除了使用 htpasswd 設定密碼也保護 nagios 使用安全外,也可以使用 ip 來限制來源
1. 註解 Require all
# sed -i ‘s/Require all/#Require all/’ /etc/httpd/conf.d/nagios.conf[@more@]
2. 在後面插入二行
# sed -i -e ‘/#Require all/atRequire all deniedntRequire ip 192.168.1.0/24’ /etc/httpd/conf.d/nagios.conf
3. 查看設定
# cat /etc/httpd/conf.d/nagios.conf
ScriptAlias /nagios/cgi-bin/ “/usr/lib64/nagios/cgi-bin/”
<Directory “/usr/lib64/nagios/cgi-bin/”>
# SSLRequireSSL
Options ExecCGI
AllowOverride None
<IfVersion >= 2.3>
<RequireAll>
#Require all granted
Require all denied
Require ip 192.168.1.0/24
# Require host 127.0.0.1
AuthName “Nagios Access”
AuthType Basic
AuthUserFile /etc/nagios/passwd
Require valid-user
</RequireAll>
</IfVersion>
</Directory>
Alias /nagios “/usr/share/nagios/html”
<Directory “/usr/share/nagios/html”>
# SSLRequireSSL
Options None
AllowOverride None
<IfVersion >= 2.3>
<RequireAll>
#Require all granted
Require all denied
Require ip 192.168.1.0/24
# Require host 127.0.0.1
AuthName “Nagios Access”
AuthType Basic
AuthUserFile /etc/nagios/passwd
Require valid-user
</RequireAll>
</IfVersion>
</Directory>
4. 重新啟動 Web Server
# systemctl restart httpd.service