| QOS User's Manual | ||
|---|---|---|
| Prev | ||
{ 'type' : 'WebSsl' ,
'subents' : [
{ 'status' :'on', 'name':'yahoo',
'webHost':'www.yahoo.com', 'webUrl':'/',
'triggers': [{'level': 'warn', 'trigger': '8'}]
},
]
}
The WebSsl Entity monitors the availability of Web servers by pinging the server, connecting to their port, sending a request, and reading the respose. The entity can check for a particular phrase in the returned page. The Entity reports the number of pings dropped, the ping time in seconds, the connect time in seconds, the time to send a message (if specified), and the time to receive a response from the server.
The WebSsl Entity makes use of the OpenSSL security library for its SSL routines. In Python 2.1, the implementation of ssl sockets is limited:
The Python ssl object does not configure OpenSSL to validate server certificates. The openssl program, provided with OpenSSL installations, can perform these validations if desired.
The certificate file should be a sorted list of PEM-encoded certificates, starting from the client certificate and working upwards towards the root. All of the certificates must be the same format (RSA or DSA). Python uses the OpenSSL function SSL_CTX_use_certificate_chain_file() to load the certificate file.
The client private key should be encoded in PEM format and cannot be encrypted with a passphrase. Python does not provide a method to provide a passphrase to decrypt the private key. Python uses the function SSL_CTX_use_PrivateKey_file() to load the private key.
For more information on the certificates, private keys, or other operational characteristics of the SSL implementation, see the documentation section at OpenSSL.com.
Fields
A descriptive name for this subentity.
The hostname or IP address of the host to monitor.
(Optional)The port to connect to on webHost.
The selector to request on webHost. Usually this is just '/' for the top-level page.
(Optional) If this key is set, the Entity will not ping the host with ICMP ECHO packets before attemping the HTTPS connection. With this key set, the Entity can check hosts that do not respond to pings.
(Optional) Trigger a notification if this phrase is read in the returned page. If not specified, a phrase is not checked for. This can be used to check for site problems (database failure, etc.).
(Optional) A string representing the cookies to send to the remote host, if requested.
(Optional) The string sent as the encrypted hash for Basic authentication.
(Optional) The path and filename to the client certificate to use on the Agent. This file should be in PEM format. See the OpenSSL documentation for information on how to manage certificates and private keys.
(Optional) Required if sslCertFile is used. The path and filename to the client private key to use on the Agent. See the OpenSSL documentation for information on how to manage certificates and private keys.