From: Jet \(jchan~AT~trusecure.com\) (\(jchan~AT~trusecure.com\))
Date: Wed Mar 05 2003 - 02:31:23 CET
I've the similar problem before.
Just check with you, where is the analog binary file? If the analog is located at /usr/local/bin, then most likely is the same problem as mine.
You can try this, add the path to the environment variable PATH for analog in the fwanalog.sh script (or the crontab script). The actual problem is, when the fwanalog script is executed, it merely create the header and never update the content when it cannot find the analog (instead of report an error).
I have been trying to establish fwanalog on a Sun Box running solaris 8. However, each time I run the app, the html files get updated but are completely blank except for the header and footer html. I changed shbang to BASH and checked analog; which seems to be working. I do not have zegrep on my box, however, but I changed the zegrep call to 'grep -c' which should work on compressed files. I don't even know if zegrep is necessary since I am not trying it with compressed logs anyway. Any insights would be appreciated.
Here is a snippet of the log file I running fwanalog against:
Dec 19 00:02:13 apf ipmon: 00:02:13.458343 qfe4 ~AT~0:10 b 188.8.131.52,31852 -> 184.108.40.206,162 PR udp len 20 179
Dec 19 00:02:14 apf ipmon: 00:02:14.041573 qfe4 ~AT~0:31 b 10.41.37.116 -> 10.1.43.62 PR icmp len 20 84 icmp 8/0
Dec 19 00:02:14 apf ipmon: 00:02:14.042523 qfe4 ~AT~0:31 b 10.41.37.116 -> 10.1.36.7 PR icmp len 20 84 icmp 8/0
Dec 19 00:02:14 apf ipmon: 00:02:14.489302 qfe4 ~AT~0:10 b 220.127.116.11,31858 -> 18.104.22.168,162 PR udp len 20 179
Dec 19 00:02:15 apf ipmon: 00:02:14.984792 qfe4 ~AT~0:10 b 22.214.171.124,31861 -> 126.96.36.199,162 PR udp len 20 179
Boston, MA 02343
This archive was generated by hypermail 2.1.5 : Thu Mar 06 2003 - 23:22:03 CET