Dushyant Gupta Dushyant Gupta - 5 months ago 85
Linux Question

CHECK_NRPE: Error - Could not complete SSL handshake

I have NRPE daemon process running under xinetd on amazon ec2 instance and nagios server on my local machine.

The

check_nrpe -H [amazon public IP]
gives this error:

CHECK_NRPE: Error - Could not complete SSL handshake.


Both Nrpe are same versions. Both are compiled with this option:

./configure --with-ssl=/usr/bin/openssl --with-ssl-lib=/usr/lib/i386-linux-gnu/


"allowed host" entry contains my local IP address.

What could be the possible reason of this error now??

Answer

To check if you have access to it at all attempt a simple telnet on the address:port, a ping or traceroute to see where it is blocking.

telnet IP port
ping IP
traceroute -p $port IP

Also check on the target server that the nrpe daemon is working properly.

netstat -at | grep nrpe

You also need to check the versions of OpenSSL installed on both servers, as I have seen this break checks on occasion with the SSL handshake!

Comments