First of all I would like to thank everyone who has helped me so far or will help me in the future ;).
I am facing the challenge of running several Windows clients behind a firewall.
I have already successfully implemented a script for Ifw with the Powershell on clients that are accessible to me via VPN.
But unfortunately this is not an option, there are simply too many clients in the field.
Do I have to install and configure the agent so that the client talks to my server? ?
I think I need the API Check Forwarder and have to activate it. I have already done that once. But I still haven’t managed to get the Clienet to log on to the server.
Creating the client on the server as a purely passive client without active checks is also clear.
How do I configure the checks on the client?
Does anyone have a tutorial on how I can best do this? Can we perhaps create something like this together in the community?
Am I completely barking up the wrong tree?
you can look into a icinga satellite setup. the satellite for example connects to the icinga master node via vpn and all the “clients” behind the firewall connect to the satellite.
If there are several different firewalls, something like multiple homeoffice setups, laptops, I would recommend passive checks and send them in via icingaweb2 passive check result api (agentless)
It would be good to know what the requirements are exactly…
I’ll put the requirement in more concrete terms.
The monitoring is to take place at different locations, with up to 100 clients per location.
The availability and hardware of the clients must be monitored.
Unfortunately, the client is not necessarily willing to allow additional clients (satellite rents). This still requires some convincing - you don’t have to understand that ;). So the first step is to monitor the individual clients. Since these are only Windows systems, I wanted to connect the clients to the server via “Icinga for Windows” and carry out passive checks.
The client was connected to the server via Powershellscript, which also works.
According to the documentation it is possible to do this. I have already made several attempts to solve this, but so far with moderate success.
I have basically followed the documentation and I think that it basically works.
I have the points:
Background Daemons - Installation
Collect Metrics over Time - Installation
API Check Forwarder
carried out.
I have switched off the active check.
However, the check is only executed once and then I had to start it manually again and again.
What am I doing wrong, or what do I need to change?
I will have to think about the implementation later
I have, by and large, a normal network.
In other words, there are no obstacles for monitoring that I could not have overcome.
The server listens publicly on the default port 5665.
In principle, I can also register clients, which also works.
Attached is the Powershell script I use.
What else do I have to adjust to ensure communication that I can communicate behind a router/firewall.
As I said, in order to establish a satellite, I first have to show success
Hello Liam,
yes, that with the satellites can be a possibility in the 2nd step.
I have at locations from one to XXX clients.
If there are several clients, I’ll go with you to install satellites there, but for now I have to connect clients directly.
So far I haven’t had any success with Ifw.
As I said, I can connect the player via the script, but what am I doing wrong that the client and the server are not communicating properly?