|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
950dc8a |
=Custom in Fedora/EPEL=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
==Pinger files==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
Since /tmp is not a good place to spool files, the pinger files shall now reside
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
in /var/lib/zabbixsrv/tmp. This directory is automatically created and proxy and
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
server configuration files are changed accordingly from 2.0.8 on.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
a6b4c61 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==Web configuration==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
b5dcec3 |
Web configuration resides in /etc/zabbix/web. The configuration file can be
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
b5dcec3 |
created manually or by walking through the frontend setup tool, as soon as your
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
b5dcec3 |
httpd configuration allows. The directory also contains maintenance.inc.php!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==Log files==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
Log files are located in /var/log/zabbix for the agent and /var/log/zabbixsrv.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
for server and proxy.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==No htaccess files==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
Fedora ships an Apache configuration file instead. This solutions performs
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
better and is easier to maintain.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==Two users and groups==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
There's a certain security risk involved, running agent and proxy/server as the
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
same user. This package therefore introduces an additional zabbixsrv user, used
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
for proxy and server. Please check the permissions of your scripts and group
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
memberships, if necessary.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==Using the Alternatives system instead of conflicting sub-packages==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
You can now install Zabbix proxies or servers compiled for different database
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
back-ends on the same system. While this is not intended to happily switch back
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
and forth, it allows you to:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
- Stop the daemon
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
- "Run alternatives --config zabbix-server" or
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
"alternatives --config zabbix-proxy"
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
- Make your choice
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
- If you're using systemd, run systemctl reload
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
- Adjust the configuration file
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
- Start the daemon
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
- In some cases you have to use "restart" instead of "start".
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
The reason is not yet clear to me.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
"Alternatives" considers the first installed implementation of server or proxy as
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
default, respectively.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
Don't forget to reconfigure the front-end when you switch the server to a
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
different DB implementation!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
==How to run multiple instances of a Zabbix daemon with init scripts==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
If you want to run multiple instances on the same host, do the following:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Copy or symlink the init scripts
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- Create a file of the same name as the new init script in /etc/sysconfig
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- Define CFG_FILE="</path/to/daemon_config_file>" in this file
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- Create the file defined as CFG_FILE and adjust settings; in particular:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- DB settings if you set up multiple instances of server and proxy daemons;
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
IMPORTANT: Two daemons using the same database at the same time could act
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
destructive!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- PidFile
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- ListenPort and/or ListenIP, if you plan for simultaneous operation;
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
Don't forget to review your firewall settings!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- LogFile, if you don't use syslog
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- Optionally run the following to register the new instance as a service and
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
start it up automatically:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
chkconfig --add <init_script_name>
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
chkconfig <init_script_name> on
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
- service <init_script_name> start
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
9738113 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==Configuration changes==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
Zabbix 2.0 and later place configuration files directly in /etc. Symlinks preserve
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
compatibility. maintenance.inc.php moved from /usr/share/zabbix/conf to
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
/etc/zabbix/web. Be careful not to replace the symlinks with files by mistake,
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
as the agent will not pick them up!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
907930f |
==Media scripts and external scripts==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
907930f |
The directories for external scripts and media scripts have moved to
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
907930f |
/var/lib/zabbixsrv. Symlinks preserve compatibility.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
/var/lib/zabbix is now intended for scripts run by the agent. Please move your
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
server or proxy scripts to /var/lib/zabbixsrv. Be sure to check permissions and
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
ownership.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
0080f2e |
==No Java bridge==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/0b2750e4294f64ba21799a0c943b16696b8a8d6bb1286fd347db9107652eaf6f?s=16&d=retro) |
e704152 |
The Zabbix Java bridge can not be included now, due to missing dependencies.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
=SELinux=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
The settings necessary for you vary, depending on how you set up your system/s.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
Most of the time, the only adjustments necessary should be on the machine that
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
holds the frontend:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
#Allow to connect the frontend to a database by other means than sockets
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
setsebool -P httpd_can_network_connect_db 1
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
#Allow the frontend to create a connection to the server listening port
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
#That's the check the frontend uses to see whether the server is running.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
#This option effectively supersedes the previous
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
setsebool -P httpd_can_network_connect 1
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
Using sebools is a somewhat coarse method of allowing things.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
A more fine-grained approach for the latter would be to grab an actual
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
avc denial from the audit log, pipe it through audit2allow, put it in a
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
module package and load that:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
echo "avc: denied { name_connect } for pid=20619 comm="httpd" dest=10051 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:zabbix_port_t:s0 tclass=tcp_socket" | audit2allow -M zabbix_conn_httpd; sudo semodule -i zabbix_conn_httpd.pp
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
If you're using ping from the frontend:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
cacc717 |
echo "avc: denied { setpgid } for pid=31880 comm="zabbix_server_p" scontext=system_u:system_r:zabbix_t:s0 tcontext=system_u:system_r:zabbix_t:s0 tclass=process" | audit2allow -M zabbix_ping_frontend; sudo semodule -i zabbix_ping_frontend.pp
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/0b2750e4294f64ba21799a0c943b16696b8a8d6bb1286fd347db9107652eaf6f?s=16&d=retro) |
e704152 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
=Additional packaging changes in Fedora/EPEL since 3.0=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
==Configuration files contain the actual defaults==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
Previously, the defaults in the config file were replaced by settings that
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
are suitable for Fedora. For non-mandatory settings, the daemon would default
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
to the hardcoded setting though, which is confusing. To make this
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
obvious, the original default settings are left in place and additional lines
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
added instead.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
==Daemons are running in the foreground mode==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
Systemd is more happy with this and it also solves the problem for the pidfile
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
setting, described in BZ #1220392. It is related to the above-mentioned.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
==Minimal PHP configuration==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
The httpd configuration contains the minimal settings necessary to operate
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
the frontend. Please refer to the manual for details:
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
https://www.zabbix.com/documentation/3.0/manual/installation/install
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
Make sure to review these settings!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
bdd9ab7 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
=Additional packaging changes in Fedora/EPEL since 2.0=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==Zabbix 2.2 conflicts 1.8 and 2.0==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
Please see the below section for the reason!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==Agent init script/unit file name==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
For the sake of consistency between distributions, the agent init script,
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
respectively the systemd unit file, was renamed to zabbix-agentd -- mind the
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
trailing "d"! Symlinks with the old names are in place. Keep in mind, if
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
you created a configuration file in /etc/sysconfig, the sourced file must
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
the name of the init script you invoke! Consequently, if you decide to use
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
zabbix-agentd in the future, copy or symlink this file.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==zabbixsrv now has its own user group==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
zabbixsrv used to be a member of the zabbix user group. Completely fresh
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
installations will create the zabbixsrv group and assign it as the primary
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
group. If the user zabbixsrv already exists (upgrade from 2.0), the user group
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
is replaced.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==Log and lock file locations, group membership==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
All logs used to be in /var/log/zabbix. With zabbixsrv having its own
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
user group, the logs are now split between /var/log/zabbix for the agent and
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
/var/log/zabbixsrv for server and proxy.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
=Additional packaging changes in Fedora/EPEL since 1.8=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
==Zabbix 2.0 packages conflict Zabbix 1.8; 2.2 conflicts 1.8 and 2.0==
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
This measure was taken because this major version introduces various database
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
schema changes. A silent update would render Zabbix non-operational and possibly
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
break the database. Besides that, Zabbix 2.0/2.2 server only works with the
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
respective major versions of servers and proxies. Distributed setups must
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
therefore be updated at the same time to keep working.
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
http://www.zabbix.com/documentation/2.0/manual/appendix/compatibility
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
http://www.zabbix.com/documentation/2.2/manual/appendix/compatibility
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
--------------------------------------------------------------------------------
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
083fd6f |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
=Guide for upgrading to 2.2 from 2.0=
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
https://www.zabbix.com/documentation/2.2/manual/installation/upgrade
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
https://www.zabbix.com/documentation/2.2/manual/installation/upgrade_notes_220
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
Be sure to read the upgrades notes of the latest minor release too!
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Review all rpmnew and rpmsave files; merge where necessary
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Review permissions, ownerships and group memberships for zabbixsrv
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Migrate server and proxy logs to the new location, if you want
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Back up the Zabbix database (really!)
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Remove custom database changes, if any
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Make sure the database user has sufficing permissions
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
(ALTER TABLE, DROP INDEX, DROP TABLE, ...)
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Start the server
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
- Check the server log for progress and possible errors
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
The schema conversion should finish within minutes or hours
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
|
|
![](https://seccdn.libravatar.org/avatar/8edfe8b96f1aba01c7b005b9cd2e4604bdbaae6d3438ef0ef43807c53c4944d2?s=16&d=retro) |
5ec74b3 |
Volker Fröhlich volker27@gmx.at Jan 5 2013
|