OPNsense Forum
English Forums => Documentation and Translation => Topic started by: errored out on April 29, 2021, 10:54:23 pm
-
I have been using your software for a few years, and when an announcement is made for an update / upgrade, the information provided is sparse. Can additional information be provided as to not only the changes being made, but how they are being by the developers. An Example is monit.
When I first started using opnsense 19.7.1, monit was a port. ( https://forum.opnsense.org/index.php?topic=13601.msg62671#msg62671 (https://forum.opnsense.org/index.php?topic=13601.msg62671#msg62671) ports: monit 5.26.0[7]) As much as I wanted to use this program, it did not have a way to secure it's interface; that's to say, it allowed non-authenticated users to access the information it provided (if memory servers).
Since that time, the port was integrated into the OS (19.7.3 https://forum.opnsense.org/index.php?topic=14011.msg64417#msg64417 (https://forum.opnsense.org/index.php?topic=14011.msg64417#msg64417) o monit: add parent devices to interface list (contributed by Frank Brendel))
As this is now "integrated", I can start to use this functionality as the issue of not being able to force authentication no longer exists.
In this announcement , there is no mention the port being integrated into the OS. Searching the OS documentation, there was also no mention. I was able to fine the changes here, . https://github.com/opnsense/docs/pull/91 (https://github.com/opnsense/docs/pull/91)
As I am sure many people review the announcements; but do not follow the documentation close enough to determine what parts have change and what said changes include. Can these changes be stated in the announcements as it will show in the pop-up before the update / upgrade is installed.
-
I believe it was in the announcement text that its core .. but no idea which version was it
-
Docs:
https://docs.opnsense.org/manual/monit.html
Announcements:
https://github.com/opnsense/changelog/blob/193c8e6be07c3a09870bc34dabbaad7095f03f8b/community/18.7/18.7.r1#L72
https://github.com/opnsense/changelog/blob/master/community/18.7/18.7#L27
Cheers,
Franco
Cheers,
Franco
-
The information provided is incorrect. I had posted last year this specific issues,
The M/Monit URL. https://user:pass@192.168.1.10:8443/collector. If you want to control Monit services from your M/Monit instance you have to configure the Monit Port too and add corresponding firewall rules as well.
I finally was able to start Monit HTTPD and access the page. Here is the issue, I am not able to use a secure connection. In advance mode, I first started Monit with http access. Then, after enabling "secure connection" I am not able to access Monit with https.
The "Secure Connection" is meant for the mail server connection to send notifications encrypted.
SSL for the Monit http service is not supported yet.
Also, does any know how to modify the configuration file manually? I only have found /usr/local/etc/monitrc. The file indicates it's autogenerated. I'm assuming any changes made would be wiped. The page for monit in the opnsense docs only point to monit documentation.
Yes it is auto generated. Please use the webinterface for configuration.
(/usr/local/etc/monitrc)
# DO NOT EDIT THIS FILE -- OPNsense auto-generated file
set httpd unixsocket /var/run/monit.sock port 2812
allow localhost
allow root:"XXXXXXXXXXXXXXXX"
allow testinguser:"testingpass"
set daemon 120 with start delay 120
Looks like a bug.
I'll take a look on this.
My posting from 2020 shows that that feature was not integrated as it is now. This can be seen where a users has to access monit by port 2812 and non-core url.
The github tickets show there were migration issues after version 18.
https://github.com/opnsense/core/pulls?q=monit+
monit: fix migration
#3661 by fbrendel was merged on Aug 21, 2019
Don't working migration for Monit on 19.7.
#3598 by kekek2 was closed on Jul 25, 2019
Monit, remove __items and fix migration issue
#3336 by fbrendel was merged on Mar 15, 2019
Also at the time of my 2020 post, monit was an optional plugin rather than included package under system:firmware.
As for the documentation, I know where it is located. I made reference to monit documentation not having any indication there was an issue to the program had migration issues / not being integrated effecting its usage.
Opnsense is impressive, I have moved from pfsense and will not being going back. I also do appreciate what you are building. What I am asking for is more communication in the announcements / documentation when you have issues (such as migration, in this case).
-
Any response?
-
From the looks of https://forum.opnsense.org/index.php?topic=16727.0 it looked like the discussion was resolved. Is that not so? I am unsure what you are asking.
Cheers,
Franco