Cyberoam iView Linux Installation Guide

| Posted in Linux Server, Monitoring, Nigeria

 

Cyberoam Iview adalah software Intelligent Logging dan Reporting. Software ini bersifat open source dan dapat kita download dan gunakan gratis tanpa membayar lisensi, fitur software ini sangat bagus dimana banyak software sejenis lainnya di develop secara lisensi. Cyberoam iView merupakan keluaran terbaru setelah perusahaan Cyberoam mengeluarkan devices untuk network security dan router. Traffic pemakaian setiap user dapat kita monitor melalui iView, Devices dan software Cyberiam sangat cocok bagi internet service provider dimana dapat menempatkan router cyberoam di clientnya dan memberikan user login ke usernya melalui server iView untuk dapat melihat dan memantau aktifitas internet user tersebut. Software ini dapat saya katakan gabungan dari beberapa software lain seperti Untangle, Cacti, SARG, Bandwidth Management, QOS, Filtering,dan sebagainya.

Instalasi software versi Linux Cyberoam-iView  agak sulit tetapi dengan waktu yang cukup akhirnya saya berhasil menginstall software ini dan memasukkan puluhan cyberoam devices ke dalam server ini untuk dapat dimonitor dan diberikan ke client. Bagaimana proses instalasi dan konfigurasinya ?

Saya menggunakan iView-Linux-0.111, sistem operasi Debian GNU Linux 5.0.8 Lenny, PostgreSQL 8.4, Java 1.5 untuk server menggunakan Supermicro Computer, Inc dengan memory 2 GB

Pastikan sistem operasi debian sudah di install dengan standart system, tanpa GUI, biar lite dan ringan.

PRI-IVIEW1:/home/gtoms# cat /etc/debian_version
5.0.8

PRI-IVIEW1:/home/gtoms# uname -a
Linux NGLAEM1 2.6.26-2-686 #1 SMP Thu Jan 27 00:28:05 UTC 2011 i686 GNU/Linux

Untuk memudahkan instalasi PostgreSQL 8.4 saya edit sources.list :

PRI-IVIEW1:~# nano /etc/apt/sources.list

deb http://ftp.us.debian.org/debian/ lenny main
deb-src http://ftp.us.debian.org/debian/ lenny main

deb http://security.debian.org/ lenny/updates main
deb-src http://security.debian.org/ lenny/updates main

deb http://volatile.debian.org/debian-volatile lenny/volatile main
deb-src http://volatile.debian.org/debian-volatile lenny/volatile main

deb http://backports.debian.org/debian-backports lenny-backports main

PRI-IVIEW1:~# apt-get install debian-backports-keyring
Reading package lists… Done
Building dependency tree
Reading state information… Done
The following NEW packages will be installed:
debian-backports-keyring
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
Need to get 3362B of archives.
After this operation, 49.2kB of additional disk space will be used.
Get:1 http://backports.debian.org lenny-backports/main debian-backports-keyring 2009.02.20 [3362B]
Fetched 3362B in 0s (6564B/s)
Selecting previously deselected package debian-backports-keyring.
(Reading database … 19593 files and directories currently installed.)
Unpacking debian-backports-keyring (from …/debian-backports-keyring_2009.02.20_all.deb) ...
Setting up debian-backports-keyring (2009.02.20) ...
OK

PRI-IVIEW1:~# apt-get install t lennybackports postgresql-8.4
Reading package lists… Done
Building dependency tree
Reading state information… Done
The following extra packages will be installed:
libapr1 libaprutil1 libaprutil1-dbd-sqlite3 libaprutil1-ldap libdb4.8 libexpat1 libpq5 libssl0.9.8 lsb-release openssl
openssl-blacklist php5-common php5-pgsql postgresql-client-8.4 postgresql-client-common postgresql-common postgresql-doc postgresql-doc-8.4 ssl-cert
Suggested packages:
lsb ca-certificates postgresql slony1-bin oidentd ident-server
The following NEW packages will be installed:
libapr1 libaprutil1 libaprutil1-dbd-sqlite3 libaprutil1-ldap libdb4.8 libexpat1 lsb-release openssl openssl-blacklist
php5-common php5-pgsql postgresql-8.4 postgresql-client-8.4 postgresql-client-common postgresql-common postgresql-doc postgresql-doc-8.4 ssl-cert
The following packages will be upgraded:
libpq5 libssl0.9.8
2 upgraded, 24 newly installed, 0 to remove and 30 not upgraded.
Need to get 26.0MB of archives.
After this operation, 66.8MB of additional disk space will be used.
Do you want to continue [Y/n]? y
Get:1 http://security.debian.org lenny/updates/main php5-common 5.2.6.dfsg.1-1+lenny10 [366kB]
Get:2 http://backports.debian.org lenny-backports/main libssl0.9.8 0.9.8o-4~bpo50+1 [3063kB]
Get:3 http://ftp.us.debian.org lenny/main openssl-blacklist 0.4.2 [6338kB]
Get:4 http://security.debian.org lenny/updates/main libapache2-mod-php5 5.2.6.dfsg.1-1+lenny10 [2485kB]
12% [2 libssl0.9.8 1910056/3063kB 62%] [3 openssl-blacklist 786029/6338kB 12%] [4 libapache2-mod-php5 213989/2485kB 8%]———————————skip————————————————————-
Enabling site default.
Enabling module alias.
Enabling module autoindex.
Enabling module dir.
Enabling module env.
Enabling module mime.
Enabling module negotiation.
Enabling module setenvif.
Enabling module status.
Enabling module auth_basic.
Enabling module deflate.
Enabling module authz_default.
Enabling module authz_user.
Enabling module authz_groupfile.
Enabling module authn_file.
Enabling module authz_host.
Enabling module reqtimeout.
Setting up libpq5 (8.4.7-0squeeze1~bpo50+1) ...
Setting up php5-pgsql (5.2.6.dfsg.1-1+lenny10) ...
Setting up postgresql-client-common (111~bpo50+1) ...
Setting up postgresql-client-8.4 (8.4.7-0squeeze1~bpo50+1) ...
Setting up ssl-cert (1.0.23) ...
Setting up postgresql-common (111~bpo50+1) ...
Adding user postgres to group ssl-cert
Building PostgreSQL dictionaries from installed myspell/hunspell packages…
Setting up postgresql-8.4 (8.4.7-0squeeze1~bpo50+1) ...
Creating new cluster (configuration: /etc/postgresql/8.4/main, data: /var/lib/postgresql/8.4/main)...
Moving configuration file /var/lib/postgresql/8.4/main/postgresql.conf to /etc/postgresql/8.4/main…
Moving configuration file /var/lib/postgresql/8.4/main/pg_hba.conf to /etc/postgresql/8.4/main…
Moving configuration file /var/lib/postgresql/8.4/main/pg_ident.conf to /etc/postgresql/8.4/main…
Configuring postgresql.conf to use port 5432…
Starting PostgreSQL 8.4 database server: main.
Setting up postgresql-doc-8.4 (8.4.7-0squeeze1~bpo50+1) ...
Setting up postgresql-doc (8.4.7-0squeeze1~bpo50+1) ...
Setting up lsb-release (3.2-20) ...

PRI-IVIEW1:~#

PRI-IVIEW1:~# mkdir /iviewdb/

PRI-IVIEW1:~# chown -R postgres.postgres /iviewdb

postgres@PRI-IVIEW1:/root$

PRI-IVIEW1:~# su postgres

postgres@PRI-IVIEW1:/root$ /usr/lib/postgresql/8.4/bin/initdb -D /iviewdb
The files belonging to this database system will be owned by user “postgres”.
This user must also own the server process.

The database cluster will be initialized with locale en_NG.
The default database encoding has accordingly been set to UTF8.
The default text search configuration will be set to “english”.

fixing permissions on existing directory /iviewdb … ok
creating subdirectories … ok
selecting default max_connections … 100
selecting default shared_buffers … 28MB
creating configuration files … ok
creating template1 database in /iviewdb/base/1 … ok
initializing pg_authid … ok
initializing dependencies … ok
creating system views … ok
loading system objects’ descriptions … ok
creating conversions … ok
creating dictionaries … ok
setting privileges on built-in objects … ok
creating information schema … ok
vacuuming database template1 … ok
copying template1 to template0 … ok
copying template1 to postgres … ok

WARNING: enabling “trust” authentication for local connections
You can change this by editing pg_hba.conf or using the -A option the
next time you run initdb.

Success. You can now start the database server using:

/usr/lib/postgresql/8.4/bin/postgres -D /iviewdb
or
/usr/lib/postgresql/8.4/bin/pg_ctl -D /iviewdb -l logfile start

postgres@PRI-IVIEW1:/root$ createuser pguser
Shall the new role be a superuser? (y/n) y
postgres@PRI-IVIEW1:/root$ psql postgres
psql (8.4.7)
Type “help” for help.

postgres=# template1=# password pguser;
Enter new password:
Enter it again:

postgres-# q

postgres@PRI-IVIEW1:/root$ exit
exit

PRI-IVIEW1:/etc/postgresql/8.4/main# su – postgres

postgres@PRI-IVIEW1:~$ createdb iviewdb;

postgres@PRI-IVIEW1:~$ psql -c “ALTER USER postgres WITH PASSWORD ‘databaseiview’” -d template1

postgres@PRI-IVIEW1:~$ exit

PRI-IVIEW1:~# cd /etc/postgresql/8.4/main

PRI-IVIEW1:/etc/postgresql/8.4/main# ls
environment  pg_ctl.conf  pg_hba.conf  pg_ident.conf  postgresql.conf  start.conf

PRI-IVIEW1:/etc/postgresql/8.4/main# mkdir data

PRI-IVIEW1:/iviewdb#chmod 777 /etc/postgresql/8.4/main/data

PRI-IVIEW1:/iviewdb#chmod 777 /var/lib/postgresql/8.4/main/data

PRI-IVIEW1:/iviewdb# cp /var/lib/postgresql/8.4/main/PG_VERSION  /etc/postgresql/8.4/main/data

PRI-IVIEW1:/iviewdb#cp /var/lib/postgresql/8.4/main/PG_VERSION  /var/lib/postgresql/8.4/main/data/

PRI-IVIEW1:/home/gtoms# nano /etc/postgresql/8.4/main/pg_hba.conf

  1. Database administrative login by UNIX sockets
    local   all         postgres                          trust
  1. TYPE  DATABASE    USER        CIDR-ADDRESS          METHOD
  1. “local” is for Unix domain socket connections only
    local   all         all                               trust
  2. IPv4 local connections:
    host    all         all         127.0.0.1/32          trust
  3. IPv6 local connections:
    host    all         all         ::1/128               trust
  1. /etc/init.d/postgresql restart

Selesai menginstall PostgreSQL 8.4 saya menginstall JAVA 1.5 sesuai syarat iView agar bisa berjalan, edit kembali sources.list untuk dapat mencari paket instalasi Java 1.5  :

  1. nano /etc/apt/sources.list

deb http://ftp.us.debian.org/debian/ lenny main non-free
deb-src http://ftp.us.debian.org/debian/ lenny main non-free

deb http://security.debian.org/ lenny/updates main non-free
deb-src http://security.debian.org/ lenny/updates main non-free

PRI-IVIEW1:/home/gtoms# apt-get install sun-java5-jdk
Reading package lists… Done
Building dependency tree
Reading state information… Done
The following extra packages will be installed:
avahi-daemon dbus dbus-x11 defoma gsfonts gsfonts-x11 java-common libasound2 libavahi-common-data libavahi-common3 libavahi-core5 libdaemon0 libdbus-1-3 libfontenc1 libfreetype6 libice6 libltdl3
libnss-mdns libsm6 libxfont1 libxi6 libxt6 libxtst6 odbcinst1debian1 sun-java5-bin sun-java5-demo sun-java5-jre unixodbc xfonts-encodings xfonts-utils
Suggested packages:
avahi-autoipd defoma-doc dfontmgr psfontmgr x-ttcidfont-conf equivs libasound2-plugins libfreetype6-dev sun-java5-doc sun-java5-source sun-java5-plugin ia32-sun-java5-plugin sun-java5-fonts ttf-baekmuk
ttf-unfonts ttf-unfonts-core ttf-kochi-gothic ttf-sazanami-gothic ttf-kochi-mincho ttf-sazanami-mincho ttf-arphic-uming libmyodbc odbc-postgresql libct1
Recommended packages:
libft-perl
The following NEW packages will be installed:
avahi-daemon dbus dbus-x11 defoma gsfonts gsfonts-x11 java-common libasound2 libavahi-common-data libavahi-common3 libavahi-core5 libdaemon0 libdbus-1-3 libfontenc1 libfreetype6 libice6 libltdl3
libnss-mdns libsm6 libxfont1 libxi6 libxt6 libxtst6 odbcinst1debian1 sun-java5-bin sun-java5-demo sun-java5-jdk sun-java5-jre unixodbc xfonts-encodings xfonts-utils
0 upgraded, 31 newly installed, 0 to remove and 0 not upgraded.
Need to get 51.8MB of archives.
After this operation, 130MB of additional disk space will be used.
Do you want to continue [Y/n]? y
Get:1 http://security.debian.org lenny/updates/main libavahi-common-data 0.6.23-3lenny3 [31.4kB]
Get:2 http://ftp.us.debian.org lenny/main libice6 2:1.0.4-1 [46.6kB]
Get:3 http://security.debian.org lenny/updates/main libavahi-common3 0.6.23-3lenny3 [48.0kB]
Get:4 http://security.debian.org lenny/updates/main libavahi-core5 0.6.23-3lenny3 [115kB]
Get:5 http://ftp.us.debian.org lenny/main libsm6 2:1.0.3-2 [22.3kB]
———————————————-skip——————————————————————-

Selesai instalasi Java 1.5 tiba saatnya menginstall iView, download iView di :

http://sourceforge.net/projects/cyberoam-iview/files/

PRI-IVIEW1:/home/gtoms#mkdir /iview

PRI-IVIEW1:/home/gtoms#mkdir /iview/archive

PRI-IVIEW1:/home/gtoms#chmod 755 iView-Linux-0.111-Setup.bin

PRI-IVIEW1:/home/gtoms# ./iView-Linux-0.111-Setup.bin

Enter Directory path to install iView
: /iview
Enter Directory path to store archived logs
: /iview/archive
Path values
IVIEW_HOME:/iview
ARCHIVE_HOME:/iview/archive
Checking kernel version compatibility …Done
Enter Postgresql 8.4 Home directory path
(Absolute path of directory that contains PostgreSQL data folder)
:/var/lib/postgresql/8.4/main/
Checking PG_version (PG 8.4 is required)...Done
searching psql client…Done
Enter JAVA 1.5 Home path
:/usr/lib/jvm/java-1.5.0-sun
Setting up JAVA for Cyberoam-iView (jdk 1.5 or greater is required)Java…Done
Creating IVIEW_HOME directory…Done
Copying GUI files…Done
Copying system files…Done
Updating PostgreSQL database parameters according to hardware configuration…Done
Setup starting service postgre
./iview_linux_installer/setup: line 373: /etc/init.d/postgresql-8.4: No such file or directory
please wait creating database
25%
50%
75%
100%...Done
Updating Cyberoam-iView parameters in database…Done
Specify password for default Cyberoam-iView administrator â “admin”
Administrator Username is: admin
Specify Password:
Re-enter Password:
Administrator’s Email id
henry@gultom.or.id
Registering Cyberoam-iView as a service…Done
Starting iviewd service
PRI-IVIEW1:/home/gtoms#

Ada error /etc/init.d/postgresql-8.4: No such file or directory tidak masalah, kita bisa merestart kembali dengan #/etc/init.d/postgresql restart

Cek status iview :

NGLAEM1:/home/gtoms# /etc/init.d/iviewd status
iView Web application is Running
iView Syslog server is Running

Kita bisa login ke webase iView :

http;//hostnameip:8000

masukkan username : admin dan password yang telah kita masukkan saat menginstall  iView.

Kemudian setelah login kita bisa mengcustomize devices-devices yang akan di monitor, caranya bisa dibaca di :

http://kb.cyberoam.com/default.asp?id=0&Lang=1&SID=

PRI-IVIEW1:/home/gtoms#
PRI-IVIEW1:/home/gtoms# netstat -nltup
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      2086/sshd
tcp        0      0 127.0.0.1:5432          0.0.0.0:*               LISTEN      2807/postgres
tcp6       0      0 :::8000                 :::*                    LISTEN      3206/java
tcp6       0      0 127.0.0.1:8015          :::*                    LISTEN      3206/java
tcp6       0      0 :::22                   :::*                    LISTEN      2086/sshd
tcp6       0      0 ::1:5432                :::*                    LISTEN      2807/postgres
udp        0      0 0.0.0.0:514             0.0.0.0:*                           3780/(garner)
PRI-IVIEW1:/home/gtoms#

Success, Its Work, berhasil….................

PRI-IVIEW1:/home/gtoms# ps axf
PID TTY      STAT   TIME COMMAND
—————skip————————————-
2807 ?        S      0:01 /usr/lib/postgresql/8.4/bin/postgres -D /var/lib/postgresql/8.4/main -c config_file=/etc/postgresql/8.4/main/postgresql.conf
2809 ?        Ss     0:00  _ postgres: writer process
2810 ?        Ss     0:00  _ postgres: wal writer process
2811 ?        Ss     0:00  _ postgres: autovacuum launcher process
2812 ?        Ss     0:01  _ postgres: stats collector process
3214 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(38374) idle
3215 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(60223) idle
3216 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(56290) idle
3217 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(59576) idle
3218 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(56600) idle
3785 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41862) idle
3786 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41863) idle
3788 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41865) idle
3789 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41866) idle
3790 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41867) idle
3791 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41868) idle
3792 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41869) idle
3793 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41870) idle
3794 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41871) idle
3795 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41872) idle
3796 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41873) idle
3797 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41874) idle
3798 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(41875) idle
3918 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54189) idle
3919 ?        Ss     0:01  _ postgres: postgres iviewdb 127.0.0.1(54190) idle
3920 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54191) idle
3921 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54192) idle
3922 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54193) idle
3923 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54194) idle
3924 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54195) idle
3925 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54196) idle
3926 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54197) idle
3927 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54198) idle
3928 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54199) idle
3929 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54200) idle
3930 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54201) idle
3931 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54202) idle
3932 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54203) idle
3933 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54204) idle
3934 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54205) idle
3935 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54206) idle
3936 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54207) idle
3937 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54208) idle
3938 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54209) idle
3939 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54210) SELECT
3940 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54211) idle
3941 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54212) idle
3942 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54213) idle
3943 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54214) idle
3944 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54215) idle
3945 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54216) idle
3946 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54217) idle
3947 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54218) idle
3948 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54219) idle
3949 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54220) idle
3950 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54221) idle
3951 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54222) idle
3952 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54223) idle
3953 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54224) idle
3954 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54225) idle
3955 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54226) idle
3956 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54227) idle
3957 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54228) idle
3958 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54229) idle
3959 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54230) idle in transaction
3960 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54231) idle in transaction
3961 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54232) idle in transaction
3962 ?        Ss     0:00  _ postgres: postgres iviewdb 127.0.0.1(54233) idle in transaction3206 pts/0    Sl     0:12 /usr/lib/jvm/java-1.5.0-sun/bin/java -Djava.util.logging.config.file=/iview/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.
3779 ?        Ss     0:00 /usr/local/garner/garner -c /usr/local/garner/conf/garner.conf -p /usr/local/garner/garner.pid -l /usr/local/garner/log/garner.log -L 4
3780 ?        Sl     0:10  _ (garner) -c /usr/local/garner/conf/garner.conf -p /usr/local/garner/garner.pid -l /usr/local/garner/log/garner.log -L 4 -u 3779
PRI-IVIEW1:/home/gtoms#

LOG PostgreSQL :
PRI-IVIEW1:/etc/postgresql/8.4/main# tail f /var/log/postgresql/postgresql8.4-main.log
2011-05-26 22:19:29 WAT CONTEXT:  PL/pgSQL function “firewall_traffic_proc_12hr_second_level” line 67 at EXECUTE statement
SQL statement “SELECT  firewall_traffic_proc_12hr_second_level()”
PL/pgSQL function “firewall_traffic_proc_4hr_second_level” line 163 at PERFORM
2011-05-26 22:19:29 WAT STATEMENT:   Select  firewall_traffic_proc_4hr_second_level();
2011-05-26 22:19:55 WAT ERROR:  canceling statement due to user request
2011-05-26 22:19:55 WAT STATEMENTINSERT INTO write_firewall_traffic_data_1306420427_484496 (ruleid,action,srcip,destip,username,proto_group,application,upload,download,appid,log_component,dst_port,applicationid,src_zone,dst_zone) VALUES ($1,$2,$3,$4,$5,$6,$7,$8,$9,$10,$11,$12,$13,$14,$15)
2011-05-26 22:21:08 WAT ERROR:  canceling statement due to user request
2011-05-26 22:21:08 WAT STATEMENTINSERT INTO write_firewall_traffic_data_1306420427_484496 (ruleid,action,srcip,destip,username,proto_group,application,upload,download,appid,log_component,dst_port,applicationid,src_zone,dst_zone) VALUES ($1,$2,$3,$4,$5,$6,$7,$8,$9,$10,$11,$12,$13,$14,$15)
2011-05-26 22:21:16 WAT ERROR:  canceling statement due to user request
2011-05-26 22:21:16 WAT STATEMENTINSERT INTO write_firewall_traffic_data_1306420427_484496 (ruleid,action,srcip,destip,username,proto_group,application,upload,download,appid,log_component,dst_port,applicationid,src_zone,dst_zone) VALUES ($1,$2,$3,$4,$5,$6,$7,$8,$9,$10,$11,$12,$13,$14,$15)

TOP :
PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIMECOMMAND
12964 postgres  20   0 55968  17m  10m R   76  1.7   0:30.24 postgres
12990 postgres  20   0 48644  10m 7924 D    3  1.0   0:00.14 postgres
12988 postgres  20   0 48536  10m 8712 D    2  1.1   0:00.10 postgres
12995 postgres  20   0 48216  10m 8488 D    2  1.1   0:00.10 postgres
13000 postgres  20   0 48784 9348 6516 S    2  0.9   0:00.10 postgres
12992 postgres  20   0 48552 9.9m 7672 D    1  1.0   0:00.08 postgres
11398 root      20   0 16580 4148 1888 S    1  0.4   1:08.16 garner
12979 postgres  20   0 63908  19m 6740 S    1  1.9   0:03.18 postgres
12973 postgres  20   0 64164  20m 7160 S    1  2.0   0:14.86 postgres
12987 postgres  20   0 47652 8560 6568 S    1  0.8   0:00.04 postgres
13011 postgres  20   0 47608 9244 7332 D    1  0.9   0:00.04 postgres
12991 postgres  20   0 47652 8424 6440 S    0  0.8   0:00.02 postgres
12993 postgres  20   0 47648 8484 6500 S    0  0.8   0:00.02 postgres
12994 postgres  20   0 47640 8620 6628 S    0  0.8   0:00.02 postgres
12999 postgres  20   0 47756 6180 4200 S    0  0.6   0:00.02 postgres
13001 postgres  20   0 47788 6148 4200 S    0  0.6   0:00.02 postgres
13006 postgres  20   0 47720 6176 4196 S    0  0.6   0:00.02 postgres
13007 postgres  20   0 47752 7512 5512 R    0  0.7   0:00.02 postgres
13008 postgres  20   0 47608 6360 4456 R    0  0.6   0:00.02 postgres
2812 postgres  20   0 15204 2148  480 S    0  0.2   1:35.20 postgres
3206 root      20   0  289m  64m  15m S    0  6.4   1:37.16 java

Thanks Cyberoam !!

henry@gultom.or.id

Comments (1)

untuk security monitoring, cyberoam bisa digunakan untuk melihat log apa saja?

Write a comment