zabbix5.4 failed to accept an incoming connection: connection from “172.16.238.2“ rejected, allowed

最新推荐文章于 2024-08-28 17:52:20 发布
最新推荐文章于 2024-08-28 17:52:20 发布
阅读量4k 收藏 4
点赞数 2
分类专栏: # zabbix 文章标签: zabbix
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/u010674101/article/details/120014822
版权

问题

tail -f /var/log/zabbix/zabbix_agentd.log 查看报错信息
failed to accept an incoming connection: connection from “172.16.238.2” rejected, allowed hosts: “127.0.0.1”

解决办法

修改Agent配置文件 /etc/zabbix/zabbix_agentd.conf

Server参数处添加172.16.238.2 地址即可,或者改为0.0.0.0

##### Passive checks related

### Option: Server
#       List of comma delimited IP addresses, optionally in CIDR notation, or DNS names of Zabbix servers and Zabbix proxies.
#       Incoming connections will be accepted only from the hosts listed here.
#       If IPv6 support is enabled then '127.0.0.1', '::127.0.0.1', '::ffff:127.0.0.1' are treated equally
#       and '::/0' will allow any IPv4 or IPv6 address.
#       '0.0.0.0/0' can be used to allow any IPv4 address.
#       Example: Server=127.0.0.1,192.168.1.0/24,::1,2001:db8::/32,zabbix.example.com
#
# Mandatory: yes, if StartAgents is not explicitly set to 0
# Default:
# Server=

Server=127.0.0.1,172.16.238.2

重启agent服务

systemctl restart zabbix-agent

172.16.238.2 这个地址是什么? 其实是我容器内的zabbix-serve的地址

zabbix-server地址验证

 docker-compose exec zabbix-server /bin/bash
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
WARNING: The following deploy sub-keys are not supported and have been ignored: resources.reservations.cpus
zabbix@64f19224617c:/var/lib/zabbix$ cat /etc/hosts
127.0.0.1	localhost
::1	localhost ip6-localhost ip6-loopback
fe00::0	ip6-localnet
ff00::0	ip6-mcastprefix
ff02::1	ip6-allnodes
ff02::2	ip6-allrouters
172.16.238.2	64f19224617c
172.16.239.3	64f19224617c

所以我建议把172.16.239.3这个地址也添加到上述解决办法中。

zabbix failed to accept an incoming connection: connection from “x.x.x.x“ rejected, allowed host “x“
qq_31024251的博客
10-30 3479
1. 之前zabbix 的模式 agent 配置文件内容如下: 2. 现在 启用了zabbix-proxy(192.168.17.70) 现在agent 配置文件调整为如下模式后 zabbix-agent 重启报错: failed to accept an incoming connection: connection from “x.x.x.x” rejected, allowed host “x” 3. 解决方案: zabbix-agent.conf 文件中Server 字段调整如下 4
failed to accept an incoming connection: connection from "127.0.0.1" rejected, allowed hosts: "
qq_40907977的博客
11-15 4690
zabbix agentd配置文件 23418:20191114:143452.336 active check configuration update from [47.98.124.91:10051] started to fail (cannot connect to [[47.98.124.91]:10051]: [111] Connection refused) 23417:201...
记一次docker安装zabbix5.2 zabbix-agent日志failed to accept an incoming connection:问题处理
a492391142的博客
03-12 3932
记一次docker安装部署zabbix5.2zabbix-agent日志中出现failed to accept an incoming connection: connection from172.17.0.4rejected, allowed hosts: "192.168.8.100"问题处理 处理方法: 1.修改zabbix_agentd.conf配置文件,将Server=IP IP修改为docker的ip地址172.17.0.4 Server=172.17.0.4 2.在zabbi-se
zabbix: failed to accept an incoming connection
Jian Sun_的博客
05-07 1318
问题: 这个是 zabbix_agentd.conf 文件配置错误的提示。Hostname=你的客户端名称123456。ServerActive=你的服务器地址。Server=你的服务器地址。
zabbix error - filed to accept an incoming connection: connection from "192.168.174.133" rejected
wang725的专栏
06-25 8496
报错:2176:20180625:202101.065 failed to accept an incoming connection: connection from "192.168.174.133" rejected, allowed hosts: "192.168.173.133" 修改agent的配置文件,zabbix_agentd.conf,将Server配置为允许zabbix se...
Call From hdp-1/192.168.234.129 to hdp-1:8020 failed on connection exception: java.net.ConnectExcept
01-20
报错:Exception in thread “main” java.net.ConnectException: Call From hdp-1/192.168.234.129 to hdp-1:8020 failed on connection exception: java.net.ConnectException: Connection refused; For more ...
npm报错network request to https://registry.npmjs.org/fuse.js failed的解决方法
邓邓子的博客
08-28 1370
【代码】npm报错network request to https://registry.npmjs.org/fuse.js failed的解决方法。
zabbix 报错原因Get value和Received empty response分析
叱咤少帅的博客
12-28 1642
zabbix 报错原因Get value和Received empty response分析
failed to accept an incoming connection: connection from "192.168.1.114" rejected, allowed hosts: "1
qq_40907977的博客
10-30 7323
报错信息 :failed to accept an incoming connection: connection from “192.168.1.114rejected, allowed hosts: “127.0.0.1,192.168.1.131,192.168.1.166,192.168.1.168” 接收到的连接失败:来自“192.168.1.114”的连接被拒绝,允许主机:“127...
failed to accept an incoming connection: connection from 127.0.0.1
热门推荐
东城绝神
07-07 2万+
zabbix报错:failed to accept an incoming connection: connection from “127.0.0.1”
Debezium同步之postgres到oracle的同步
Auspicious航的博客
12-27 2865
centos7环境下 ------docker-compose启动容器 [root@dbz ~]# cd /dbz [root@dbz dbz]# vi docker-compose-dbz-origin-pg.yaml version: '3' services: dbz-zookeeper-pg: image: registry.cn-hangzhou.aliyuncs.com/bytesynch/sync_platform_zookeeper:1.7 container_na
zabbix踩坑
peace
12-11 563
server端ip:192.168.1.9 agent端ip:192.168.17.22 agent端hostname:192.168.17.22 web端配置此服务器后,报错: 42904:20191211:163503.864 failed to accept an incoming connection: connection from "192.168.17.1" rejected, al...
Zabbix搭建web报错:Assuming that agent dropped connection because of access permissions.
Cai_suyd的博客
09-11 1万+
web网页报错:Received empty response from Zabbix Agent at [192.168.11.11]. Assuming that agent dropped connection because of access permissions. agent.log报错:31073:20180911:100658.245 failed to accept an ...
activiti中的bug列表
分享牛
11-21 2万+
分享牛原创(尊重原创 转载对的时候第一行请注明,转载出处来自分享牛http://blog.csdn.net/qq_30739519)Bug[ACT-1968] - Custom Database schema on PostgreSQL not working[ACT-4113] - REST Task API Not working: /service/runtime/tasks?assigne
Zabbix4.0中遇到的问题
NiuXL的编程技术网络日志
05-20 5616
文章目录1. Please create database manually, and set the configuration parameters for connection to this database. Press "Next step" button when done.2. Get value from agent failed: cannot connect to [[10.0.0.3]:10050]: [113] No route to host3. cannot start al.
Quartus常见错误分析
ascend的专栏
04-01 9858
Quartus常见错误分析 Error Warning: VHDL Process Statement warning at random.vhd(18): signal reset is in statement, but is not in  sensitivity list ----没把singal放到process()中
redis.conf配置详细解析
weixin_30416497的博客
04-13 669
- # redis 配置文件示例 # 当你需要为某个配置项指定内存大小的时候,必须要带上单位, # 通常的格式就是 1k 5gb 4m 等酱紫: # # 1k => 1000 bytes # 1kb => 1024 bytes # 1m => 1000000 bytes # 1mb => 1024*1024 bytes # 1g =>...
深入浅出Zabbix 3.0 -- 第十九章 数据加密通信
clm_sky的博客
05-26 2900
第十九章数据加密通信 近日完成《深入浅出zabbix 4.0》视频教程的录制并正式发布,该教程基于 zabbix 4.2 ,对Zabbix进行全面讲解。欢迎大家围观。课程链接:https://edu.csdn.net/course/detail/24870 Zabbix 3.0中非常重要的一个特性就是支持对Zabbixserver、Zabbix proxy、Zabbix agent、zab...
telnet: connect to address 172.28.168.207: Connection refused
最新发布
04-01
<think>好的,我现在需要解决用户遇到的Telnet连接被拒绝的问题,具体是telnet到172.28.168.207时出现“connection refused”。用户希望得到排查步骤和建议。首先,我要回忆一下可能的原因以及对应的解决方法,并结合提供的引用内容来辅助分析。 首先,根据引用[1]中的情况,当出现类似的连接被拒绝问题时,用户提到了检查iptables和SELinux的状态。这可能意味着防火墙或者安全策略阻止了连接。所以,我应该建议用户检查这两项是否关闭或者配置正确。 其次,引用[2]中提到的zabbix server问题,虽然和Telnet不直接相关,但同样涉及服务是否运行。因此,需要确认目标主机的Telnet服务是否已经安装并正在运行。如果服务未启动,自然无法连接。 接下来,引用[3]提到了SSHD服务,这让我想到网络服务的基本排查步骤。例如,检查服务是否监听正确的端口,是否允许来自客户端的连接。虽然Telnet和SSH不同,但服务状态和配置的检查方法是类似的。 现在,我需要将可能的排查步骤结构化,逐步引导用户检查每个环节: 1. **确认目标主机IP和端口是否正确**:用户可能输入了错误的IP或端口,导致连接被拒绝。需要确认172.28.168.207是否为目标主机的正确地址,且Telnet服务是否在默认的23端口运行,或者是否使用了其他端口。 2. **检查目标主机的Telnet服务状态**:如果服务未安装或未运行,连接会被拒绝。在Linux系统中,可以使用`systemctl status telnet.socket`或者查看相关服务(如xinetd管理的Telnet)来确认状态。如果是Windows,需要检查Telnet服务器功能是否启用。 3. **检查防火墙设置**:引用[1]和[2]都提到了iptables和SELinux。需要检查目标主机和客户端的防火墙是否允许TCP端口(默认为23)的入站连接。可能需要临时关闭防火墙测试,或者添加相应的规则。 4. **检查SELinux状态**:SELinux可能会阻止服务绑定端口或接受连接,可以暂时禁用SELinux或调整策略。 5. **网络连通性测试**:使用ping命令确认目标主机是否可达,如果网络层不通,则可能是路由问题或主机宕机。但注意,即使能ping通,端口可能仍被阻止。 6. **检查服务配置**:例如,Telnet服务可能配置为只监听特定接口(如localhost),而非所有接口。查看配置文件,如`/etc/xinetd.d/telnet`,确保绑定到正确的IP地址。 7. **查看日志文件**:系统日志(如/var/log/messages或journalctl)可能提供更多错误信息,帮助确定连接被拒绝的具体原因。 在回答时,需要按照逻辑顺序排列这些步骤,并引用相关资料中的建议,如关闭iptables和SELinux的步骤。同时,提醒用户注意安全,比如在测试后重新启用防火墙,或考虑使用更安全的SSH替代Telnet。 最后,根据用户提供的引用内容,可能需要指出,类似的问题在Zabbix中也出现过,解决方法包括检查防火墙和服务状态,这同样适用于Telnet问题的排查。</think>针对Telnet连接被拒绝的问题,请按以下步骤排查: ### 一、基础网络检查 1. **确认目标主机可达性** ``` ping 172.28.168.207 ``` 如果无法ping通,需检查网络配置、路由表或物理连接[^2]。 2. **验证端口监听状态** 在目标主机执行: ``` netstat -tuln | grep 23 ``` 若无`0.0.0.0:23`或`172.28.168.207:23`的监听记录,说明Telnet服务未启动或配置错误。 ### 二、服务状态排查 1. **检查Telnet服务是否运行** - Linux系统(使用systemd): ``` systemctl status telnet.socket ``` - 如果提示"Unit telnet.socket not found",需安装`telnet-server`包 - Windows系统: 进入「控制面板→程序→启用或关闭Windows功能」,勾选「Telnet服务器」 2. **检查依赖服务** Telnet服务可能由`xinetd`管理,需确保以下服务运行: ``` systemctl status xinetd ``` ### 三、安全策略检查 1. **防火墙配置** 在目标主机执行: ```bash # CentOS/RHEL firewall-cmd --list-ports firewall-cmd --add-port=23/tcp --permanent firewall-cmd --reload # 或临时关闭防火墙测试 systemctl stop firewalld ``` 2. **SELinux状态** ```bash getenforce # 查看状态 setenforce 0 # 临时禁用 ``` 持续生效需修改`/etc/selinux/config`[^1] ### 四、服务配置验证 1. **检查绑定地址** 编辑Telnet配置文件(通常位于`/etc/xinetd.d/telnet`): ```ini service telnet { flags = REUSE bind = 172.28.168.207 # 确认此处为正确IP disable = no # 必须设为no } ``` 修改后重启服务: ``` systemctl restart xinetd ``` ### 五、日志分析 查看系统日志定位具体错误: ```bash journalctl -u xinetd -n 50 --no-pager tail -f /var/log/secure ``` ### 六、替代方案建议 考虑使用更安全的SSH协议(默认端口22): 1. 确认openssh-server安装: ```bash rpm -q openssh-server || yum install openssh-server ``` 2. 检查SSH服务状态: ``` systemctl status sshd ```[^3]
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

少陽君

谢谢老板的拿铁

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值