Page MenuHomePhabricator

Strongswan Icinga check: do not report issues about depooled hosts
Open, MediumPublic

Description

Hosts with long running issues such as those described in T148891 currently affecting cp1052 cause the icinga check script for strongswan to report lots of critical errors. We do not want those errors to be reported when the machine is depooled.

Event Timeline

ema created this task.Oct 24 2016, 2:59 PM
Restricted Application added a project: Operations. · View Herald TranscriptOct 24 2016, 2:59 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
ema triaged this task as Medium priority.Oct 24 2016, 2:59 PM
Dzahn added a subscriber: Dzahn.Oct 24 2016, 6:57 PM

fwiw, i saw these in Icinga web-ui but icinga-wm was apparently not talking about them on IRC, but i did not see "disabled notifications" or ACKs in the web ui. then i ACKed them all and it said that on IRC, that was a bit strange.

BBlack moved this task from Triage to General on the Traffic board.Oct 24 2016, 11:48 PM
ema added a comment.Jul 19 2017, 1:22 PM

Icinga external commands include SCHEDULE_SVC_DOWNTIME, which seems handy. We could perhaps try writing a script that issues a SCHEDULE_SVC_DOWNTIME for the IPSec service for each host defined in the role::ipsec targets array?