bar      # Allow Basic Auth

You must select one of these authentication schemas or you can mix
them as described in the documentation. The last example is probably
the easiest and can save you a lot of "allow host" typing.

Cheers!
-- 
Jan-Henrik Haukeland
reply via email to
[Prev in Thread] Current Thread [Next in Thread]