====== Instalación de Pandora FMS Open en Rocky Linux ======
{{indexmenu_n>40}}
Instalación de Pandora FMS Open en Rocky Linux 8 con derechos de usuario **root** y conexión a internet.
**Instalación en línea para EL 9 (Rocky Linux 9, RHEL 9)**:
curl -SsL https://raw.githubusercontent.com/pandorafms/pandorafms/develop/extras/deploy-scripts/pandora_deploy_community_el9_gh.sh | bash
\\
**Instalación en línea para EL 8 (Rocky Linux 8, RHEL 8)**:
curl -SsL https://raw.githubusercontent.com/pandorafms/pandorafms/develop/extras/deploy-scripts/pandora_deploy_community_el8_gh.sh | bash
\\
**Instalación en línea para EL 7 (CentOS 7, EOL junio 2024)**:
curl -SsL https://raw.githubusercontent.com/pandorafms/pandorafms/develop/extras/deploy-scripts/pandora_deploy_community_gh.sh | bash
\\
===== Repositorios =====
dnf install -y \
epel-release \
tar \
dnf-utils \
grep sed curl ping \
http://rpms.remirepo.net/enterprise/remi-release-8.rpm
----
dnf module reset php
dnf module install -y php:remi-8.0
dnf config-manager --set-enabled powertools
----
===== Instalación de base de datos Percona =====
dnf install -y https://repo.percona.com/yum/percona-release-latest.noarch.rpm
dnf module disable -y mysql
rm -rf /etc/my.cnf
percona-release setup ps80 -y
dnf install -y percona-server-server percona-xtrabackup-80
===== Instalación de dependencias de Consola web =====
dnf install -y \
php \
postfix \
php-mcrypt \
php-cli \
php-gd \
php-curl \
php-session \
php-mysqlnd \
php-ldap \
php-zip \
php-zlib \
php-fileinfo \
php-gettext \
php-snmp \
php-mbstring \
php-pecl-zip \
php-xmlrpc \
php-fpm \
libxslt \
wget \
php-xml \
httpd \
mod_php \
atk \
avahi-libs \
cairo \
cups-libs \
fribidi \
gd \
gdk-pixbuf2 \
ghostscript \
graphite2 \
graphviz \
gtk2 \
harfbuzz \
hicolor-icon-theme \
hwdata \
jasper-libs \
lcms2 \
libICE \
libSM \
libXaw \
libXcomposite \
libXcursor \
libXdamage \
libXext \
libXfixes \
libXft \
libXi \
libXinerama \
libXmu \
libXrandr \
libXrender \
libXt \
libXxf86vm \
libcroco \
libdrm \
libfontenc \
libglvnd \
libglvnd-egl \
libglvnd-glx \
libpciaccess \
librsvg2 \
libthai \
libtool-ltdl \
libwayland-client \
libwayland-server \
libxshmfence \
mesa-libEGL \
mesa-libGL \
mesa-libgbm \
mesa-libglapi \
pango \
pixman \
xorg-x11-fonts-75dpi \
xorg-x11-fonts-misc \
poppler-data \
php-yaml \
mod_ssl \
libzstd \
openldap-clients \
https://github.com/pandorafms/pandorafms/releases/download/tools/pandora_gotty-1.1-1.el8.x86_64.rpm \
chromium
===== Instalación de dependencias de PFMS server =====
dnf install -y \
perl \
vim \
fping \
perl-IO-Compress \
nmap \
sudo \
perl-Time-HiRes \
nfdump \
net-snmp-utils \
'perl(NetAddr::IP)' \
'perl(Sys::Syslog)' \
'perl(DBI)' \
'perl(XML::Simple)' \
'perl(IO::Socket::INET6)' \
'perl(XML::Twig)' \
expect \
openssh-clients \
java \
bind-utils \
whois \
libnsl
===== Ajustes del sistema operativo =====
setenforce 0
sed -i -e "s/^SELINUX=.*/SELINUX=disabled/g" /etc/selinux/config
systemctl disable firewalld --now
===== Creación de base de datos =====
cat> /etc/my.cnf <
----
systemctl start mysqld
grep "temporary password" /var/log/mysqld.log | rev | cut -d' ' -f1 | rev
mysql -uroot -p"contraseña";
SET PASSWORD FOR 'root'@'localhost' = 'Pandor4!';
UNINSTALL COMPONENT 'file://component_validate_password';
SET PASSWORD FOR 'root'@'localhost' = 'pandora';
CREATE DATABASE pandora;
CREATE USER 'pandora'@'%' IDENTIFIED BY 'pandora';
ALTER USER 'pandora'@'%' IDENTIFIED WITH mysql_native_password BY 'pandora';
GRANT ALL PRIVILEGES ON pandora.* TO 'pandora'@'%';
exit
----
POOL_SIZE=$(grep -i total /proc/meminfo | head -1 | awk '{printf "%.2f \n", $(NF-1)*0.4/1024}' | sed "s/\\..*$/M/g")
----
cat> /etc/my.cnf <
----
systemctl restart mysqld
systemctl enable mysqld --now
----
===== Instalación de la Consola y Pandora FMS server =====
wget https://github.com/pandorafms/pandorafms/releases/download/v772-LTS/pandorafms_server-7.0NG.772.x86_64.rpm
wget https://github.com/pandorafms/pandorafms/releases/download/v772-LTS/pandorafms_console-7.0NG.772.noarch.rpm
wget https://github.com/pandorafms/pandorafms/releases/download/v772-LTS/pandorafms_agent_linux-7.0NG.772.noarch.rpm
----
dnf install -y ./pandorafms*.rpm
----
systemctl enable mysqld --now
systemctl enable httpd --now
systemctl enable php-fpm --now
----
mysql -upandora -ppandora
use pandora;
source /var/www/html/pandora_console/pandoradb.sql;
source /var/www/html/pandora_console/pandoradb_data.sql;
exit;
----
cat> /var/www/html/pandora_console/include/config.php <
----
cat> /etc/httpd/conf.d/pandora.conf <
Options FollowSymLinks
AllowOverride All
Require all granted
EO_CONFIG_F
----
sed -i -e "s/php_flag engine off//g" /var/www/html/pandora_console/images/.htaccess
sed -i -e "s/php_flag engine off//g" /var/www/html/pandora_console/attachment/.htaccess
----
chmod 600 /var/www/html/pandora_console/include/config.php
chown apache. /var/www/html/pandora_console/include/config.php
mv /var/www/html/pandora_console/install.php /var/www/html/pandora_console/install.done
----
sed -i -e "s/^max_input_time.*/max_input_time = -1/g" /etc/php.ini
sed -i -e "s/^max_execution_time.*/max_execution_time = 0/g" /etc/php.ini
sed -i -e "s/^upload_max_filesize.*/upload_max_filesize = 800M/g" /etc/php.ini
sed -i -e "s/^memory_limit.*/memory_limit = 800M/g" /etc/php.ini
sed -i -e "s/.*post_max_size =.*/post_max_size = 800M/" /etc/php.ini
----
echo 'TimeOut 900'> /etc/httpd/conf.d/timeout.conf
cat> /var/www/html/index.html <
EOF_INDEX
----
systemctl restart httpd
systemctl restart php-fpm
----
cat> /etc/snmp/snmptrapd.conf <
----
sed -i -e "s/^dbhost.*/dbhost 127.0.0.1/g" /etc/pandora/pandora_server.conf
sed -i -e "s/^dbname.*/dbname pandora/g" /etc/pandora/pandora_server.conf
sed -i -e "s/^dbuser.*/dbuser pandora/g" /etc/pandora/pandora_server.conf
sed -i -e "s|^dbpass.*|dbpass pandora|g" /etc/pandora/pandora_server.conf
sed -i -e "s/^dbport.*/dbport 3306/g" /etc/pandora/pandora_server.conf
sed -i -e "s/^#.mssql_driver.*/mssql_driver ODBC Driver 17 for SQL Server/g" /etc/pandora/pandora_server.conf
----
sed -i -e "s|^fping.*|fping /usr/sbin/fping|g" /etc/pandora/pandora_server.conf
----
sed -i "s/^remote_config.*$/remote_config 1/g" /etc/pandora/pandora_server.conf
----
cat>> /etc/sysctl.conf <
----
sysctl --system
chown pandora:apache /var/log/pandora
chmod g+s /var/log/pandora
----
cat> /etc/logrotate.d/pandora_server < /etc/logrotate.d/pandora_agent <
----
chmod 0644 /etc/logrotate.d/pandora_server
chmod 0644 /etc/logrotate.d/pandora_agent
----
systemctl enable pandora_server --now
/etc/init.d/pandora_server start
systemctl enable tentacle_serverd
service tentacle_serverd start
----
echo \"* * * * * root wget -q -O - --no-check-certificate --load-cookies /tmp/cron-session-cookies --save-cookies /tmp/cron-session-cookies --keep session-cookies http://127.0.0.1/pandora_console/enterprise/cron.php>> /var/www/html/pandora_console/log/cron.log\">> /etc/crontab
----
systemctl enable pandora_agent_daemon
systemctl start pandora_agent_daemon
systemctl enable postfix --now
----
**SSH banner**
[ "$(curl -s ifconfig.me)" ] && ipplublic=$(curl -s ifconfig.me)
cat > /etc/issue.net << EOF_banner
Welcome to Pandora FMS appliance on RHEL/Rocky Linux 8
------------------------------------------
Go to Public http://$ipplublic/pandora_console to login web console
$(ip addr | grep -w "inet" | grep -v "127.0.0.1" | grep -v "172.17.0.1" | awk '{print $2}' | awk -F '/' '{print "Go to Local http://"$1"/pandora_console to login web console"}')
You can find more information at http://pandorafms.com
EOF_banner
rm -f /etc/issue
ln -s /etc/issue.net /etc/issue
echo 'Banner /etc/issue.net' >> /etc/ssh/sshd_config
===== Inicio de sesión en PFMS =====
Para acceder a la Consola web se ha de escribir la dirección IP (o URL) del dispositivo seguido de ''/pandora_console/'' .
Las credenciales por defecto para entrar son:
* usuario: ''admin''
* contraseña: ''pandora''
[[:es:documentation:start| Volver al índice de documentación de Pandora FMS]]