Turn your Cisco PIX Syslog files into Graphs using Syslog Junction.

I was setting up a bunch of monitoring at work as we hadn’t have that much implemented. I ran into this application in a random fashion. Sys Junction is an application that graphs out syslog data from Cisco PIX firewalls.

I was setting up a bunch of monitoring at work as we hadn’t have that much implemented. I ran into this application in a random fashion. Sys Junction is an application that graphs out syslog data from Cisco PIX firewalls.

The setup is simple, you download the install archive, extract it and then run the install script “run.sh”. You will need to make sure that the file has executable permissions, since my install was a linux install (they also have a windows version). Run “chmod u+x run.sh” beforehand. You would think that from reading the documentation the install would occur, but no install actually occurs. Once you type “run.sh” the application forks into the background and starts printing random logging information on your terminal. It doesn’t even install as a service, you have to do this yourself.

Now that you have Syslog Junction running, you can open up your web browser and point it to “http://127.0.0.1:11052” or the IP address of the server you have it running on. You should see a login screen, enter in the default login information which is “admin/letmein”. And bam you either see graphs or no graphs!

I didn’t have graphs! I look back now and think, should have spent 3 hours on trying to get this to finally work or not? Was it worth all the trouble of trying to figure out the problem instead of having a Install Document or any type of information other than a couple pages of a PDF file with only a couple pages of information.

After look at the logs in the folder “logs”, I see in the file “SLJunction.log”. So I decide to tail it to see whats in it. And Viola! I get an error message

2007-11-20 16:12:29,640 ERROR sljunction.SLJunctionApp - Unable to start Syslog server. Address already in use

So I ponder to myself and do what anybody in my position would do, start grinding out the debugging tools. So I run netstat:


[[email protected]:/var/www/default/SLJunction/logs]# netstat -nlp | grep syslog
udp 110400 0 0.0.0.0:514 0.0.0.0:* 4646/syslogd

Oh and look syslog had the -r option for remote machine logging. So I disabled syslog and start Syslog Junction again and no more error. But instead of getting pretty graphs, I get blank ones again.

After further testing it look as though you have to make sure that your Cisco PIX is sending only Informational syslog data otherwise it pick up the traffic.

All in all, a good application, but time consuming!

Visit the Syslog Junction site.

0 Shares:
You May Also Like

Seagate unveils turmoil-proof EE25.2 hard drive

Seagate unveils turmoil-proof EE25.2 hard drive - As if stuffing a quarter terabyte onto a single Barracuda platter and finally matching Hitachi in the 1TB realm weren't enough to gloat about, Seagate is now unveiling a hard drive aimed squarely at those reading this from the Amazon Rainforest (or a vanilla construction area, but you understand). The second-generation SATA EE25 drive -- easily dubbed the EE25.2 -- is available in sizes up to 80GB and can handle extreme temperatures, sensational heights, 'round the clock operation, 90-percent humidity, and drops / shocks that would likely put you out of commission before your data. No word yet on pricing nor availability, but don't expect 80 gigabytes of nearly indestructible storage to come without a premium.

 

Read | Permalink | Email this | Comments


Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

[EnGadget]

AT&T To Impose Early Cancellation Charge On iPhone

AT&T To Impose Early Cancellation Charge On iPhone -

Thinking about getting an iPhone, unlocking it, then jetting across the street to T-Mobile? Better think twice before doing that friend, ’cause AT&T is out to nail you with a hefty fine for backing out of your agreement with them. Despite the iPhone not being a subsidized item for AT&T, the company still will charge you $175 for terminating your contract early. Sucky, I know.

Like I’ve said in the past, AT&T needs to retain these iPhone customers that will swarm stores next week. Imposing a cancellation fee of that caliber sucks, but it’s how the world works. No word if customers with existing accounts will be subject to the fee.

AT&T to impose $175 early iPhone cancelation fee [Apple Insider]

[CrunchGear]

EA Games wants an Open and Single Platform

EA Games Head of International Distribution Florin, wants a single and open platform. Instead of having 3 or 4 different platforms for each game they release, they want to stream line it. He also goes on to talk about set top boxes and how they will be the next generation console.

ZAP announces mysterious high-performance electric car

ZAP announces mysterious high-performance electric car -

Filed under:


ZAP (which stands for Zero Air Pollution) announced another new entry to its electric car stable, an as-yet-unnamed sedan that will apparently sell for $30,000. The California based company claims their new model will reach a top speed of 100 mph, and will have a 100-mile range between charges. But here's where this story gets really interesting: ZAP announced a different model back in January which still hasn't seen the light of day, and AutoblogGreen questions whether the company has been using press releases as a method of increasing their stock price for short term cash-flow. Competitors like Tesla have prototypes on the road, but no such luck with ZAP, which certainly raises a number of questions, and definitely gets you thinking about the word vaporware.

Read -- ZAP press release
Read -- AutoblogGreen's take on ZAP

 

Permalink | Email this | Comments


Office Depot Featured Gadget: Xbox 360 Platinum System Packs the power to bring games to life!

[EnGadget]

Underfunded NSA Suffers Brownouts

This is really funny, NSA employee's have problems trusting each other.
Underfunded NSA Suffers Brownouts - An anonymous reader writes "Almost ten years after the an internal report, and a year after a Baltimore sun story warned that the electrical system at the fort Meade NSA HQ couldn't keep up with the growing electricity demand ... the problem has got worse. The 'NSA has had to resort to partial, rolling brownouts at its computer farms and scheduled power outages and some offices are experiencing significant power disruptions'. NSA director Alexander testified to congress about this problem. It is suggested he wanted to add more than $800 million to the 07 budget. A recent public powerpoint presentation suggested 70% of of all intelligence spending goes to contractors. It also included a graph, without numbers, of this spending. It suggests that US intelligence spending is around $60 billion. An internal survey that showed NSA employees have problems trusting each other."

Read more of this story at Slashdot.

[Slasdot]