This check (along with the other accompanying http variables) tries to confirm that the page includes an IP address or subnet:<\/p>\n
http_expect_body_regex = \"^[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}($|\\\/)\"<\/code><\/pre>\nHowever, the updated conf file didn’t pass validation:
\n<\/p>\n
sudo \/usr\/sbin\/icinga2 daemon --validate\r\n...\r\n[lots of output]\r\n...\r\n[2024-05-02 21:12:39 -0500] critical\/config: Error: Bad escape sequence found: \\.\r\n...<\/code><\/pre>\nHow am I supposed to check for a literal dot (.<\/code>) without a backslash?<\/p>\nThe Icinga2 documentation’s language reference includes a list of string literals escape sequences<\/a>. I just needed to replace the backslash (\\<\/code>) with a double-backslash (\\\\<\/code>).<\/p>\nI updated the variable:<\/p>\n
http_expect_body_regex = \"^[0-9]{1,3}\\\\.[0-9]{1,3}\\\\.[0-9]{1,3}\\\\.[0-9]{1,3}($|\\\\\/)\"<\/code><\/pre>\nThat still didn’t pass validation:<\/p>\n
sudo \/usr\/sbin\/icinga2 daemon --validate\r\n...\r\n[lots of output]\r\n...\r\n[2024-05-02 21:21:12 -0500] critical\/config: Error: Validation failed for object 'blocklist!https' of type 'Service'; Attribute 'vars' -> 'http_expect_body_regex': Closing $ not found in macro format string '^[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}($|\\\/)'.\r\n...<\/code><\/pre>\nNow it doesn’t like the dollar sign ($<\/code>). The dollar sign isn’t listed in the language reference as a character that needs escaping though.<\/p>\nFortunately, I ran into this Icinga2 community post: Which characters within a string need to be escaped in Icinga’s configs?<\/a><\/p>\nThat page indicates that the dollar sign is used in macros and can be escaped with another dollar sign.<\/p>\n
I updated the variable again:<\/p>\n
http_expect_body_regex = \"^[0-9]{1,3}\\\\.[0-9]{1,3}\\\\.[0-9]{1,3}\\\\.[0-9]{1,3}($$|\\\\\/)\"<\/code><\/pre>\nThat passed validation!<\/p>\n