Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bodsch/ansible-icinga2

ansible role to deploy an Icinga2 master or satellite. supports HA for both components
https://github.com/bodsch/ansible-icinga2

ansible automation cluster icinga2 icinga2-master icinga2-satellite monitoring

Last synced: 4 days ago
JSON representation

ansible role to deploy an Icinga2 master or satellite. supports HA for both components

Awesome Lists containing this project

README 

        

# Ansible Role:  `icinga2`



Ansible role to setup Icinga2 master or satellite.



---



> I am in the process of transferring this role to a [collection](https://github.com/bodsch/ansible-collection-icinga) and will therefore no longer process any issues or merge requests here.  

> However, I will include them in the collection!  

> **Please be patient until I have completed the work!**



---



[![GitHub Workflow Status](https://img.shields.io/github/actions/workflow/status/bodsch/ansible-icinga2/main.yml?branch=main)][ci]

[![GitHub issues](https://img.shields.io/github/issues/bodsch/ansible-icinga2)][issues]

[![GitHub release (latest by date)](https://img.shields.io/github/v/release/bodsch/ansible-icinga2)][releases]

[![Ansible Quality Score](https://img.shields.io/ansible/quality/50067?label=role%20quality)][quality]



[ci]: https://github.com/bodsch/ansible-icinga2/actions

[issues]: https://github.com/bodsch/ansible-icinga2/issues?q=is%3Aopen+is%3Aissue

[releases]: https://github.com/bodsch/ansible-icinga2/releases

[quality]: https://galaxy.ansible.com/bodsch/icinga2



## Requirements & Dependencies



Ansible Collections



- [bodsch.core](https://github.com/bodsch/ansible-collection-core)



```bash

ansible-galaxy collection install bodsch.core

```

or

```bash

ansible-galaxy collection install --requirements-file collections.yml

```



Python Module



- dnspython



### Operating systems



Tested on



* ArchLinux

* Debian based

    - Debian 10 / 11

    - Ubuntu 20.04

* RedHat based

    - Alma Linux 8

    - Rocky Linux 8

    - OracleLinux 8



## Contribution



Please read [Contribution](CONTRIBUTING.md)



## Development,  Branches (Git Tags)



The `master` Branch is my *Working Horse* includes the "latest, hot shit" and can be complete broken!



If you want to use something stable, please use a [Tagged Version](https://github.com/bodsch/ansible-icinga2/tags)!



## Credits



- [Michael Friedrich](https://gitlab.com/dnsmichi)

- [Nicolai Buchwitz](https://github.com/nbuchwitz)

- [Julien Tognazzi](https://github.com/jtognazzi)

- [Carsten Köbke](https://github.com/Mikesch-mp)

- [Jo. Fiedler](https://github.com/jofiedler)

- and many others to make icinga2 what it is



---



Please read the following documention for configuration points.



## Documentation



- [Features](doc/09-features.md)

- [API Users](doc/10-api-users.md)

- [groups](doc/11-groups.md)

- [apply rules](doc/12-apply-rules.md)

- [downtimes](doc/13-downtimes.md)

- [check commands](doc/14-checkcommands.md)

- [master](doc/15-master.md)

- [satellite](doc/16-satellite.md)

- [Backup and Restore](doc/20-backup-restore.md)



---



## Examples



A complete test setup can be found in the GitLab under [icinga2-infrastructure](https://gitlab.com/icinga2-infrastructure/deployment).



### Icinga2 Master



#### single-master



```yaml

---

- host: icinga-master

  vars:

    icinga2_ido:

      user: icinga2_ido

      password: icinga2_ido

      host: localhost

      cleanup:

        acknowledgements_age: 72h



    icinga2_api:

      user:

        icinga2:

          password: S0mh1TuFJI

          permissions: '*'



    icinga2_salt: 42T2fYT7bIxj5v291ajAW6kK0njvNMww8eWinBdEO5vh02xwC5qaNMMx77qNkYFE



    icinga2_masters:

      master-1.icinga.local:



    icinga2_host_object:

      master-1.icinga.local:

        endpoint_name: master-1.icinga.local

        zone: master

        display_name: master-1.icinga.local

        import: generic-host

        address: '{{ ansible_default_ipv4.address }}'

        vars: |

          os = "Linux"

          dist = "{{ ansible_distribution }}"

          dist_ver = "{{ ansible_distribution_version }}"

          disks = {

            "disk /" = {

              disk_partitions = "/"

            }

          }

          services = [ "uptime", "memory" ]



  roles:

    - role: icinga2

```



#### multi-master



```yaml

---

- host: icinga-master

  vars:

    icinga2_ido:

      user: icinga2_ido

      password: icinga2_ido

      host: localhost

      cleanup:

        acknowledgements_age: 72h



    icinga2_api:

      user:

        icinga2:

          password: S0mh1TuFJI

          permissions: '*'



    icinga2_salt: 42T2fYT7bIxj5v291ajAW6kK0njvNMww8eWinBdEO5vh02xwC5qaNMMx77qNkYFE



    icinga2_ha: true



    icinga2_masters:

      master-1.icinga.local:

        # type: primary

        ip: 192.168.130.20

        port: 5665

      master-2.icinga.local:

        ip: 192.168.130.21



  roles:

    - role: icinga2

```



### Icinga satellite



#### simple



```yaml

---

- host: icinga-master

  vars:

    icinga2_mode: satellite



    icinga2_salt: 42T2fYT7bIxj5v291ajAW6kK0njvNMww8eWinBdEO5vh02xwC5qaNMMx77qNkYFE



    icinga2_masters:

      master-1.icinga.local:



    icinga2_host_object:



      satellite-1.icinga.local:

        endpoint_name: satellite-1.icinga.local

        zone: "{{ icinga2_satellite_zone }}"

        display_name: satellite-1.icinga.local

        import: generic-host

        address: '{{ ansible_default_ipv4.address }}'

        vars: |

          os = "Linux"

          dist = "{{ ansible_distribution }}"

          dist_ver = "{{ ansible_distribution_version }}"

          satellite = true

          disks = {

            "disk /" = {

              disk_partitions = "/"

            }

          }

          services = [ "uptime" ]



  roles:

    - role: icinga2

```



#### multi satellite with zones



```yaml

---

- host: icinga-master

  vars:

    icinga2_mode: satellite



    icinga2_salt: 42T2fYT7bIxj5v291ajAW6kK0njvNMww8eWinBdEO5vh02xwC5qaNMMx77qNkYFE



    icinga2_masters:

      master-1.icinga.local:



    icinga2_satellites:

      zone1:

        satellite-1.icinga.local:

          ip: 192.168.130.30

        satellite-2.icinga.local:

          ip: 192.168.130.31



  roles:

    - role: icinga2

```



## tests



for testing



```bash

tox -e py38-ansible29 -- molecule



tox -e py38-ansible29 -- molecule -s icinga2-satellite

```



## Troubleshooting & Known issues



### API



```bash

export CURL_OPTS="--silent --insecure"

export ICINGA_CREDS="--user icinga2:S0mh1TuFJI"

export ICINGA_API_URL="https://master-1.icinga.local:5665/v1"

```



```bash

$ curl ${ICINGA_CREDS} ${CURL_OPTS} --header 'Accept: application/json' ${ICINGA_API_URL}/status/ApiListener | jq --raw-output ".results[].status.api.zones"

```



```bash

$ curl ${ICINGA_CREDS} ${CURL_OPTS} --header 'Accept: application/json' ${ICINGA_API_URL}/status/CIB | jq --raw-output '.results[].status.uptime'

```



```bash

$ curl ${ICINGA_CREDS} ${CURL_OPTS} --header 'Accept: application/json' ${ICINGA_API_URL}/status/ApiListener | jq --raw-output ".results[].status.api"

```



```bash

$ curl ${ICINGA_CREDS} ${CURL_OPTS} ${ICINGA_API_URL}/objects/hosts | jq

```



```bash

$ curl ${ICINGA_CREDS} ${CURL_OPTS} --header 'Accept: application/json' --header 'X-HTTP-Method-Override: GET' --request POST --data '{ "attrs": [ "name" ], "type": "Host", "filter": "host.name==\"master-1.icinga.local\"" }' ${ICINGA_API_URL}/objects/hosts

```



## License



BSD 2-clause