root/src/noit.conf.in

Revision 77839b5c0f911e44c7aa25841863b125bab6f6c0, 7.9 kB (checked in by Theo Schlossnagle <jesus@omniti.com>, 8 months ago)

Support a backing file for 512/1024 computed dhparams.
This can save significant CPU on startup.

  • Property mode set to 100644
Line 
1 <?xml version="1.0" encoding="utf8" standalone="yes"?>
2 <noit lockfile="/var/run/noitd.lock" text_size_limit="512">
3   <!-- <watchdog glider="/opt/gimli/bin/glider" tracedir="/var/log/noitd.crash"/> -->
4   <eventer>
5     <config>
6       <default_queue_threads>10</default_queue_threads>
7       <default_ca_chain>%sysconfdir%/default-ca-chain.crt</default_ca_chain>
8       <ssl_dhparam512_file>%sysconfdir%/dhparam512.txt</ssl_dhparam512_file>
9       <ssl_dhparam1024_file>%sysconfdir%/dhparam1024.txt</ssl_dhparam1024_file>
10     </config>
11   </eventer>
12   <logs>
13     <log name="internal" type="memory" path="10000,100000"/>
14     <console_output>
15       <outlet name="stderr"/>
16       <outlet name="internal"/>
17       <log name="error"/>
18       <log name="debug" disabled="true"/>
19     </console_output>
20     <feeds>
21       <log name="feed" type="jlog" path="/var/log/noitd.feed(stratcon)"/>
22     </feeds>
23     <components>
24       <error>
25         <outlet name="error"/>
26         <log name="error/collectd"/>
27         <log name="error/ganglia"/>
28         <log name="error/dns"/>
29         <log name="error/eventer"/>
30         <log name="error/external"/>
31         <log name="error/lua"/>
32         <log name="error/mysql"/>
33         <log name="error/ping_icmp"/>
34         <log name="error/postgres"/>
35         <log name="error/selfcheck"/>
36         <log name="error/snmp"/>
37         <log name="error/ssh2"/>
38         <log name="error/statsd"/>
39       </error>
40       <debug>
41         <outlet name="debug"/>
42         <log name="debug/collectd" disabled="true"/>
43         <log name="debug/ganglia" disabled="true"/>
44         <log name="debug/dns" disabled="true"/>
45         <log name="debug/eventer" disabled="true"/>
46         <log name="debug/external" disabled="true"/>
47         <log name="debug/lua" disabled="true"/>
48         <log name="debug/mysql" disabled="true"/>
49         <log name="debug/ping_icmp" disabled="true"/>
50         <log name="debug/postgres" disabled="true"/>
51         <log name="debug/selfcheck" disabled="true"/>
52         <log name="debug/snmp" disabled="true"/>
53         <log name="debug/ssh2" disabled="true"/>
54         <log name="debug/statsd" disabled="true"/>
55       </debug>
56     </components>
57     <feeds>
58       <config><extended_id>off</extended_id></config>
59       <outlet name="feed"/>
60       <log name="check"/>
61       <log name="delete"/>
62       <log name="status"/>
63       <log name="metrics"/>
64       <log name="bundle"/>
65       <log name="config"/>
66     </feeds>
67   </logs>
68   <modules directory="%modulesdir%">
69     <loader image="lua" name="lua">
70       <config><directory>%modulesluadir%/?.lua</directory></config>
71     </loader>
72     <module image="selfcheck" name="selfcheck"/>
73     <module image="ping_icmp" name="ping_icmp"/>
74     <module image="dns" name="dns"/>
75     <module image="ssh2" name="ssh2"/>
76     <module image="httptrap" name="httptrap"/>
77     <module image="statsd" name="statsd"/>
78     <module image="ganglia" name="ganglia"/>
79     <module loader="lua" name="varnish" object="noit.module.varnish"/>
80     <module loader="lua" name="http" object="noit.module.http"/>
81     <module loader="lua" name="resmon" object="noit.module.resmon"/>
82     <module loader="lua" name="smtp" object="noit.module.smtp"/>
83     <module loader="lua" name="ntp" object="noit.module.ntp"/>
84     <module loader="lua" name="dhcp" object="noit.module.dhcp"/>
85     <module loader="lua" name="pop3" object="noit.module.pop3"/>
86     <module loader="lua" name="monit" object="noit.module.monit"/>
87     <jezebel>
88       <config><url>http://127.0.0.1:8083/dispatch</url></config>
89       <module loader="lua" name="jmx" object="noit.module.jezebel"/>
90       <module loader="lua" name="snmp" object="noit.module.jezebel"/>
91     </jezebel>
92     <generic image="check_test" name="check_test"/>
93     <generic image="lua" name="lua_web">
94       <config>
95         <directory>%modulesluadir%/?.lua</directory>
96         <dispatch>web</dispatch>
97       </config>
98     </generic>
99     <generic image="ip_acl" name="ip_acl"/>
100   </modules>
101   <listeners>
102     <sslconfig>
103       <optional_no_ca>false</optional_no_ca>
104       <certificate_file>%sysconfdir%/%PKIPREFIX%noit.crt</certificate_file>
105       <key_file>%sysconfdir%/%PKIPREFIX%noit.key</key_file>
106       <ca_chain>%sysconfdir%/%PKIPREFIX%ca.crt</ca_chain>
107     </sslconfig>
108     <consoles type="noit_console">
109       <listener address="/tmp/noit">
110         <config>
111           <line_protocol>telnet</line_protocol>
112         </config>
113       </listener>
114       <listener address="*" port="32322">
115         <config>
116           <line_protocol>telnet</line_protocol>
117         </config>
118       </listener>
119       <listener address="*" port="32323" ssl="on"/>
120     </consoles>
121     <listener type="control_dispatch" address="*" port="43191" ssl="on">
122       <config>
123         <log_transit_feed_name>feed</log_transit_feed_name>
124         <document_root>%datarootdir%/noit-web</document_root>
125       </config>
126     </listener>
127     <listener type="http_rest_api" address="*" port="8888" ssl="off">
128       <config>
129         <document_root>%datarootdir%/noit-web</document_root>
130       </config>
131     </listener>
132   </listeners>
133   <rest>
134     <acl>
135       <rule type="allow" />
136     </acl>
137   </rest>
138   <checks filterset="default"
139           resolve_rtype="prefer-ipv4"
140           transient_min_period="1000" transient_period_granularity="500">
141     <config xmlns:ip_acl="noit://module/ip_acl">
142       <ip_acl:global/>
143     </config>
144     <check uuid="f7cea020-f19d-11dd-85a6-cb6d3a2207dc" module="selfcheck" target="127.0.0.1" period="5000" timeout="4000"/>
145     <check uuid="1b4e28ba-2fa1-11d2-883f-b9b761bde3fb" module="ping_icmp" target="8.8.8.8" period="15000" timeout="14000"/>
146     <check uuid="9bccffcf-fee8-4885-987a-faa10f16e724" module="ganglia" target="127.0.0.1" period="15000" timeout="14000"/>
147     <dc1 timeout="30000" period="60000" transient_min_period="10000">
148       <icmp module="ping_icmp">
149         <check uuid="1b4e28ba-2fa1-11d2-883f-b9a761bde3fb" target="66.225.209.7"/>
150       </icmp>
151       <web module="http">
152         <config xmlns:ip_acl="noit://module/ip_acl">
153           <ip_acl:sample/>
154         </config>
155         <check uuid="1b4e28ba-2fa1-11d2-883f-b9a761bde3aa" target="labs.omniti.com">
156           <config>
157             <url>https://labs.omniti.com/</url>
158             <code>200</code>
159           </config>
160         </check>
161         <check uuid="1b4e28ba-2fa1-11d2-883f-b9a761bde3ff" target="taskman.omniti.com">
162           <config>
163             <url>https://taskman.omniti.com/</url>
164             <code>200</code>
165           </config>
166         </check>
167       </web>
168       <resmon module="resmon" period="30000">
169         <check uuid="1b4e28ba-2fa1-11d2-883f-b9a761bde3fd" timeout="2000" target="10.225.209.36"/>
170       </resmon>
171       <switches module="snmp" period="60000">
172         <config inherit="SwitchPortX"/>
173         <switch target="10.1.2.3">
174           <check uuid="1b4e28ba-2fa1-11d2-883f-e9b761bde3fb" name="switchport::1"/>
175           <check uuid="1b4e28ba-3fa1-11d2-883f-e9b761bde3fb" name="switchport::2"/>
176           <check uuid="1b4e29ba-3fa1-11d2-883f-e9b761bde3fb" name="switchport::3"/>
177           <check uuid="4deb0724-ccee-4360-83bc-255e7b9d989d" name="switchport::4"/>
178         </switch>
179       </switches>
180       <disk module="snmp" period="60000">
181         <config inherit="disk"><community>test</community></config>
182         <check target="127.0.0.1" uuid="16eb9194-cbf4-11de-8fba-031dd96e4057" name="disk::1" />
183       </disk>
184     </dc1>
185     <check uuid="002d58ff-20ff-4db0-9420-782fc1748dc4" module="ssh2" target="git.github.com" period="60000" timeout="4000"/>
186     <check uuid="ff4f1de8-a405-11e1-8770-9347de0fce85" module="statsd" target="127.0.0.1" period="60000" timeout="59999"/>
187   </checks>
188   <filtersets>
189     <filterset name="default">
190       <rule type="deny" module="^ping_icmp$" metric="^(?:minimum|maximum|count)$" />
191       <rule type="allow"/>
192     </filterset>
193   </filtersets>
194   <config_templates>
195     <include file="config_templates.conf"/>
196   </config_templates>
197   <acls>
198     <acl name="global">
199       <rule type="deny">8.8.38.0/24</rule>
200     </acl>
201     <acl name="sample">
202       <rule type="deny">66.225.209.0/24</rule>
203     </acl>
204   </acls>
205 </noit>
Note: See TracBrowser for help on using the browser.