How To - Install LibreNMS (Systems Monitoring)

Contents
Minimal Install – CentOS 7 x6 [DualCore minimum), 4GB RAM , 16GB storage] .................................. 2
Install Webtatic ................................................................................................................................. 2
Install PHP – latest version ................................................................................................................ 2
Install initial packages... .................................................................................................................... 2
Check the network is functioning as expected... ............................................................................... 2
Temporarily Disable Servers ‘Internal’ Firewall................................................................................. 2
Download & Configure LibreNMS ......................................................................................................... 3
Add LibreNMS User ........................................................................................................................... 3
Download LibreNMS ......................................................................................................................... 3
Create a new directory for the LibreNMS logs and the rrd files: ....................................................... 3
Configure PHP-FPM for the installation of LibreNMS ........................................................................... 4
Open the PHP-FPM configuration file. .............................................................................................. 5
Install WEBMIN ..................................................................................................................................... 6
Check that WEBMIN is running ok... ................................................................................................. 6
Install MariaDB server........................................................................................................................... 6
Securing MariaDB server................................................................................................................... 6
Define MariaDB SQL root password .................................................................................................. 7
How To Configure MySQL ................................................................................................................. 7
Configure NGINX ................................................................................................................................... 7
How to Configure the LibreNMS Virtual Host ................................................................................... 7
Install Fping........................................................................................................................................... 9
Configure SNMPd.................................................................................................................................. 9
Configure Cron job(s) ........................................................................................................................ 9
Copy logrotate config........................................................................................................................ 9
Set permissions ................................................................................................................................. 9
FIREWALL - ‘firewalld’ ......................................................................................................................... 10
Configure Firewall in CentOS 7 ....................................................................................................... 10
SSL and Nginx VHost configurations ................................................................................................... 10
Installing ClamAV ................................................................................................................................ 11
Configuring Firewall / SELinux ......................................................................................................... 11
Verify its working, run: ................................................................................................................ 11
Configuring ClamAV ........................................................................................................................ 12
Generate the SSL certificates: ......................................................................................................... 13
Create a new virtual host. ............................................................................................................... 13

M. Salmon v1.0 2018-06 Page 1 of 14

How To - Install LibreNMS (Systems Monitoring)

Minimal Install – CentOS 7 x6 [DualCore minimum), 4GB RAM , 16GB

storage]

Install Webtatic

# rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm

# yum install epel-release
# yum -y update

Install PHP – latest version

Remove Old PHP version first, as follows:

# yum remove php-common <enter>

Install initial packages...

# yum -y install yum-utils wget net-tools mlocate composer cronie fping git ImageMagick jwhois
mariadb mariadb-server mtr MySQL-python net-snmp net-snmp-utils nginx nmap php72w php72w-
cli php72w-common php72w-curl php72w-fpm php72w-gd php72w-mbstring php72w-mysqlnd
php72w-process php72w-snmp php72w-xml php72w-zip python-memcached rrdtool

# yum -y update

Check the network is functioning as expected...

# netstat -atunpl
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 3188/sshd
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1243/master
tcp 0 0 172.16.232.60:22 172.16.232.143:62727 ESTABLISHED 1790/sshd: <user>
tcp 0 64 172.16.232.60:22 172.16.232.143:62710 ESTABLISHED 1264/sshd: <user>
tcp6 0 0 :::22 :::* LISTEN 3188/sshd
tcp6 0 0 ::1:25 :::* LISTEN 1243/master
udp 0 0 127.0.0.1:323 0.0.0.0:* 3456/chronyd
udp 0 0 0.0.0.0:17610 0.0.0.0:* 819/dhclient
udp 0 0 0.0.0.0:68 0.0.0.0:* 819/dhclient
udp6 0 0 ::1:323 :::* 3456/chronyd
udp6 0 0 :::41026 :::* 819/dhclient

Temporarily Disable Servers ‘Internal’ Firewall

# systemctl stop firewalld (temporarily stop the firewall {gets in the way early on!})

M. Salmon v1.0 2018-06 Page 2 of 14

How To - Install LibreNMS (Systems Monitoring)
Download & Configure LibreNMS
At this point we will create a new user of the system called ‘librenms’, then we will define the home directory for
the user in the / opt / librenms directory, and finally, we will add the librenms user to the nginx group:

Add LibreNMS User

# useradd librenms -d /opt/librenms -M -r
# usermod -a -G librenms nginx

Once the user has been created and added to the respective group, we will go to the /opt/ directory and
download the LibreNMS source code using the git clone command as follows:

Download LibreNMS
# cd /opt
# composer create-project --no-dev --keep-vcs librenms/librenms librenms dev-master

Create a new directory for the LibreNMS logs and the rrd files:

Create a new directory for the LibreNMS logs and the rrd files:
# mkdir -p /opt/librenms/logs/
# mkdir -p /opt/librenms/rrd/
# chmod 775 /opt/librenms/rrd/

Change the ownership of all files and directories in the / opt / librenms directory to the librenms user and group by
executing the following:

# chown -R librenms:librenms /opt/librenms/

# systemctl start nginx

# systemctl enable nginx
Created symlink from /etc/systemd/system/multi-user.target.wants/nginx.service to
/usr/lib/systemd/system/nginx.service.

# systemctl status nginx

● nginx.service - The nginx HTTP and reverse proxy server
Loaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; vendor preset: disabled)
Active: active (running) since Wed 2018-05-02 23:05:07 BST; 11s ago
Main PID: 25895 (nginx)
CGroup: /system.slice/nginx.service
├─25895 nginx: master process /usr/sbin/nginx
├─25896 nginx: worker process
├─25897 nginx: worker process
├─25898 nginx: worker process
└─25899 nginx: worker process

May 02 23:05:07 nms.localdomain systemd[1]: Starting The nginx HTTP and reverse proxy
server...
May 02 23:05:07 nms.localdomain nginx[25890]: nginx: the configuration file
/etc/nginx/nginx.conf syntax is ok
May 02 23:05:07 nms.localdomain nginx[25890]: nginx: configuration file /etc/nginx/nginx.conf
test is s...sful
May 02 23:05:07 nms.localdomain systemd[1]: Started The nginx HTTP and reverse proxy server.
Hint: Some lines were ellipsized, use -l to show in full.

M. Salmon v1.0 2018-06 Page 3 of 14

How To - Install LibreNMS (Systems Monitoring)
Configure PHP-FPM for the installation of LibreNMS
Check local Date/time

# timedatectl

Local time: Tue 2018-05-22 22:31:31 BST

Universal time: Tue 2018-05-22 21:31:31 UTC
RTC time: Tue 2018-05-22 21:31:31
Time zone: Europe/London (BST, +0100)
NTP enabled: yes
NTP synchronized: yes
RTC in local TZ: no
DST active: yes
Last DST change: DST began at
Sun 2018-03-25 00:59:59 GMT
Sun 2018-03-25 02:00:00 BST
Next DST change: DST ends (the clock jumps one hour backwards) at
Sun 2018-10-28 01:59:59 BST
Sun 2018-10-28 01:00:00 GMT
[root@nms librenms]# timedatectl
Local time: Tue 2018-05-22 22:36:59 BST
Universal time: Tue 2018-05-22 21:36:59 UTC
RTC time: Tue 2018-05-22 21:36:59
Time zone: Europe/London (BST, +0100)
NTP enabled: yes
NTP synchronized: yes
RTC in local TZ: no
DST active: yes
Last DST change: DST began at
Sun 2018-03-25 00:59:59 GMT
Sun 2018-03-25 02:00:00 BST
Next DST change: DST ends (the clock jumps one hour backwards) at
Sun 2018-10-28 01:59:59 BST
Sun 2018-10-28 01:00:00 GMT

Open the loaded configuration file by PHP in an editor and replace *date.timezone with value from
‘timedatectl’ above.

# vi /etc/php.ini
Find the following lines, uncomment and change their value as shown.

cgi.fix_pathinfo= 0
memory_limit = -1
date.timezone = Europe/London

M. Salmon v1.0 2018-06 Page 4 of 14

How To - Install LibreNMS (Systems Monitoring)
Open the PHP-FPM configuration file.
# vi /etc/php-fpm.d/www.conf
Find the following line.

listen = 127.0.0.1:9000
Replace it with the following line.

listen = /var/run/php-fpm/php7.2-fpm.sock
Further edit/uncomment the following lines.
;user = apache
user = nginx

group = apache ; keep group as apache

;listen = 127.0.0.1:9000
listen = /var/run/php-fpm/php7.2-fpm.sock

listen.owner = nginx
listen.group = nginx
listen.mode = 0660

Save the file and exit from the editor. Restart PHP-FPM and enable it to start at boot time.

# systemctl start php-fpm

# systemctl enable php-fpm

Created symlink from /etc/systemd/system/multi-user.target.wants/php-

fpm.service to /usr/lib/systemd/system/php-fpm.service

Set the appropriate ownership to the socket file.

# systemctl status php-fpm

php-fpm.service - The PHP FastCGI Process Manager

Loaded: loaded (/usr/lib/systemd/system/php-fpm.service; enabled; vendor
preset: disabled)
Active: active (running) since Fri 2018-06-01 16:39:33 BST; 1min 17s ago
Main PID: 7514 (php-fpm)
Status: "Processes active: 0, idle: 5, Requests: 0, slow: 0, Traffic:
0req/sec"
CGroup: /system.slice/php-fpm.service
├─7514 php-fpm: master process (/etc/php-fpm.conf)
├─7515 php-fpm: pool www
├─7516 php-fpm: pool www
├─7517 php-fpm: pool www
├─7518 php-fpm: pool www
└─7519 php-fpm: pool www

Jun 01 16:39:33 eg3svmlxnms01.phillips-cohen.local systemd[1]: Starting The

PHP FastCGI Process Manager...
Jun 01 16:39:33 eg3svmlxnms01.phillips-cohen.local systemd[1]: Started The
PHP FastCGI Process Manager.

M. Salmon v1.0 2018-06 Page 5 of 14

How To - Install LibreNMS (Systems Monitoring)
Install WEBMIN
# vi /etc/yum.repos.d/webmin.repo
[Webmin]
name=Webmin Distribution Neutral
#baseurl=https://download.webmin.com/download/yum
mirrorlist=https://download.webmin.com/download/yum/mirrorlist
enabled=1

# wget http://www.webmin.com/jcameron-key.asc
# rpm --import jcameron-key.asc
# yum -y install webmin
# /etc/init.d/webmin stop
# /etc/init.d/webmin restart

Check that WEBMIN is running ok...

# /etc/init.d/webmin status
Webmin (pid 25556) is running

Install MariaDB server

We installed MariaDB Client and Server earlier, so let’s start the MariaDB service and enable it to start
automatically at start-up:

# systemctl enable mariadb

# systemctl start mariadb

Check that MariaDB is functioning as expected...

# systemctl status mariadb

● mariadb.service - MariaDB 10.2.14 database server
Loaded: loaded (/usr/lib/systemd/system/mariadb.service; enabled; vendor preset: disabled)
Drop-In: /etc/systemd/system/mariadb.service.d
└─migrated-from-my.cnf-settings.conf
Active: active (running) since Thu 2018-05-03 04:07:54 IST; 13s ago
Docs: man:mysqld(8)
https://mariadb.com/kb/en/library/systemd/
Main PID: 4142 (mysqld)
Status: "Taking your SQL requests now..."
CGroup: /system.slice/mariadb.service
└─4142 /usr/sbin/mysqld

May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] InnoDB: 5.7.21...9987
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140189125039872 [Note] InnoDB: Loadin...pool
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] Plugin 'FEEDBA...led.
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140189125039872 [Note] InnoDB: Buffer...7:54
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] Server socket ...::'.
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] Reading of all...eded
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] Added new Mast...able
May 03 04:07:54 nms.localdomain mysqld[4142]: 2018-05-03 4:07:54 140190332725376 [Note] /usr/sbin/mysq...ons.
May 03 04:07:54 nms.localdomain mysqld[4142]: Version: '10.2.14-MariaDB' socket: '/var/lib/mysql/mysql...rver
May 03 04:07:54 nms.localdomain systemd[1]: Started MariaDB 10.2.14 database server.
Hint: Some lines were ellipsized, use -l to show in full.
Now, open the MySQL configuration file.

Securing MariaDB server

Restart MariaDB and enable it to automatically start at boot time.

# mysql_secure_installation
Set root password? [Y/n] Y
Remove anonymous users? [Y/n] Y
Disallow root login remotely? [Y/n] Y
Remove test database and access to it? [Y/n] Y
Reload privilege tables now? [Y/n] Y

M. Salmon v1.0 2018-06 Page 6 of 14

How To - Install LibreNMS (Systems Monitoring)
Define MariaDB SQL root password
# mysql -u root -p <password>

Create a new database called ‘librenms’, a new user ‘libreanms’ with password ‘password123’

CREATE DATABASE librenms CHARACTER SET utf8 COLLATE utf8_unicode_ci;

CREATE USER 'librenms'@'localhost' IDENTIFIED BY 'password123';
GRANT ALL PRIVILEGES ON librenms.* TO 'librenms'@'localhost';
FLUSH PRIVILEGES;

Exit MariaDB client by typing ‘exit’ <enter>

MariaDB [(none)]>
MariaDB [(none)]>
MariaDB [(none)]> exit <enter>
Bye

How To Configure MySQL

# vi /etc/my.cnf
Add the following lines at the end of the block.

[mysqld]
innodb_file_per_table=1
sql-mode=""
lower_case_table_names=0

Configure NGINX

How to Configure the LibreNMS Virtual Host

LibreNMS is a Web-based application, and up to this point, we are using a Nginx web server to host it.
We will create a new virtual host file librenms.conf in the nginx conf.d directory by executing the following:

# vi /etc/nginx/conf.d/librenms.conf
In this new file we will paste the following:

server {

# Add your own domain name

listen 80;
server_name nms.phillips-cohen.local;

# LibreNMS Webroot directory

root /opt/librenms/html;
index index.php;

# LibreNMS logs
access_log /opt/librenms/logs/access_log;
error_log /opt/librenms/logs/error_log;

# Enabling Gzip compression on Nginx

charset utf-8;
gzip on;
gzip_types text/css application/javascript text/javascript application/x-
javascript image/svg+xml text/plain text/xsd text/xsl text/xml image/x-
icon;

location / {

M. Salmon v1.0 2018-06 Page 7 of 14

How To - Install LibreNMS (Systems Monitoring)
try_files $uri $uri/ /index.php?$query_string;
}

location /api/v0 {
try_files $uri $uri/ /api_v0.php?$query_string;
}

# PHP-FPM handle all .php files requests

location ~ \.php {
include fastcgi.conf;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/var/run/php-fpm/php7.0-fpm.sock;
}

location ~ /\.ht {
deny all;
}
}
Now you should delete the [server] section from the [/etc/nginx/nginx.conf] file

Remark out (#) each of the lines, as shown below…. then save the file

# vi /etc/nginx/nginx.conf

# server {
# listen 80 default_server;
# listen [::]:80 default_server;
# server_name _;
# root /usr/share/nginx/html;
#
# # Load configuration files for the default server block.
# include /etc/nginx/default.d/*.conf;
#
# location / {
# }
#
# error_page 404 /404.html;
# location = /40x.html {
# }
#
# error_page 500 502 503 504 /50x.html;
# location = /50x.html {
# }
# }

Now we can test the Nginx configuration by executing the following:

[root@nms opt]# nginx -t

nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful

M. Salmon v1.0 2018-06 Page 8 of 14

 How To - Install LibreNMS (Systems Monitoring)
Install Fping
# vi /opt/librenms/http_fping.tt

module http_fping 1.0;

require {
type httpd_t;
class capability net_raw;
class rawip_socket { getopt create setopt write read };
}

#============= httpd_t ==============

allow httpd_t self:capability net_raw;
allow httpd_t self:rawip_socket { getopt create setopt write read };

Configure SNMPd
# cp /opt/librenms/snmpd.conf.example /etc/snmp/snmpd.conf
# vi /etc/snmp/snmpd.conf

# curl -o /usr/bin/distro https://raw.githubusercontent.com/librenms/librenms-agent/master/snmp/distro

# chmod +x /usr/bin/distro
# systemctl enable snmpd
# systemctl restart snmpd

Configure Cron job(s)

# cp /opt/librenms/librenms.nonroot.cron /etc/cron.d/librenms

Copy logrotate config

LibreNMS keeps logs in /opt/librenms/logs. Over time these can become large and be rotated out. To rotate out
the old logs you can use the provided logrotate config file:

# cp /opt/librenms/misc/librenms.logrotate /etc/logrotate.d/librenms

Set permissions
# chown -R librenms:librenms /opt/librenms
# setfacl -d -m g::rwx /opt/librenms/rrd /opt/librenms/logs /opt/librenms/bootstrap/cache/ /opt/librenms/storage/
# setfacl -R -m g::rwx /opt/librenms/rrd /opt/librenms/logs /opt/librenms/bootstrap/cache/ /opt/librenms/storage/

# cp /opt/librenms/misc/librenms.logrotate /etc/logrotate.d/librenms
# cd /opt/librenms

# ./scripts/composer_wrapper.php install --no-dev

# chown -R librenms:librenms /opt/librenms/logs

# setfacl -R -m g::rwx /opt/librenms/logs

# setfacl -d -m g::rwx /opt/librenms/logs

# semanage fcontext -a -t httpd_sys_content_t ‘/opt/librenms/logs(/.*)?’

# semanage fcontext -a -t httpd_sys_rw_content_t ‘/opt/librenms/logs(/.*)?’
# restorecon -RFvv /opt/librenms/logs

M. Salmon v1.0 2018-06 Page 9 of 14

How To - Install LibreNMS (Systems Monitoring)
Re-enable server Firewall

# systemctl stop firewalld (temporarily stop the firewall {gets in the way early on!})

FIREWALL - ‘firewalld’
Configure Firewall in CentOS 7
# yum -y install firewalld

Once installed, we will start firewalld and enable it to run at boot with the following systemctl commands:

# systemctl start firewalld

# systemctl enable firewalld

Once enabled, we will add the following lines to enable the respective services:

# firewall-cmd --add-service=http --permanent

# firewall-cmd --add-service=https --permanent
# firewall-cmd --add-port=161/udp
# firewall-cmd --add-port=161/tcp

We apply the changes by reloading firewalld with the following command:

# firewall-cmd --reload

We can list the rules to confirm that the services have been added correctly:

# firewall-cmd --list-all

SSL and Nginx VHost configurations

Logins and other information sent through the web interface of LibreNMS.

We will configure Nginx to use SSL generated with Let's Encrypt free SSL.

Before you can request the certificates, you will need to allow port 80 and 443, or
standard HTTP and HTTPS services through the firewall.

# firewall-cmd --zone=public --add-service=http --permanent

# firewall-cmd --zone=public --add-service=https --permanent
# firewall-cmd –reload

M. Salmon v1.0 2018-06 Page 10 of 14

How To - Install LibreNMS (Systems Monitoring)
Installing ClamAV
# yum -y install clamav-server clamav-data clamav-update clamav-filesystem clamav clamav-
scanner-systemd clamav-devel clamav-lib clamav-server-systemd

Configuring Firewall / SELinux

# setsebool -P antivirus_can_scan_system 1
# setsebool -P clamd_use_jit 1

Verify its working, run:

# getsebool -a | grep antivirus

You should get this result:

antivirus_can_scan_system --&gt; on
antivirus_use_jit --&gt; on

M. Salmon v1.0 2018-06 Page 11 of 14

 How To - Install LibreNMS (Systems Monitoring)
Configuring ClamAV

Before Clam configuration can be enabled, you need to remove Example string from the configuration file:

# sed -i -e "s/^Example/#Example/" /etc/clamd.d/scan.conf

Next, you will have to specify the server type. Open configuration file with your favorite text editor, in this example
we will use nano. If it’s not already installed, install it using yum:

Open the configuration file:

# vi /etc/clamd.d/scan.conf

Scroll to this line:

#LocalSocket /var/run/clamd.scan/clamd.sock

And change it to:

LocalSocket /var/run/clamd.scan/clamd.sock

Save the changes by hitting CTRL + X shortcut (or COMMAND+X if you are on MAC).

Almost done, now remove Example string from ClamAV’s freshclam update engine configuration file:

# sed -i -e "s/^Example/#Example/" /etc/freshclam.conf

Run virus definition database update:

# freshclam

You should get similar output:

ClamAV update process started at Tue Dec 19 09:30:20 2016
main.cvd is up to date (version: 57, sigs: 4218790, f-level: 60, builder: amishhammer)
Trying host database.clamav.net (69.163.100.14)...
Downloading daily.cvd [100%]
daily.cvd updated (version: 22739, sigs: 1100989, f-level: 63, builder: neo)
Downloading bytecode-279.cdiff [100%]
Downloading bytecode-280.cdiff [100%]
Downloading bytecode-281.cdiff [100%]
Downloading bytecode-282.cdiff [100%]
Downloading bytecode-283.cdiff [100%]
bytecode.cld updated (version: 285, sigs: 57, f-level: 63, builder: bbaker)
Database updated (5319836 signatures) from database.clamav.net (IP: 168.143.19.95)

Lastly, start Clamd service and run in on boot:

# systemctl start clamd@scan

# systemctl enable clamd@scan

M. Salmon v1.0 2018-06 Page 12 of 14

How To - Install LibreNMS (Systems Monitoring)
FROM THIS POINT FORWARD – SSL IMPLEMENTATION
/ DOCUMENTATION, HAS NOT BEEN UNDERTAKEN or
TESTED!

Install Certbot, which is the client application for Let's Encrypt CA.

# yum -y install certbot

Generate the SSL certificates:

Note: To obtain certificates from Let's Encrypt CA, the domain for which the certificates are to be generated must
be pointed towards the server externally. If not, make the necessary changes to the DNS records of the domain
and wait for the DNS to propagate before making the certificate request again. Certbot checks the domain
authority before providing the certificates.

The SSL certificate will be stored as fullchain.pem and private key will be stored as privkey.pem.

Create a new virtual host.

# vi /etc/nginx/conf.d/nms.example.com.conf <enter>

server {
listen 80;
# server_name nms.localdomain; *remove the < > from below, replacing with registered domain
server_name <nms.domain.org>;
return 301 https://$host$request_uri;
}
server {

listen 443;
# server_name nms.localdomain;
server_name nms.welovebees.cloudns.org;

ssl_certificate /etc/letsencrypt/live/<nms.domain.org> /fullchain.pem;

ssl_certificate_key /etc/letsencrypt/live/<nms.domain.org> /privkey.pem;

ssl on;
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_prefer_server_ciphers on;

access_log /opt/librenms/logs/librenms.nginx.access.log;
root /opt/librenms/html;
index index.php;

charset utf-8;
gzip on;
gzip_types text/css application/javascript text/javascript application/x-javascript
image/svg+xml text/plain text/xsd text/xsl text/xml image/x-icon;
location / {
try_files $uri $uri/ /index.php?$query_string;
}
location /api/v0 {
try_files $uri $uri/ /api_v0.php?$query_string;
}
location ~ \.php {
include fastcgi.conf;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/var/run/php-fpm/php-fpm.sock;
}
location ~ /\.ht {
deny all;
}
}

M. Salmon v1.0 2018-06 Page 13 of 14

How To - Install LibreNMS (Systems Monitoring)

# certbot certonly --webroot -w /usr/share/nginx/html -d <nms.domain.org> <enter>

M. Salmon v1.0 2018-06 Page 14 of 14