An Icinga 2 cluster consists of two or more nodes and can resist on multiple architectures. The base concept of Icinga 2 is the possibility to add additional features using components. In case of a cluster setup you have to add the cluster feature to all involved nodes. Before you start configuring the diffent nodes its necessary to setup the underlaying communication layer based on SSL.
### Certificate authority and Certificates
If you have no other way, we would suggest to use easy-rsa for certificate creation. You can get easy-rsa using your distribution package manager or the following git clone
* Load cluster-library and configure Cluster-Listener using CA-files
*/
library "cluster"
object ClusterListener "cluster" {
ca_path = "/etc/icinga2/ca/ca.crt",
cert_path = "/etc/icinga2/ca/icinga-node-1.pem",
bind_port = 8888,
peers = [ "icinga-node-1", "icinga-node-2" ]
}
Peers configures the direction used to connect multipe nodes together. If have a three node cluster consisting of
* node-1
* node-2
* node-3
and node-3 is only reachable from node-2, you have to consider this in your peer configuration
### Configure Cluster Endpoints
In addition to the configured port and hostname every endpoint can have specific abilities to send configfiles to other nodes and limit the hosts allowed to send config-files.