Securing Zorka Agent

Zorka is intended to work in intranet environments. As any interface exposed by agent can potentially expose sensitive information and possibly be used to attack an application, there is built in limits on IP addresses accessing agent.

Depending on protocol (zabbix, nagios) the following settings can be used to configure IP addresses of allowed clients:

  • zabbix.server.addr = 127.0.0.1 - for zabbix interface;

  • nagios.server.addr = 127.0.0.1 - for nagios interface;

Only localhost is allowed by default, so IP address(es) of monitoring server(s) have to be added. Above settings accept comma separated lists.