Running opnsense 19.1.8, I am trying to add sshd to Monit service monitoring. In the gui, the start and stop commands are required with the full path to the command. I've searched freebsd forums and tutorials, the /etc/rc.d commands don't work (can't even find rc.config), the 'service sshd start' commands aren't accepted.
May I ask for help, please? Thanks in advance!
Try:
# /usr/local/sbin/configctl sshd restart
More about configctl:
https://docs.opnsense.org/development/backend/configd.html (https://docs.opnsense.org/development/backend/configd.html)
hbc: Thank you!
This # /usr/local/sbin/configctl sshd restart didn't work because the default configd script is named openssh instead of sshd. But, by changing 'sshd' to 'openssh' , it worked.
I've never heard of configctl, that helped immensely. Thanks for you time!
Hi,
I built something for you:
# pluginctl -s
configd
dhcpd
dhcpd6
dnsmasq
dpinger
dyndns
flowd_aggregate
ipfw
login
ntpd
openssh
pf
radvd
samplicate
strongswan
syslog
unbound
# pluginctl -s openssh stop
Connection to 10.0.0.1 closed by remote host.
Connection to 10.0.0.1 closed.
It hooks into the service control functionality (start, stop, restart) that you can see on the GUI. It's a patch that will likely be in 19.1.9.
https://github.com/opnsense/core/commit/255e9b76
You can try it on 19.1.8 using this command:
# opnsense-patch 255e9b76
Cheers,
Franco
Franco, got a 'hunks failed' message when I attempted the patch:
sudo opnsense-patch 255e9b76
Password:
Fetched 255e9b76 via https://github.com/opnsense/core
1 out of 1 hunks failed while patching sbin/pluginctl
OPNsense 19.1.8-amd64
FreeBSD 11.2-RELEASE-p10-HBSD
LibreSSL 2.8.3
Oh, doesn't patch cleanly because of require header stuff....maybe fetch the raw file instead:
# cd /usr/local/sbin
# fetch https://raw.githubusercontent.com/opnsense/core/master/src/sbin/pluginctl
# chmod 755 pluginctl
Cheers,
Franco
That worked. I cat'd pluginctl, hoping that I understand correctly ??? . Testing today. Thanks!
Franco,
May I ask if you could explain the use of 'pluginctl -c' or '-s' (configure mode vs service mode)?
Aside from that I tried it at the command line using -s and it worked. Adding it to the monit config for unbound and openssh now.
Hi LouieLouie,
So configure mode (-c) is calling internal functions to reload the configuration and (all of its) services. Service mode (-s) simply starts stops or restarts a particular service without reconfiguring it.
-c without an argument gives you all possible reconfiguration "points" like bootup, local, remote, vpn where services can be clustered. These calls are all over the code to provide hooks to plugins.
-s without an argument gives you all configured services on the box for starting or stopping them manually (like you would in the GUI under System: Services).
Cheers,
Franco
I am trying to setup monit for unbound because it fails to start on boot (https://forum.opnsense.org/index.php?topic=13338.msg61301#msg61301)
root@router:~ # pluginctl -s
root@router:~ #
It doesn't return anything and pluginctl -s unbound start/stop/restart has no effect