Netdata installation

This is nice, i like it, installed it as well, i've tried to password protect it but that's not working very well, i know since im only able to connect via ip_address:19999 that in order to get it to connect on hostname:19999 then i'd need to add that acordingly to the nginx conf file, i believe this would be the virtual.conf since itll be on the hostname and then add authentication similar to how wp_cli with centminmod can add htaccess type password protection, however i cant get this to work, ill try again later

 

I would love to see an official centmin addon/option to install netdata with some protection. Its a wonderful tool.

 

@SFLC

If you install it at your domain public folder like /public/netdata/ then you can use your domain config to password protect it ....

If you use the /html/netdata/ default setup then you can use the default vhost config to password protect it

 

ya thats not working for me for some reason, seems to password protect the hostname itself and not the ip : port or hostname : port,

either way i cant get the hostname : port to work

 

What's not working for you, you should be able to get it up on ip : port, is hostname : port whats not working

 

Thanks @eva2000 is this supposed to go in the virtual.conf file under the conf.d dir, as i added it but still no go on the password protection

 

thanks @eva2000 works perfectly, just had to remove the deny all; because I didnt add my ip as it's not static.

Is there any way to block direct access to the serverip : 19999, as that's not password protected

 

I removed the port from tcp in allowed list in csf, i think thats achieving blocking directly form the ip

 

and also changed netdata.conf to bind to 127.0.0.1

Code:

# NetData Configuration
#
# To see defaults, grab one from your instance:
# http://localhost:19999/netdata.conf

# global netdata configuration

[global]
        run as user = netdata
        web files owner = root
        web files group = netdata
        # Netdata is not designed to be exposed to potentially hostile networks
        # See https://github.com/firehol/netdata/issues/164
        bind to = 127.0.0.1

I may be doing this all wrong but it seems to be working

 

has anyone added plugins yet, cant seem to get it working for nginx, sql and phpfpm, their docs are impossible to understand for non phd level programmers

 

got the nginx plugin to work, it needed stub status,

does anyone know how to enable the phpfpm status page, looks like the addition to nginx conf isnt enough, when i curl the status page i just a "file not found." error.

 

ok figured it out, you have to edit the line:
in /usr/local/etc/php-fpm.conf

from

Code:

pm.status_path = /phpstatus

to

Code:

pm.status_path = /status

and confirm by curl http://127.0.0.1:80/status

also ensure you have the right content in you nginx conf file, here is what i have that will enable both phpfpm and nginx modules to work with netdata

Code:

location ~ ^/(status|ping)$ {
     access_log off;
     allow 127.0.0.1;
     #allow 1.2.3.4#your-ip;
     #deny all;
     include fastcgi_params;
     fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
     fastcgi_pass 127.0.0.1:9000;
}


location /stub_status {
 stub_status;
 allow 127.0.0.1;
 # deny all;
 }

now i have to figure out how to get the mysql module to work

 

and mysql plugin is working now:

just add the appropriate passwords for your mysql server into

/usr/local/nginx/html/netdata/conf.d/python.d/mysql.conf

I just gave it the root password, this is running on localhost so I don't see any harm in this

the location from above for me is where i have the git cloned copy of netdata, editing the installed conf file didnt seem to work, so i had to edit the one from above, uninstall then install and voila