[Cflowd]
RE: Can't LOG messages using cfdcollect, and it doesn't work
Rogelio Quintanilla Tamez
rogelio.quintanilla at corp.terralycos.com
Mon Jun 23 17:28:52 PDT 2003
Hi !
I am trying to make this stuff work, I have made a change in the design, now
running cflowdmux, cflowd and cfdcollect on the same machine (Solaris 8).
Al this components are running, I can see flow data coming to the server and
it is being saved on flow files... But still can not generate arts files...
Cfdcollect is active.
I cant see any message on syslog, neither informative messages... What could
it be?
I have restarted syslogd... And nothing...
Thank you for any help...
Rogelio
-----Original Message-----
From: Rogelio Quintanilla Tamez
Sent: Friday, June 20, 2003 9:15 AM
To: cflowd at caida.org
Subject: Can't LOG messages using cfdcollect, and it doesn't work
Hi folks,
I am having troubles logging messages on syslog...
This is my Cflowd implementation:
I have one server receiving NetFlow packets, and other server as a central
DB repository and reporting server.
Server A: Running cflowdmux and cflowd Server B: Running cfdcollect
Both servers are connected directly using a cross-over cable... The
communication is OK.
On Server A (Solaris 8) 192.168.1.3:
Right now, I can see the NetFlow packets being saved on files as it is
supposed to be. Running "flowwatch" command on Server A, display activity
correctly.
But on Server B (Solaris 9) 192.168.1.2:
I can run cfdcollect, and there are no visible error messages, but there
aren't informative messages neither. Neither syslog or messages are
registering any cfdcollect messages, so I think there is a problem with my
syslog service.
I have looked at the packets on the cross-over interface using snoop, and
cfdcollect doesn't even try to query Server A for flows.
I am including my actual cflowd.conf file of Server A, and cfdcollect.conf
of Server B as reference.
Does anyone had this kind of problem before?
What do you recommend to troubleshoot Solaris 9 for this kind of problem
with syslog and cfdcollect?
Thank you very much in advance for any hint.
Rogelio
------------------------------------
Rogelio Quintanilla Tamez
------------------------------------
Terra Networks México
Blvd. Díaz Ordaz 123 Pte.
Col. Santa María.
Monterrey, NL. México, 64550
Tel 52.81.8150.4193
Fax 52.81.8150.4266 Cve. 4193
Pager 52.81.8151.1111 Cve. 5123968
------------------------------------
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.491 / Virus Database: 290 - Release Date: 6/18/2003
More information about the Cflowd
mailing list