Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright 2009 Trend Micro Inc. Classification 9/23/2015 1 Troubleshooting TMSP Marks Shen Senior Engineer – QA Evan Wang Engineer - QA.

Published byCaren Sharp Modified over 8 years ago

Similar presentations

Presentation on theme: "Copyright 2009 Trend Micro Inc. Classification 9/23/2015 1 Troubleshooting TMSP Marks Shen Senior Engineer – QA Evan Wang Engineer - QA."— Presentation transcript:

1 Copyright 2009 Trend Micro Inc. Classification 9/23/2015 1 Troubleshooting TMSP Marks Shen Senior Engineer – QA Evan Wang Engineer - QA

2 Copyright 2009 Trend Micro Inc. Classification 9/23/2015 2 Agenda  Frequent Case  Debug log and information  Troubleshooting  Q&A

3 Copyright 2009 Trend Micro Inc. No report was generated Logs need to collect on Daemon Server –/opt/TrendMicro/tdss/tdes/log/iae_log.txt –/opt/TrendMicro/tdss/tdes/reports/tdes.log(Since 2.5R3) –/var/log/cron Information –Customer expiration date –Device register to TMSP

4 Copyright 2009 Trend Micro Inc. No report was generated Cont. Normal debug log for log correlation and report generation Crontab task cron_iae.sh will be executed at 2:15 am every day

5 Copyright 2009 Trend Micro Inc. No report was generated Cont. Report will not be generated if Customer service get expired Customer without device registered

6 Copyright 2009 Trend Micro Inc. No incident in report Logs need to collect on Daemon Server –/opt/TrendMicro/tdss/tdes/log/iae_log.txt Information –Check if TDA log has been uploaded Latest log time

7 Copyright 2009 Trend Micro Inc. Cannot access Admin console (err 404) Logs that need to collect on Daemon Server –/var/log/httpd/access_log –/var/log/httpd/error_log Information –ps –ef | grep httpd –netstat –anp | grep httpd

8 Copyright 2009 Trend Micro Inc. No Rsync log uploaded Logs need to collect on Access Server –Log receiver /var/log/messages /home/tdalog/log/pre-post-exec.log /home/tdalog/log/db_import_tda.log /home/tdalog/log/db_import_tdm.log –Authentication (describe in next sides) Information –ps –ef | grep tmsshd –netstat –anp | grep tmsshd Listen on port 22

9 Copyright 2009 Trend Micro Inc. No Rsync log uploaded Cont. normal log of tmsshd and rsync Classification 9/23/2015 9

10 Copyright 2009 Trend Micro Inc. No Rsync log uploaded Cont. Normal debug log of TDA log processing –/home/tdalog/log/pre-post-exec.log

11 Copyright 2009 Trend Micro Inc. CAS server case Problems caused by CAS failure : –Device register to TMSP fail –Customer portal login fail (only before R3) –Log uploading fail through RSYNC Log on Access Server: –/var/log/messages –/var/log/cas_8000.log –/var/log/cas_8001.log –/var/log/cas_8002.log Information: ps –ef | grep pound ps –ef | grep rubcasd Normal log of CAS authentication –/var/log/cas_8000.log

12 Copyright 2009 Trend Micro Inc. CAS server case – Service down TDA register fail Check /var/log/messages Recover –If pound or cas service is down /etc/init.d/pound start /etc/init.d/rubcasd start

13 Copyright 2009 Trend Micro Inc. Data Gateway Case Problems caused by Data Gateway failure : –OCS Heartbeat / OCS log cannot be handled –T2 / T3 mitigation request cannot be delivered to TMTM –SIC sample cannot be handled Logs on Access Server: –/opt/TrendMicro/dg/apache-tomcat-6.0.18-1/webapps/dg/WEB- INF/logs/dg.log –$APACHE_HOME/logs/ssl_request_log_dg –$APACHE_HOME/logs/error_log –/opt/TrendMicro/dg/apache-tomcat-6.0.18-1/logs/catalina.out Information: ps –ef | grep httpd ps –ef | grep tomcat netstat –anp | grep 443 netstat –anp | grep 8009 netstat –anp | grep 8080

14 Copyright 2009 Trend Micro Inc. Data Gateway Case – DB disconnect TDA register fail Check apache error log: /usr/apache/logs/error_log

15 Copyright 2009 Trend Micro Inc. Customer portal cannot login Logs need to collect on Access Server: –/opt/TrendMicro/dg/apache-tomcat-6.0.18- 1/webapps/tms2/WEB-INF/logs/tms.log –$APACHE_HOME/logs/ssl_request_log_portal –$APACHE_HOME/logs/error_log –/opt/TrendMicro/dg/apache-tomcat-6.0.18- 1/logs/catalina.out Information ps –ef | grep httpd ps –ef | grep tomcat netstat –anp | grep 443 netstat –anp | grep 8009 netstat –anp | grep 8080

16 Copyright 2009 Trend Micro Inc. Cannot get eMail notification Exclude Mail server problem, collect debug logs: –/root/infomation.log –/var/log/cron No Subscription DB connection fail

17 Copyright 2009 Trend Micro Inc. 2015-9-23 17 Classification FAQ Why no daily report can be found from web UI? 1. Check TDES log from #tail -n 100 /opt/TrendMicro/tdss/tdes/log/iae_log.txt If content like "Daily report: customer_ID, 2009 02 16 JP" cannot be found, that mean the scheduled job has not started so far. 2. Daily report is auto generated at 7:15 am every day, so check the system time of TDES: 3. Report generation need take some time, please check if the report is generating: #ps -ef | grep php if some php process is running, it means the reports are under generating. 4. Check if customer has expired for TMSP service, find the profile “expire time” from admin console

18 Copyright 2009 Trend Micro Inc. FAQ Why there is no data in report? 1. Check if the log has been uploaded to TMS and imported into Database Login log receiver machine and check the file last modification time #ll /home/tdalog/userdata/USERID/DEVICE_GUID/*.db If not latest data, that means TDA did not upload logs. 2. Log in database and query yesterday's log Some times, TDA did not detect any events, if so, there will be no yesterday's data in DB 3. Check iae_log.txt, check if “Running TDES 2.1 for XXXX (device=50)(customer_id=30) on date: 2009 2 16” existing, this means TMS run IAE for this customer. if NO this content exist, means there is something wrong when process IAE.

19 Copyright 2009 Trend Micro Inc. FAQ How to re-generate report manually? Login TDES machine, change dir to "/opt/TrendMicro/tdss/tdes/"; –1. Daily Report #php gendailydata.php user_id YEAR MONTH DAY example: "php gendailydata.php trend 2009 01 04" generate daily report of 2009.01.04 for customer "trend“ –2. Executive Report (Weekly / Monthly) #php genexecdata.php user_id START_DATE START_DATE yes m/w START_DATE: report start data with format “YYYY-MM-DD” START_DATE: report end data with format “YYYY-MM-DD” yes: if this report will be imported into DB m/w: monthly or weekly example: "php genexecdata.php trend 2009-01-01 2009-01-31 yes m" to generate monthly report for customer "trend" of 2009-01 –3. Upsell Report # php genupselldata.php user_id START_DATE END_DATE no example: " php genupselldata.php trend 2009-01-01 2009-01-31 no" to generate upsell report for customer "trend" from 2009-01-01 to 2009-01-31 Note: Upsell report will not be imported into DB and cannot download from admin console After execute these command, reports will be re-generated and imported into database for downloading

20 Copyright 2009 Trend Micro Inc. FAQ What’s the steps to deploy new report php file? Sometimes, reports generation related php need to be modified and deploy to TDES, here are the steps to do this: 1.back up old php file 2.replace with new php file 3.remove cache_*.php under TDES installation folder 4.Re-generate report to verify new php files if necessary

21 Copyright 2009 Trend Micro Inc. Q&A

22 Copyright 2009 Trend Micro Inc. Classification 9/23/2015 22 THANK YOU!

Download ppt "Copyright 2009 Trend Micro Inc. Classification 9/23/2015 1 Troubleshooting TMSP Marks Shen Senior Engineer – QA Evan Wang Engineer - QA."

Similar presentations

ITR3 lecture 7: more introduction to UNIX Thomas Krichel 2002-11-05.

ITR3 lecture 7: more introduction to UNIX Thomas Krichel
© 2012 Entrinsik, Inc. Informer Administration Exploring the system menu and functions PRESENTER: Jason Vorenkamp| Informer Software Engineer| March 2012.

© 2012 Entrinsik, Inc. Informer Administration Exploring the system menu and functions PRESENTER: Jason Vorenkamp| Informer Software Engineer| March 2012.
ESafe Reporter V3.0 eSafe Learning and Certification Program February 2007.

ESafe Reporter V3.0 eSafe Learning and Certification Program February 2007.
Week 6: Chapter 6 Agenda Automation of SQL Server tasks using: SQL Server Agent Scheduling Scripting Technologies.

Week 6: Chapter 6 Agenda Automation of SQL Server tasks using: SQL Server Agent Scheduling Scripting Technologies.
©2009 Justin C. Klein Keane PHP Code Auditing Session 3 – Tools of the Trade & Crafting Malicious Input Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 3 – Tools of the Trade & Crafting Malicious Input Justin C. Klein Keane
Cisco Confidential © 2013 Cisco and/or its affiliates. All rights reserved. 1 Unity Connection Qualification for Prime Collaboration Development Release.

Cisco Confidential © 2013 Cisco and/or its affiliates. All rights reserved. 1 Unity Connection Qualification for Prime Collaboration Development Release.
Using the Windows Event Viewer and Task Scheduler Chapter 5.

Using the Windows Event Viewer and Task Scheduler Chapter 5.
© 2008 Cisco Systems, Inc. All rights reserved. Cisco Unity Connection 7.0 Directory Integration TOI Manoj Agrawal

© 2008 Cisco Systems, Inc. All rights reserved. Cisco Unity Connection 7.0 Directory Integration TOI Manoj Agrawal
©2011 Quest Software, Inc. All rights reserved. Steve Walch, Senior Product Manager Blog: November, 2011 Partner Training Webcast.

©2011 Quest Software, Inc. All rights reserved. Steve Walch, Senior Product Manager Blog: November, 2011 Partner Training Webcast.
© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic.

© 2010 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2010 Cisco and/or its affiliates. All rights reserved. 1 Cryptographic.
Talend 5.4 Architecture Adam Pemble Talend Professional Services.

Talend 5.4 Architecture Adam Pemble Talend Professional Services.
1 Objectives Discuss the Windows Printer Model and how it is implemented in Windows Server 2008 Install the Print Services components of Windows Server.

1 Objectives Discuss the Windows Printer Model and how it is implemented in Windows Server 2008 Install the Print Services components of Windows Server.
Today’s Agenda Chapter 12 Admin Tasks Chapter 13 Automating Admin Tasks.

Today’s Agenda Chapter 12 Admin Tasks Chapter 13 Automating Admin Tasks.
Automating Student Course Profile & Student Record Report Uploads to GaDOE Chris A. McManigal Camden County Schools Kingsland, GA.

Automating Student Course Profile & Student Record Report Uploads to GaDOE Chris A. McManigal Camden County Schools Kingsland, GA.
Module 13 Automating SQL Server 2008 R2 Management.

Module 13 Automating SQL Server 2008 R2 Management.
Mobile Tech Architecture Overview Phil Sirigiano Technical Services 3/4/2015.

Mobile Tech Architecture Overview Phil Sirigiano Technical Services 3/4/2015.
Migration XenDesktop 7. © 2013 Citrix | Confidential – Do Not Distribute Migration prerequisites Set up a XenDesktop 7 Site, including the site database.

Migration XenDesktop 7. © 2013 Citrix | Confidential – Do Not Distribute Migration prerequisites Set up a XenDesktop 7 Site, including the site database.
A Practical Guide to Fedora and Red Hat Enterprise Linux Unit 10: Basic Apache Configuration and Management Chapter 26: Apache (httpd): Setting Up a Web.

A Practical Guide to Fedora and Red Hat Enterprise Linux Unit 10: Basic Apache Configuration and Management Chapter 26: Apache (httpd): Setting Up a Web.
M. Taimoor Khan * Java Server Pages (JSP) is a server-side programming technology that enables the creation of dynamic,

M. Taimoor Khan * Java Server Pages (JSP) is a server-side programming technology that enables the creation of dynamic,
Senior Design 2010 Group 10.  Students  Nathan Dane  Jamin Hitchcock  Eric Tweedt  Advisor  Tien Nguyen  Client  Mary Greeley Medical Center 

Senior Design 2010 Group 10.  Students  Nathan Dane  Jamin Hitchcock  Eric Tweedt  Advisor  Tien Nguyen  Client  Mary Greeley Medical Center 

Similar presentations

Ads by Google