User's Guide - infotecs.de
Contents
1. i i i s Appicaton Infotecs Berin V 1b7t 110311 421 23395 10 5200 19 09 10 5204 19 09 CS Khabare 000 110448 Unknown Uninowr 10 524M 1909 ow 000 100421 329 12046 10 5248 19 09 10 5204 19 09 ppbeaton InfoT Author IT InfoTed Server Build Gnad Primary IntoTeCs 000 110079 Unknown Unknowr 10 5204 1909 Server Build MAC OS VPN NG4121 10e 1100 Unknown Unknown 10 5204 19 09 Server Continuous integration Uru i0e 0000 Unknown nown 10 5204 1909 Server Coordinator HW10 Voice Tun 000 1153 Server or SIP InfoT ViPNet StateWatcher Monitored Hosts 474 Petigroup Export all groups 5 An events Ka Type Host name Events Iden IP ad ViPNetsof Timeon Last poll Status 4 Default group 6 9 5 TOC Chernov Aleksandr rer 110 32913607 18 1942 181935 Accessible Vasilenkova Kristina Edu 0001 100 Uknown Uknown 18 29 35 Unreachabie Sergach Yury OTC Khaba 0001 11 0 Uknown Uknown 18 19 35 Unreachable a TOC Tkach Lev I1Oel 11O 3 2 9 13607 18 19 39 18 19 35 Accessible WO TOC Ryabokon Dmitry Go ibet 110 3 71 2730 18 1943 181935 Accessible Sedykh Sergey Productio 0001 10 0 3 2 9 14544 18 19 39 1819 35 Accessible kd Tsibulnik Olga Manager I 0001 110 Uknown Uknown 18 19 35 Unreachabie TOC Zhmerenecty Jury S 0001 110 Uknown Uknown 18 39 35 Unreachable ar2. Device name Total disk space Free Used Description Disk letter Physical device name Measured in megabytes MB Free disk space in megabytes MB Disk space usage per cent Table 11 General characteristics of a monitored host System events log Parameter name System log Event time Event type Description Date and time of the event Format Possible values Symbol For example D String For example Device Harddisk Volume3 Integer For example 52 619 MB Integer Integer For example 18 Format Possible values HH MM SS DD MM YYYY For example 10 41 24 03 02 2011 String Parameter name Source Category User Description Application log Event time Event type Source Category User Description Table 12 ViPNet Monitor parameters Parameter name ViPNet Monitor or ViPNet control daemon version Description Event source name Event category The name of the user who invoked the event Event description Date and time of the event Event source name Event category The name of the user who invoked the event Event description Description The version of the ViPNet Monitor program or ViPNet control daemon Format Possible values For example Information String String String String HH MM SS DD MM YYYY String String String String String Format Possible values 3 or 4 numbers divided by a
3. 4 m r m Takes effect after you restart Internet Explorer Restore advanced settings Reset Internet Explorer settings Resets Internet Explorer s settings to their default Reset condition You should only use this if your browser is in an unusable state Figure 5 Advanced Internet Explorer configuration 4 Inthe Internet Options dialog box click Apply ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 19 If you are using the Internet Explorer 9 web browser and Windows Server 2003 or Windows Server 2008 R2 you should disable Enhanced Security Configuration For this depending on the used OS do the following 1 2 Windows Components For Windows Server 2003 1 1 Click the Start button and then click Control Panel 5 Add or Remove Programs 1 1 In the displayed window click Add or remove Windows components The Windows Components Wizard will be started 1 2 On the first page in the Components list clear the Internet Explorer Enhanced Security Configuration check box and click Next Windows Components Wizard x You can add or remove components of Windows i To add or remove a component click the checkbox A shaded box means that only part of the component will be installed To see what s included in a component click Details Components O Fax Services A 8A Networkinn Services 27MR Descrip
4. ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet I Private Selwer infotecs 1991 2014 Infotecs All rights reserved Version 00056 08 34 01 ENU This document is included in the software distribution kit and is subject to the same terms and conditions as the software itself No part of this publication may be reproduced published stored in an electronic database or transmitted in any form or by any means electronic mechanical recording or otherwise for any purpose without the prior written consent of Infotecs JSC ViPNet is a registered trademark of Infotecs JSC Moscow Russia All brands and product names that are trademarks or registered trademarks are the property of their owners Global contacts page http www vipnet com index_all php Contents Tinig UG AREA AA AA AA 6 About This DOCUMENE aaa NANA A vias sede TANDA NA 7 APA PR 7 Document COnVentions e esner ipe E ER E AE 7 About Monitoring Web AcCESS s ccssscccesseeesseeecessaeeeeseecesaeecseecesaeecesaaeecesaeesssaeeeeas 9 Distribution Kii irsini esi onenek eene AG BAGAN BABENG eTe EEEE EEEE 9 System ReguirementS narrare tees sees tees eas NA KG NANG NG NG NA A A TRA NANG 10 What s New 1n Version 4 33 i ee 8 BANANA AA 13 PEC DAC E anakan an aka E Ek kA AA AGA AGANG 17 Chapter 1 General Information ccscsscccsscsscsscsssscsssscsscsssscscsssssscssessssscsscsscsc
5. lt xs element type xs string name pkt log version gt lt xs element type xs string name pkt type gt lt xs element type xs string name server id gt lt xs element type xs string name is server gt lt xs element type xs string name ip list gt lt xs element type xs string name server poll timeout gt lt xs element type xs string name dudp gt lt xs element type xs string name dudp always use server gt lt xs element type xs string name virtual ip gt lt xs element type xs string name firewall ip gt lt xs element type xs string name proxy id gt lt xs element type xs string name port gt lt xs element type xs string name use firewall gt lt xs element type xs string name firewall type gt lt xs element type xs string name fix firewall gt lt xs element type xs string name task list gt lt xs element type xs string name forward id gt lt xs element type ifacesType name ifaces gt lt xs element type disksType name disks gt lt xs element type xs string name cpu usage gt lt xs element type xs string name memory total gt lt xs element type xs string name memory free gt lt xs element type xs string name memory usage gt lt xs element type xs string name disk usage int gt lt xs element type xs string name mftp status gt lt xs element type xs string name mftp queue length gt lt xs element type xs string name mftp queue size gt lt xs element type tunnelsType name tunnels gt lt xs element typ
6. o notifications text o event severity level Note We recommend you to extract large export files with the WinRAR program An export file may be incorrectly extracted if you use standard OS tools ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 56 Exporting Unprocessed Host Parameters You may export monitored hosts parameters before they are processed by the processing rules Export is a process of saving the hosts parameters collected by Monitoring Server into an XML file You can specify the time interval for which you want to save unprocessed host parameters Warning Exported parameters can be then imported to Microsoft Office Excel or Open A Office Calc To import monitoring events to a program you must take into account the specifications and limitations of this program You can t export unprocessed parameters of the cascaded hosts Unprocessed parameters exporting is performed by the Monitoring Server program in the background so it is possible to work with the monitoring system at the same time Note When you are exporting unprocessed parameters that have been collected over a long period of time or when you are exporting too many host parameters the exporting Fa process may take time In this case the export results are saved at the end of a monitoring session And when you start a new session you receive export results of the previous sessio
7. 6 optical WORM 5 optical ROM 4 floppy 3 hard drive ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 110 Parameter name Access Table 25 Running processes Parameter name Process identifier Parameters Process status Process location Description Permissions for accessing the device Description Process ID in the system A description of the parameters supplied to CPU when it was initially loaded The status of the running process Location on a disk where the process was launched Data type Integer Data type Integer String Integer String Possible values 2 unknown 1 other Possible values 1 read and write 2 read only Possible values Possible values 1 launched 2 operable 3 inoperable 4 error Parameter name Process type Process ProductID Process description Table 26 Installed applications Parameter name Application type Application index Description Application identifier for the running process Description of the running process Description The type of the installed program The index of the installed program Data type Integer String String Data type Integer Integer Possible values Possible values 1 unknown 2 operating system 3 driver 4 application process Possible values Possible
8. day ViPNet network 12 hours Coordinators accessible within the 29 6 hours ViPNet network 3hours Clients accessible within the ViPNet 537 network Events with the Informational severity o level 1hour 30 min 10 min 5min Son 4min 3min 2min Lmin Recent events Zx Map Zx 5 Host name Event Event time Message nga 7842315 75406 324543 82781 Figure 1 Dashboard e Adding a host description In the Host Information window the Description tab has been added for MWA users to type any useful information about the host see Viewing Information about a Monitored Host on page 32 The added information can be viewed and edited by other users ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 13 Host Information x Host name _Server Application Infotecs Berlin VPN N27039 IP address 11 0 3 11 Web link 11 0 3 11 Identifier 1b7f00c4 Host status Accessible Host local time Unknown Last polled on 18 02 03 18 09 2014 Host description A new application server bo a Close Figure 2 Adding host description e Monitoring connection to coordinators You can monitor connection between the selected host and ViPNet coordinators with which it is linked For your convenience all coordinators are displayed on one list in the monitored host properties window Thus you can quickly find out which network segment is disconnec
9. name device gt name capacity gt name free space gt name disk usage int gt name iface maxOccurs unbounded minOccurs 0 gt lement type ifaceTyp lt xs sequence gt lt xs complexType gt lt xs complexType name eventType gt lt xs sequence gt lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs sequence gt lt xs complexType gt lt xs complexTyp lt xs i seguente lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide name event type gt name event timestamp gt name event source gt name event category gt name user gt name event node gt name event description 5 name journal gt name recordType gt name node id gt name monitor status gt name node status gt name node name gt ViPNet StateWatcher 42 80 lt xs element type xs string name node type gt lt xs element type xs string name node timestamp gt lt xs element type xs string name product version gt lt xs element type xs string name drv version gt lt xs element type xs string name monitor version gt
10. 09 2014 24 09 2014 ExportTime 17 00 21 zip Figure 32 Saving an export file 5 The resulting file will be saved as an archive a file with a zip extension This archive contains an xm1 file with an XML scheme of the selected hosts parameters see Structure of the Unprocessed Host Parameters Export File on page 78 Note We recommend you to extract large export files with the WinRAR program An export file may be incorrectly extracted if you use standard OS tools ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 59 Working with Notifications In Monitoring Web Access you can see notifications that are formed on the monitoring server when events are registered see Monitoring event on page 123 The event severity level is defined in each rule ViPNet State Watcher supports various notification types such as highlighting hosts in a host list displaying messages giving sound notifications sending ViPNet Business Mail email and SMS messages Notifications of a certain type are used only if they are enabled Only an administrator can enable and disable notifications of certain types when setting the Monitoring Server program Displaying notifications as well as sending messages to users is performed according to the special notification filters settings Notification filters limit the amount of notifications that a user receives when processing rules are execu
11. Figure 14 Configuring which columns should be displayed in the list of monitored hosts Note The Type Host name and Events columns are always displayed You can t remove them from Displayed In the window for adding and removing columns parameters of both ViPNet hosts and public hosts are displayed Thus for the ViPNet hosts the public hosts parameters will have the Unknown status The same applies to ViPNet hosts parameters for public hosts 3 After you finish choosing the columns to be displayed click OK To discard the changes click Cancel As a result the required information about the monitored hosts will be displayed in the list These settings will be applied in the ensuing sessions on your host where you use Monitoring Web Access Host Groups Hosts in the list are grouped according to the current Monitoring Server settings You may expand and collapse any of the groups To do this use the arrow button to the left of the group name ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 31 In the pane with a group name on the right there is information about the number of events that have occurred on the hosts of the current group If you need you may filter the hosts in a group by events tracked on them Only the administrator can change settings for groups Besides the groups specified by the administrator in Monitoring Web Access there are th
12. Find A list with the events selected from the database according to your filtering parameters will be displayed 3 Inthe Results field the number of the events found and the search time will be shown When you browse another page with search results the time shown may also change according to the quantity of the entries found By default there are 50 results on the search results page If necessary you may change the number of results on the page To do this in the Number of entries per page list choose the number you want To list through search results pages click the lt prev buttons If an entry is displayed in gray it refers to events registered by the rules that are now deleted By default the entries on the list are sorted by the time the processing rule was executed the Detection time column in descending order ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 53 4 If you want to sort the event list by any other column click the title of this column You can export the resulting events list to a file see Exporting the Monitoring Events History on page 55 Detailed Viewing of the Monitoring Events History When viewing monitoring events history you may obtain detailed information about any of the events To do this 1 On the main page click the Events History tab Specify event search criteria and click Find In the Resu
13. Identifier IP address Subnet mask IP datagram size Table 23 Data storages Parameter name Data block size bytes Storage index Allocation units size Description Used allocation units amount Description The low bit value for a broadcast address Interface identifier IP address of the interface Subnet mask for this interface The maximum size of the IP datagram that can be collected Description The data block size in bytes Data storage index Data storage description Data type Integer Integer IP address For example 110 33 7 83 IP address For example 255 255 255 0 Integer Data type Byte Integer Integer String Integer Possible values Possible values are 0 and 1 usually 1 Possible values range from 0 to 65535 Possible values Parameter name The number of requests to the data storage Storage type Table 24 Disk data storages Parameter name Fjectable Size Disk type Description The number of requests to the data storage that could not be processed because of a lack of space in the storage Data storage type Description The disk storage can be ejected The size of the disk storage The type of a disk storage Data type Possible values Integer String containing the data storage identifier Data type Possible values Boolean Possible values true and false KB Integer Possible values 8 RAM 7 optical RW
14. Map on page 48 or object see Searching for Geographical Objects on page 49 Searching for Hosts on the Map To find a monitored host 1 On the Monitor tab click Map 2 On the toolbar expand the Hosts on the map list and choose the required host You can also type one or more characters to filter this list Case insensitive filtering will be performed and the hosts names containing the typed characters will be displayed After you have chosen the host it is automatically positioned on the map ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 48 FA ViPNet Statewatcher Monitor Use the map to monitor your hosts PNTA IT Depart TEST 1 NENA IS IT Android i ro W 6a 0 IT Depart TEST 2 E wmm HW 100 C VPN NDP InfoTeCs Service iPad IT Android Server Coordinator SR3 Info Server Coordinator SR20 Inf Server Coordinator HW10 V Server Coordinator SIP Info Server Coordinator SR1 Info Server Coordinator SR12 Inf Server Coordinator SR13 Inf Server Coordinator SR14 Inf Server Coordinator SR15 Inf Server Coordinator SR16 Int Server Coordinator SR17 Int Server Coordinator SR18 Inf Server Coordinator SR2 Info Server Coordinator SR21 Inf Server Coordinator SR22 Inf El Server Coordinator SR23 Int Server Coordinator SR4 Info Server Coordinator SR5 Info Server Coordinator SR6 Info Server Coordinator SR7 Info
15. Watcher role is assigned to the server host Cannot Open a Host Details Window Description e You work in Internet Explorer version 9 0 On the Monitor gt Host List page you click the link with the monitored host name but the host information window will not open Cause and solution e To solve this problem we recommend you to update Internet Explorer to version 10 0 e If you do not want to update your browser change security settings of your Internet Explorer 9 0 5 1 Open Internet Explorer 5 2 Click Tools 2 and then click Internet options 5 3 On the Security tab select the Internet zone icon and then click Custom level 5 4 On the Settings list navigate to Scripting gt Active scripting 5 5 Select Enable click OK and then click OK once again ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 76 Need to Re Authenticate the User Description e When you are browsing a web page clicking a button or a link a log entry and so on the user logon window is displayed Cause and solution e The Monitoring Server program has been restarted and Monitoring Web Access has reconnected to the monitoring server To access the monitoring server again enter your user name and password Problems During Unprocessed Host Parameters Exporting Description e Ifan error occurred during unprocessed host parameters exporting in the notificati
16. event severity levels On the toolbar in the All events list choose the event severity level you want to view You may use only one of the existing filters at a time ente Y High level Medium level Low level With informational messages Figure 18 Filtering hosts by a severity level e Filtering hosts by using a search request To do this on the toolbar in the Search box type the name or a part of the name of the required host Every time you type a symbol automatic list filtering is performed according to occurrence of the typed characters in the Host name column To clear the search box click the icon A Warning Search requests are not case sensitive ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 37 Monitoring Hosts on a Dashboard To acquire up to date information about monitored hosts in a convenient form you can configure a dashboard that will only display the parameters you are interested in For example if your organization has mission critical servers and it is important for you to get the latest information about their condition you can create a Dashboard with the appropriate settings and monitor the status of these servers A dashboard opens as a home page after user authentication Dashboard is displayed in one or more tabs depending on settings Each tab can contain up to six different types of tiles for example the cu
17. geographical map In the main window on the Monitor tab click Map On this page on a geographical map you can view monitored hosts according to their geographical location The administrator adjusts hosts location on a map while configuring the Monitoring Server program Note On a map you can view both directly monitored hosts and hosts monitored by child servers in a cascade You can manually poll all hosts or several hosts on a map To do this 1 On the toolbar click Poll group 2 Inthe Poll Hosts window move hosts or host groups from the left list to the right list and click Poll As a result information about the state of the selected hosts will be updated There are several types of maps supported by the ViPNet State Watcher software The displayed type depends on the customization pack on page 122 The standard customization pack includes the following maps e Russian Federation map stored locally on the server it is displayed by default when you start maps for the first time e OpenStreetMap online map ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 45 To switch to another map choose the required one from the map types list ViPNet StateWatcher Administrator QD Monitor Use the map to monitor your hosts CE oren E Objects Heip Ab Figure 24 Viewing hosts on a map Hosts are indicated with different icons on a map dependi
18. into one entry Measured in seconds sec Enable or disable logging any IP packets Enable or disable logging broadcast IP packets Enable or disable logging only the server port for TCP connections Description Current MFTP status Format Integer For example 3600 sec String String String Format String Possible values Possible values Online Offline Unknown Not available Not defined ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 100 Parameter name The number of envelopes in the queue Total size of all the envelopes in the queue Table 18 Passive cluster node parameters Parameter name Host status ViPNet MFTP status Iplir daemon status Description Measured in megabytes MB Description The status of the passive cluster node The status of the MFTP component on the passive cluster node The status of the iplir daemon on the passive cluster node Format Integer Integer Format String String String Possible values Possible values Accessible Unreachable Not defined Online Offline Unknown Not available Not defined Online Offline Unknown Not available Not defined Parameter name Failover module status CPU load Total physical memory RAM Free physical memory RAM Description Format Possible values The status of the Failover component String Online o
19. name maximum 40 characters e the monitoring event s severity level maximum 10 characters e the name ofthe host where the processing rule was applied maximum 40 characters e the time when the processing rule is applied e the processing rule s message text maximum 70 characters The length of each is limited If any field exceeds this limit the full text won t be displayed in the SMS notification SMS notifications are sent to the users phone numbers The Monitoring Server administrator specifies these phone numbers in the accounts of the users who should receive such notifications by SMS ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 66 Statistics One of the main tasks that the Monitoring Server program solves is gathering statistics about the ViPNet hosts The collected data is displayed on the Monitor 5 Cascade page On this tab the statistics is displayed both for the hosts managed directly and for the cascaded hosts The tab includes data about the quantity of the events with different severity levels registered on the monitored hosts The data is shown in the statistics table depending on the category of the host where an event was registered On the statistics page the hosts are divided into the two categories cascaded hosts and hosts monitored directly On the statistics page you may also view the total number of events with a specific severit
20. number of monitored hosts with the Informational severity level in your network The number of monitored hosts with the Standard severity level in your network The number of monitored hosts with the Warning severity level in your network The number of monitored hosts with the Critical severity level in your network The network state information can be displayed at the bottom of the main MWA page or in a separate window To display the Network Health pane in the main window on the Settings menu click Show Network Health pane As a result the Network Health pane will be displayed at the bottom of the main window ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 71 Configure columns Configure event notifications Show Network Health pane Figure 40 Show the Network Health pane e To display the network status information in a separate window click g e To hide the Network Health pane click x or on the Settings menu click Hide Network Health pane For the Network Health pane see the following figure Network Health g x day Parameters Show 12 hours Monitored hosts accessible within 573 the ViPNet network poe Coordinators accessible within the 28 ViPNet network 3 hours aa Clients accessible within the ViPNet 538 1 hour network Ai Accessible public hosts 7 30 min T 10min 5 mn S pa 20 15 10 5 Help About i 0 Figure 4
21. other selected parameters otherwise a graph might not be displayed correctly Note It is recommended to use a summary parameter Using a summary parameter T allows you to correctly display the percentages of the other parameters in case if the data is missing for one of the parameters 9 After you configure the graph parameters click Save ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 43 Edit tile x Choose tile type Graph 7 Pie chart kd Filter using Statistic parameters E O Show update time All parameters Q Pie color Summary parameter LS LasCa lU MUMLOTEU NUSS G CCESSIDIC wiin We Vil Ei INO W Clients accessible within the ViPNet network ea No W Coordinators accessible within the ViPNet network No O Events with the Critical severity level No G Events with the Informational severity level Hm No O Events with the Standard severity level Ej No L Events with the Warning severity level El No Monitored hosts accessible within the ViPNet netw Ej Yes Total 16 Selected 4 You can choose only 10 parameters because of the restrictions Save Cancel Figure 23 Configuring dashboard ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 44 Monitoring Hosts on a Map You can monitor the host state not only in the monitored hosts list but also on a
22. registered at the moment of viewing the statistics 5 Asa result the host list of the Monitor page will be opened where the host list of the monitoring server with chosen host type and events of chosen severity level will be shown ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 69 ED ViPNet StateWatcher Host List Monitored Hosts 1155 Monitor g All events 4 Default group 4 1 G Kazakov Stepan a 00010a12 11 0 7 7 4 2 2 25388 16 32 20 22 09 16 32 04 22 09 Accessible HW100C Fedoto 1 10e10acf 110 78 3 3 0 461 16 30 28 22 09 16 32 04 22 09 Accessible C TDC Dolgopolo 1e610041 11 0 5 112 5 0 2 25731 16 32 15 22 09 16 32 04 22 09 Accessible a va Krist 001050c 11 0 1 181 Unknown Unknov 16 32 04 22 09 Unreachable G Savinova Tatiana 00010187 11 0 1 109 4 2 1 23386 16 32 15 22 09 16 32 04 22 09 Accessible amp ester Jell nknow nk 4 nreachable Cg TDC Chernov Al 1e61001c 11 0 3 105 4 2 2 25488 16 32 15 22 09 16 32 04 22 09 Accessible C Khris Andrey Ser 000109f8 11 0 6 228 4 2 1 23386 16 32 15 22 09 16 32 04 22 09 Accessible q Drozdov Yury se 0001081d 11 0 4 111 3 2 9 13607 16 32 15 22 09 16 32 04 22 09 Accessible G2 Bystrov Evgeny S 00010896 1105 4 4 2 1 23386 16 32 15 22 09 16 3204 22 09 Accessible G T k Olga M 1 0 4 know 2 04 Jnreachable Gg TD
23. required object s name The online map will be recentered according to the object s location Viewing Information about a Monitored Host To view information about a monitored host click this host on the map The host information window will be displayed see Viewing Information about a Monitored Host on page 32 e If some events are registered on the host then the Current Events tab of the Host Information window will be displayed e If no events are registered on the host the Suspend notifications button will be unavailable and the Detailed Information tab of the Host Information window will be displayed Viewing Information about a Monitored Hosts Group To view information about a group of monitored hosts 1 Click the group s icon on your map ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 50 2 Inthe Hosts window on the list click the host s name The information window will be maximized By default all the windows are minimized Information about hosts Poll hosts Clear x BUGS SERVER VPN N24321 BUGS SERVER Cluster VPN N24321 Ce _Server Application InfoTeCS Khabarovsk Cs _Server Application Infotecs Berlin VPN N27039 Host name _Server Application Infotecs Berlin VPN N27039 IP address 11 0 3 11 Web link 11 0 3 11 Identifier 1b7f00c4 Host status Accessible Host local time 14 42 14 22 09 2014 Last polled on 14 37 04 22 09 20
24. server The monitoring server polls hosts periodically You specify the poll time period in the program settings However you may initiate polling of all or some monitored hosts manually at any time To do this 1 On the Hosts list page on the toolbar click Poll group 2 Ih the Poll Hosts window move hosts or host groups from the left list to the right list and click Poll As a result information about the state of the selected hosts will be updated ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 35 To poll the monitored hosts cascaded by a child monitoring server complete the above described actions or click next to the child monitoring server name in the Cascaded hosts group all hosts cascaded by this server will be polled After the Monitoring Server program restarts for every host parameters received during the last successful poll are displayed After a host is polled its parameters are updated to reflect its actual state For example suppose that a monitored host had been turned off before Monitoring Server stopped working and this computer s parameters were unknown So after Monitoring Server starts it displays the host parameters received during the last successful poll Only after the next poll the parameters values are changed to Unknown Filtering Monitored Hosts Monitored hosts filtering is intended for quick search of the monitored h
25. values 1 unknown 2 operating system 3 driver 4 program ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 112 Parameter name Application description Program ID Modified Description A description of the installed program The date and time when the application was last modified Data type Possible values String String HH MM SS DD MM YYYY For example 10 54 27 02 02 2013 Note The SNMP client running on a host may fail to provide the monitoring server F4 with a full list of applications installed on this host Thus some applications may be missing Table 27 Network services Parameter name Number of network services Pause Installation status Description The ability to pause the service The status of the service installation Data type Possible values Integer Integer Possible values 1 pause impossible 2 pause possible Integer Possible values 1 not installed Parameter name Current state Service name Uninstallation Table 28 Printer parameters Parameter name Printer name Serial number Description Current state of the service The ability to delete the service Description Serial number of the printer Data type Integer String Integer Data type String String Possible values 2 pending installation 3 pending deletion 4 installed Possible val
26. w3 org 2001 XMLSchema gt lt xs element name results type resultsType gt lt xs complexType name resultType gt lt xS i sequence gt CES CES CES KKS CXS CES lt xXS CES CXSI lt xs sequence gt elemen elemen elemen elemen elemen elemen elemen elemen elemen type xs type xs type xs type xs type xs type xs type xs type xs type xs lt xs complexType gt 0 S S S S S tring name node id gt tring name node name gt timestamp name event start timestamp gt timestamp name event end timestamp gt tring name rule id gt tring name rule name gt tring name rule node id gt tring name severity gt tring name message gt lt xs complexType name resultsType gt lt xS i sequence gt ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 86 lt xs element type resultType name result maxOccurs unbounded minOccurs 0 gt lt xs sequence gt lt xs complexType gt lt xs schema gt When you view an export file as a table the names of the elements specified in the XML scheme are displayed as column headers The correspondence between the element names and the data being exported is shown in the table below Table 8 The correspondence between the scheme elements and the data being exported Element name Data being exported node id Monitored host
27. xSi lt xSi lt XSi elemen elemen elemen elemen elemen elemen elemen elemen elemen eJ ej 8 el el Lemen Lemen Lemen Lemen Lemen name ifaceType gt type xs type xs type xs type xs type xs type xs type xs type xs type xs type xs type xs type xs type xs type xs 0 n 0 a 0 0 a 0 0 a a 10 a a tring tring tring tring tring tring tring tring bring Ering tring cring tring tring name iface id gt name iface name gt name iface ip gt name iface netmask gt name iface mode gt name iface start mode gt name iface ext gt name iface used gt name iface timediff gt name iface max log size gt name iface reg all gt name iface reg broadcast gt name iface reg tcp serv port gt name enc in pass gt ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 78 SxS el emer SxS elemen lt xsielemen lt xsielemen cxs elemen cxsielemen xe 6 lemen lt x 6lemen zxsielemen lt xsieLlemen lt xsiclemen cxs elemen cXS SLEemEeTr Ke elemen lt xs i elemen lt xs relemen sxe elemen lt xs7 6lemen lt lt 87 6 exs el lt xs el lt xs el lt xs el xs761 lt xs7e1 lt xs el lt xs el lt xs7el lt lt 87 61 lt xs el lt xsiel lt xs el lt
28. 0 You can force the clearing of the list by clicking Clear all entries As a result all event entries will be removed only from the Information about events registered on hosts window These entries will remain in the Monitoring Server log and database and they will be available when you make another events history request You can also pin the Information about events registered on hosts window on your screen by clicking SX The pinned window will be always displayed on top so you will be able to work with other features and to view the registered events in the window at the same time Next time you click the icon Lal the window will be opened at the place it was positioned during the current Monitoring Server session Configuring Pop up Notifications On the main page of Monitoring Web Access you can configure notifications that will be displayed in a pop up window displaying information about the events of a certain severity level By default the notifications for all severity levels are displayed To configure notification in a pop up window only for the required severity level 1 On the main page of Monitoring Web Access in the upper right corner on the Settings menu click Configure popup window In the Configure Event Notifications window select the Show notification in a pop up window check box If you don t select this check box you can view the events by clicking A D Configure Event Notifications x Y Show noti
29. 1 Network health information In the right part of the pane the network state graph is displayed along the timescale The parameters on the graph are refreshed every five seconds The older values are shifted left respectively to the timescale The passed time is displayed on the timescale from right to left Thus at the most right graph point the new parameter values are displayed while the values received for example 30 minutes ago are displayed at the most left graph point To choose the necessary time scale from 5 minutes to a day move the slider bar up or down In the left part of the pane the parameters added to the graph earlier are displayed To add or remove a graph parameter click Show and select or clear the corresponding check boxes ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 72 Troubleshooting Here you will find a list of possible Monitoring Web Access malfunctions and the corresponding troubleshooting guidelines Can t Connect to the Monitoring Server via a Web Browser Description e You can t connect to the Monitoring Server program via a web browser and you don t see the logon window Cause and solution e The Apache Tomcat service is not running on the monitoring server Inform your administrator about the problem Find out the reason the service was stopped and ask the administrator to start Apache Tomcat e The moni
30. 14 Dead morato b General host parameters gt Parameters of ViPNet Monitor or ViPNet control daemon b Network interfaces gt MFIP options a Figure 29 Viewing information about the events registered on hosts ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 51 Viewing the Monitoring Events History The Monitoring Server program saves the history of the monitoring events registered by the monitoring system By viewing monitoring events you can learn about the events registered since the system has started and if necessary export these events to other software All the events registered when the rules are executed are added to the monitoring system database including e Host name the name of a monitored host on a ViPNet network e Event time the time of the event detection e Processing rule name the name of a processing rule e Event severity level an event s severity level e Message a message from the Monitoring Server program about the registered event Note If a rule is executed to several hosts then Monitoring Server will register several events and each event entry will be saved separately To view monitoring events history 1 On the main page click the Events History tab ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 52 a ViPNet StateWatcher E
31. 2 04 19 09 2014 Ces Itomayon a O System options gt Network settings Network interfaces Address information tables ARP gt Data storages Printer options alala g Public host Figure 15 Viewing information about a monitored host On top of the window you can see general information about the monitored host including its name ViPNet identifier IP address and the web link Also the host s status time and date of the last poll and local date and time on the host are displayed here On top of the public host s information window the host s name web link IP address state last poll date and time are displayed ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 33 The parameters on top of the window are updated every time the host is polled whether automatically or manually To update information in the Host Information window click Poll For detailed information about a host click the corresponding tab To find a host on the map click Locate on the map This button is displayed only if a Monitoring Server administrator has added the host to the map The following elements are marked with numbers in the figure 1 The Detailed Information tab includes complete information about the host and its parameters For the complete list of the parameters and their description see the Appendix see Parameters Monitored on H
32. 88 15 37 37 22 09 15 37 04 22 09 Accessible amp TDC Dolgopolov Igor Tester VPN N97777 le 110 5 0 2 25731 15 37 15 22 09 15 37 04 22 09 Accessible ar G Savinova Tatiana Accountant InfoTeCS Mo 00 11 0 4 2 1 23386 15 37 15 22 09 15 37 04 22 09 Accessible K a TDC Chernov Aleksandr App Software Pr le 110 4 2 2 25488 15 37 15 22 09 15 37 04 22 09 Accessible Figure 33 Notifications in the host list If a processing rule for a host is executed then the icon is displayed in the Events column for example ES indicating the number of events registered on this host The color of this icon corresponds to the event with the highest severity level and is specified by the Monitoring Server administrator If there are no icons in this column it means that there are no events on the host However keep in mind that the event icon absence may be caused by this notification type being disabled the processing rule being edited or deleted or notifications with the specified severity level being blocked according to notification filters specified for each user Pop up Messages Pop up messages inform you about events registered on hosts which are displayed on every page of the monitoring system A notification about a specified event on a host is displayed only when this event is registered for the first time If during the next poll of this host the same event is found then it is not
33. C Zhmerenet know Jnreachable Q Sedykh Sergey P 0001063a 11 0 1 234 4 1 0 20108 16 32 17 22 09 16 32 04 22 09 Accessible Help About Q a Figure 39 Displaying the events with the chosen severity level Warning If for some hosts the notification process was stopped or a notification filter was enabled after you click the number in a column on the monitoring page these hosts are not displayed in a list because if the notification process is not functioned and when there is a notification filter the hosts are removed from the Monitor page A ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 70 Monitoring the Network Health With Monitoring Web Access you can be informed about the state of your ViPNet network hosts real time The information is displayed as a graph The following parameters may be placed along the timescale The number of accessible monitored hosts in the ViPNet network The number of accessible coordinators The number of accessible clients The number of accessible cascaded monitored hosts in the ViPNet network The number of accessible cascaded coordinators The number of accessible cascaded clients The number of events with the Informational severity level The number of events with the Standard severity level The number of events with the Warning severity level The number of events with the Critical severity level The
34. Fedotov VPN NG4321 IH 155708 1903 2014 ViPNet host unreachable TDC Bryagalova Yulia VPN NEG WB 123704 19 09 2034 ViPNet Monitor is turned off TTCS TDC Konev Nikita VPN Ne IH 093203 19092014 ViPNet Monitor is turned off Serikov Andrey Production Depar If 0R0203 1909 2014 ViPNet Monitor is turned off TTCS TDC Sayfudiarow Ivan Test IH 085704 1909 2014 ViPNet Monitor is turned off Guozdento kina Sales Manager IL 54293 19092014 VIPNet Monitor is turned off ta A eo tod M Mr EPELA R ET 230060 D4000 2076514 85076 Figure 19 Default dashboard Configuring Dashboard To create a new dashboard 1 Goto the Dashboard page and on the toolbar click Create 2 Inthe displayed window specify the name of the panel and the location of the tiles There can be no more than six tiles To save the settings click Save Note To configure an existing dashboard select the desired tab and on the toolbar click Edit ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 39 Create Dashboard x Dashboard name Web servers Specify a number and the location of tiles no more than 6 Number of columns 2 Number of rows 3 seve KE Figure 20 Configuring a dashboard You will see a new dashboard with a number of tiles that you entered before 3 To configure an information tile in the new dashboard click the desired tile To configure a tile in an existing dashboa
35. Head E o 0001 110 3 2 9 10590 18 19 40 18 19 35 Accessible Figure 4 Interface differences ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide iPNet StateWatcher 42 16 Feedback Finding Additional Information For more information about Infotecs products and technologies see the following resources e ViPNet documentation web portal http www vipnet com redir doc_vipnet e Information about current Infotecs products http www infotecs ru solutions e Information about Infotecs solutions http www vipnet com redir solutions Contacting Infotecs We value any feedback from you If you have any questions concerning Infotecs products and solutions any suggestions complains or other feedback feel free to contact us by means of the following e Global contacts page http www vipnet com index_all php e Telephone Germany 49 0 30 206 43 66 0 e Telephone USA 1 646 589 8571 Errata Infotecs makes every effort to ensure that there are no errors or misprints in the text of all documents supplied with ViPNet software However no one is perfect and mistakes do occur If you find an error in one of our documents like a spelling mistake or some inaccuracy in describing user scenarios or system features we would be very grateful for your feedback By sending in errata you may save other reader hours of frustration and at the same time you will be helping us provide doc
36. Net StateWatcher 42 41 6 If you want to see the time of the last update of the parameters values select a check box next to Show update time 7 To save the new filter s parameters click OK Edit tile x Choose tile type Current settings Yj Filter using Parameter o o o Y U Show update time From the list below choose only one parameter to monitor it on hosts All parameters General host parameters LJ ViPNet host identifier O Name O Host status 4 Up time O ViPNet software version O ViPNet host type O Host type O ViPNet Monitor status X Total 221 All hosts _Server Coordinator SR22 InfoTeCS Moscow 2 O _Server Coordinator SR23 InfoTeCS Moscow O _Server Coordinator SR3 InfoTeCS Moscow Server Coordinator SR4 InfoTeCS Moscow O _Server Coordinator SR5 InfoTeCS O _Server Coordinator SR6 InfoTeCS O _Server Coordinator SR7 InfoTeCS CJ _Server Coordinator SR8 InfoTeCS go W Server Coordinator SR9 InfoTeCS z Total 1155 Selected 10 You can choose only 10 hosts because of the restrictions sae area Figure 22 Configuring dashboard Configuring a Graph Tile To display the parameters as a graph you can configure the Graph tile type To do this follow these steps 1 To configure an information tile in the new dashboard click the desired tile To configure a tile in an existing dashboard select the tab and in the upper part of the information tile click 4 Edit ViPNe
37. Server Coordinator SR8 Info Paa OperdirertMap members using the Open Data Commons Open Database Lcerse 0001 Open ata Commons CC BY SA icense Figure 27 Search for a monitored host on the map Searching for Geographical Objects To search for a geographical object on an online map 1 On the Monitor gt Map page display OpenStreetMap 2 Inthe search box type the geographical object s name and press Enter or click Find As a result the Search results window will be displayed containing the objects found on the query with OpenStreetMap Nominatim OpenStreetMap Nominatim is a tool for finding geographical objects in OpenStreetMap database The search results are displayed as soon as the objects are found ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 49 FA ViPNet StateWatcher Monitor Use the map to monitor your hosts IT Depart TEST 1 ae IT Android fi Ul 4 T Lu IT Depart TEST 2 5 HW LOOC VPN N2999K Locality E Metropol Locality Chicago Ka enna Cayenr e French Guiana ago Amposta Montsi Tapparona landfill Chicago Ile de Brehat Cen bpue Kot a Apraop Brittany Metropolitan France 22876 5000 bre nee OperdirertMap members using the Open Data Commons Open Database Licerse OCOL Open Qata Commons CC BY SA icense Figure 28 Search for an object on the map 3 Click the link with the
38. StateWatcher 42 23 To finish your monitoring session on any page under your account name click the Log off link Your browser will continue working and the logon window will be displayed a Johnson k Edit Log off Create can Figure 10 Logging off from the monitoring system ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 24 Changing a User Password You may change your password at any time To change the password 1 Inthe upper right corner of the web page on the menu with your user name click Edit The password change window will be displayed In the Name box your user name will be displayed Name Johnson Current password 240 0 New password seeeeeeeeee Confirm password eeeeeneeeee Figure 11 Changing a user password 2 In the corresponding box type the current password Then in the Confirm password box type the new password and confirm it 3 To change the password click Save To discard changes click Cancel ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 25 Interface of the Host List Page The Host list page is shown in the figure below BEBADE WK eee ee amp s Figure 12 Host List page The following elements are marked with numbers in the figure 1 The toolbar containing filters for monitored hos
39. The last date and time when the host was polled by the Monitoring Server program The number of blocked incoming encrypted broadcast IP packets The number of blocked outgoing encrypted broadcast IP packets The number of allowed incoming non encrypted broadcast IP packets The number of allowed outgoing non encrypted broadcast IP packets The number of blocked incoming non encrypted broadcast IP packets The number of blocked outgoing non encrypted broadcast IP packets Every element with the bytes postfix includes the total size in MB of the packets The number of the packets is displayed in the element with the corresponding name For example the enc in pass bytes element includes the total size of the packets the number of which is displayed in the enc in pass element that is the total size of successfully received encrypted packets unenc in br pass bytes unenc out br pass bytes unenc in br drop bytes unenc out br drop bytes traffic total in Total incoming IP traffic traffic total out Total outgoing IP traffic traffic total Total incoming and outgoing IP traffic traffic load Load on a network interface disk name Disk letter device Physical device name capacity Total disk space ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 84 Element name poll timestamp free space disk usage cpu usage memory total memory free memory usage disk usa
40. To do this in the search box above the host list type name or a part of a name Every time you type a symbol automatic list filtering is performed according to the occurrence of the typed substring in a host name To clear the box click 3 Click Export An exporting process will start During this process in the notification pane the icon Lia cy will be displayed When the exporting process will be finished the icon iv will be displayed 4 Click The dialog box prompting you whether an export file should be saved will be displayed In the request window click OK If you export over 60 000 entries you will be prompted that the created file can t be opened with Microsoft Office Excel Note Each entry contains unprocessed parameters of one host that have been obtained as a query result in the specified time period For the export file to be available for Fa opening with Microsoft Office Excel you should decrease the entries number to 60 000 To do this narrow the events filtering criteria or decrease the number of hosts whose parameters you want to export ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 58 A Export of unprocessed hosts parameters has been completed The export file you have generated contains more than 60 000 rows and cannot be opened in Excel To create a file to be opened in Excel decrease the time range Save the file 23
41. ace Description For each parameter the number of packets is displayed the Number string and the total size of the packets the Total string The size is measured in megabytes Format Integer Integer 4 numbers divided by a period For example 255 255 255 0 String String Format Number is an integer Total is an integer Possible values Possible values range from 1 to 5 Possible values range from 1 to 5 External Internal Accessible Unreachable Possible values Parameter name The number of blocked encrypted IP packets The number of allowed broadcast IP packets The number of blocked broadcast IP packets The number of allowed encrypted broadcast IP packets The number of blocked encrypted broadcast IP packets Outgoing The number of allowed non encrypted IP packets The number of blocked non encrypted IP packets The number of allowed encrypted IP packets The number of blocked encrypted IP packets The number of allowed broadcast IP packets The number of blocked broadcast IP packets The number of allowed encrypted broadcast IP packets The number of blocked encrypted broadcast IP packets Description MB and displayed only starting with 3 1 3 version for ViPNet Client Coordinator or with 3 6 1 version for ViPNet Coordinator Linux For each parameter the number of packets is displayed the Number string and the total size of the packets the Total string The si
42. ace IP addresses Network interface subnet mask Current interface security level Start interface security level External interface flag Interface usage flag IP packets registration log entries aggregation period Maximum IP packets log size All IP packets logging flag Broadcast IP packets logging flag Server port for TCP packets logging flag The number of successfully received encrypted IP packets The number of allowed outgoing encrypted IP packets The number of blocked incoming encrypted IP packets The number of blocked outgoing encrypted IP packets The number of allowed incoming non encrypted IP packets The number of successfully sent non encrypted IP packets The number of blocked incoming non encrypted IP packets The number of blocked outgoing non encrypted IP packets The number of allowed incoming encrypted broadcast IP packets The number of allowed outgoing encrypted broadcast IP packets ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 83 Element name poll timestamp enc in br drop enc out br drop unenc in br pass unenc out br pass unenc in br drop unenc out br drop enc in pass bytes enc out pass bytes enc in drop bytes enc out drop bytes unenc in pass bytes unenc out pass bytes unenc in drop bytes unenc out drop bytes enc in br pass bytes enc out br pass bytes enc in br drop bytes enc out br drop bytes Parameter being exported
43. aeeesneaeeseeeees 64 Sound NOLTICALIONS 0403 sxa aaa kana kana kaha kana kuha kano kaka KEETE r EEEE tone tpanisechadadbessbesdneesisonssoncss 64 Email Notifications gt niii NG BIAG NN ALGR ANN AALANGAN ANAA 65 ViPNet Business Mail Notifications ecsceescccessceceseneeceseeeeeseeeesaeesenaeeeeeeees 65 SMS NOUHCatt Onis ii E E A A aioe noses R nero eae ba dee ean de ash edad ded 66 ASE Lo tLe rere ee pea one ae reer Tere erneane Gree Men R terete mera E E E eee Seen acer nes 67 Viewing the Statistics for a Cascade Segment ceeeecceesceceeneeceeeneeeeneeeeeneees 68 Monitoring the Network Health eecceescccsseeeeseseeeesscecesaeeceecesaeecssaecesssaeesseeeesas 71 Appendix A Troubleshooting scscccsssccssssssssscesscseessssssscssesscseecsscseesscssssssessscsessscsessossees 73 Can t Connect to the Monitoring Server via a Web Browset ssccceseeeeseeees 73 Possible Maln UOS Koosi EEEE EEE E EAEE EE E EAER Ee 74 Too Many Monitored Hosts 0 ceecceescecesseecesececeeaeeececesaceessaeeeseeeeseneeens 75 Monitoring Server is Unavailable cescceessccessceceseneecesneecesaeeresaeeeseeens 75 StateWatcher Role Is Not Registered eesceessceeeseeceeseeeeeeeeeeesaeeeeeeenees 76 Cannot Open a Host Details Window eecceesceceeseeeeseececeseeeeeeecesaeecesaeeeeaeeees 76 Need to Re Authenticate the User ee ccesscceescecessececeseeeseecesaeecesaeeeseeseseneeees 77 Problems Du
44. ample 0001027d Format Possible values Start IP address End IP address Start IP address of the tunneled addresses range End IP address of the tunneled addresses range Table 14 Network interfaces General characteristics Parameter name Description 4 numbers divided by a period For example 192 168 14 251 4 numbers divided by a period Format Possible values Interface name List of access IP addresses System name of the network interface List of network interface IP addresses String For example eth0 A string that consists of an IP address or several IP addresses divided by a comma For example 10 0 2 20 ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 96 Parameter name Level of unencrypted IP packets processing Level of unencrypted IP packets processing used on startup Subnet mask Interface type Interface status Table 15 Network interfaces Statistics Parameter name Incoming The number of allowed non encrypted IP packets The number of blocked non encrypted IP packets The number of allowed encrypted IP packets Description Current interface security level Security level set on the host on the ViPNet Monitor startup Network interface subnet mask A type of interface on a ViPNet host which shows whether this interface is used to connect to a firewall Current state of the network interf
45. ase the allowed number of monitored hosts in the ViPNet Network Manager program or to remove unnecessary hosts from the list of monitored hosts Description e When you are browsing a web application s page you are clicking a button or a link a log entry and so on you are notified that the monitoring server is inaccessible Cause and solution e The Monitoring Server program has been stopped Inform your administrator about the problem Find out why the program was stopped and ask him or her to start the Apache Tomcat service After you start the Apache Tomcat service the Monitoring Server program starts automatically ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 74 Description e When you are browsing a web page clicking a button or a link a log entry and so on the user logon window is displayed Cause and solution e The Monitoring Server program has been restarted and Monitoring Web Access has recomnected to the monitoring server To access the monitoring server again enter your user name and password Too Many Monitored Hosts Description e At the web application startup or during its operation you are notified that the permitted number of monitored hosts has been exceeded Cause and solution e The Monitoring Server program has been stopped because of the violation of the licensing terms related to the limitation on the monit
46. bout an event is sent to a host only when this event is registered for the first time If during the next poll the same event is found on this host then the email message about it is not sent again The email message subject has the following text Processing rule notification lt processing rule name gt on the host lt host name gt lt host IP address gt The message text is formed according to the template specified by the administrator during the Monitoring Server configuring According to the template from the ViPNet StateWatcher monitoring system distribution kit the message body consists of the following data e processing rule name e processing rule severity level e monitored host name e monitored ViPNet host identifier e monitoring server name e time and date of a processing rule execution e message text about a host status change or about a critical event ViPNet Business Mail Notifications ViPNet Business Mail on page 125 notifications are text files messages that are sent to the users after a processing rule execution by using the ViPNet Business Mail program A message about a status change or about a host event is sent only once when this change or event is registered for the first time If during the next poll the same status change or critical event was registered on the same host the message is not sent again via ViPNet Business Mail ViPNet StateWatcher Monitoring System for ViPNet Networks Moni
47. cessing rule Coordinator Offline Show processing rule code Parameters Nans Value Current Previous The last available General host parameters Host status Unreachable Accessible Accessible Figure 31 Viewing detailed information about an event To view the settings of the processing rule according to which an event was registered in the Detailed Information window click Show processing rule code For more information about the processing rules structure see the document ViPNet StateWatcher 4 3 Monitoring System for ViPNet Networks Monitoring Server Administrator s Guide 5 When you have finished viewing the detailed information click Close 6 After that you can return back to the monitored host list To do that on the Monitor tab click Hosts List Exporting the Monitoring Events History The monitoring events history entries filtered by parameters that you specify can be exported to a file that then can be imported to other software for example to Microsoft Office Warning The exported monitoring events history file can be then imported to A Microsoft Office Excel or Open Office Calc To import monitoring events to a program you must take into account the specifications and limitations of this program The importing may take you about 20 minutes depending on your computer specifications The Monitoring Server program exports event history in the background allowing you to work with the monitoring system whi
48. dinator Linux version earlier than 3 4 is installed on a host parameters can t be Aa monitored If on a monitored host ViPNet programs other than ViPNet Client and ViPNet Coordinator are installed then the state of the program components Business Mail and MFTP will not be monitored The status of these programs will be Off line Table 9 General characteristics of a monitored host Parameter name Description Format Possible values ViPNet host identifier The identifier of the ViPNet host A hexadecimal number Parameter name Name Description Current time Host status ViPNet host type Host type ViPNet Monitor status Description ViPNet host name Host description The current time and date on the monitored host Accessibility of the host on the ViPNet network Host type on the ViPNet network Type of the host in the monitoring system ViPNet Monitor activity on the host Format For example 10611972 String String HH MM SS DD MM YYYY For example 10 54 27 02 02 2011 String String String For example Cluster HW1000 String Possible values Maximum 1024 bytes Accessible Unreachable Not defined Client Coordinator Not defined Online Offline UDB protocol error Unknown ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 90 Parameter name Host s VPN server identifier Host s VPN server List of
49. e Encrypting email attachments See also ViPNet network on page 125 ViPNet network A logical network that is created and maintained with ViPNet software and consists of ViPNet hosts A ViPNet network has a special addressing system which provides for data exchange between its hosts Each ViPNet network has its own unique number host ID ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 125 ViPNet Network Control Center In a network managed using the ViPNet Administrator software ViPNet Network Control Center is a program that is a part of ViPNet Administrator It is designed to create and configure ViPNet networks Its main features are as follows e Creating a virtual network creating network objects and their links including partner network links e Changing network configuration e Generating and distributing protected host links e Distributing host keys and user keys e Generating information on users links for ViPNet Key and Certification Authority e Granting permissions to ViPNet users In a network managed using the ViPNet Network Manager software ViPNet Network Control Center is the ViPNet network administrator s workstation In Network Control Center the administrator creates a ViPNet network structure creates and distributes key set and ViPNet software updates ViPNet StateWatcher monitoring system The ViPNet StateWatcher mo
50. e and receiving notifications Access is performed through a web browser The same monitoring client may be used to access more than one monitoring server N Notifications Informational messages which are created as a result of events detected when executing a processing rule The notifications can be of the following types e inthe host list e pop up messages e sound e by email e by Business Mail e by SMS ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 123 P Processing rule A rule that determines processing of monitored hosts parameters and registers the monitoring events A range of rules is built into a customization pack By default these rules are present on all monitoring servers that have the default customization pack installed You may create additional processing rules on any monitoring server Protected host A host with installed ViPNet software that can encrypt traffic in the network layer R Raw database A database temporarily storing monitored host parameters before they are processed according to the processing rules The raw database is organized as an OLTP Online Transaction Processing base Role A ViPNet host s functionality designed to solve user oriented and service tasks for a ViPNet network Roles are used in network licensing by being specified in the license file and define which program features can be us
51. e following pre defined groups e Default group is a group containing all monitored hosts that are not included in other groups This group is always displayed in the list of monitored hosts e Cascaded hosts is a group of hosts monitored by child servers of your monitoring server in a cascade hierarchy Hosts from this group are not monitored by your server directly They are monitored by your server s child monitoring servers This group is included in the monitored hosts list only if the monitoring server has any child monitoring servers in a cascade Viewing Information about a Monitored Host To view information about a host click the link with the host s name As a result the Host Information window will be displayed with complete information about the host ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 32 Host Infor mation Host name Server Applicatibn Infotecs Berlin VPN N27039 IP address 11 03 11 1 0 3 11 Identifier 1b7f00c4 14 32 02 19 09 Last polled on Detailed Information Current Events Event History Description 4 cs gt General host parameters gt Parameters of ViPNet Monitor or ViPNet control daemon g gt Network interfaces E MFTP options EJ ViPNet host lose Host Information x Host name Printer IP address 10 0 10 6 Web link 10 0 10 6 Host status Accessible Last polled on 14 4
52. e search result see Searching for Geographical Objects on page 49 e Acquiring information about a monitored host and disabling notification see Viewing Information about a Monitored Host on page 50 e Customize display styles for different types of objects and types of hosts for different zoom levels All user defined map settings are saved by the Monitoring Server program and applied on the next user logon for instance zoom and position When you open the map for the first time it is displayed fully with default display settings Recentering the Map and Positioning on the Map To view a certain area on the map e Click and hold the map dragging it in the required direction e On your minimap in the lower right corner of the page click and hold the viewport and drag it in the required direction ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 47 Figure 25 The minimap On the map you can recenter and z00m in at a certain country region or another geographical object by double clicking it As a result the clicked object will be zoomed in and displayed in the center of the map er com G eee sag ga E KG E bay a AB ANT he ee UN N s en eww l COC AASA F Figure 26 Positioning on the map When you search for a monitored host or a geographical object the map is automatically recentered at the host see Searching for Hosts on the
53. e xs string name bmail status gt lt xs element type xs string name failover status gt lt xs element type eventsType name events gt lt xs sequence gt lt xs complexType gt lt xs complexType name disksType gt lt xs sequence gt lt xs element type diskType name disk maxOccurs unbounded minOccurs 0 gt lt xs sequence gt lt xs complexType gt ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 81 lt xs complexType name eventsType gt axS Sequence gt lt xs element type eventType name event maxOccurs unbounded minOccurs 0 gt lt xs sequence gt lt xs complexType gt lt xs schema gt When you view an export file as a table the names of the elements specified in the XML scheme are displayed as column headers The correspondence between the element names and the parameters being exported is shown in the table below Table 7 The correspondence between the scheme elements and the parameters being exported Element name poll timestamp node id monitor status node status node name node type node timestamp product version drv version monitor version pkt log version pkt type server id is server ip list server poll timeout dudp dudp always use server virtual ip firewall ip proxy id Parameter being exported The last date and time when the host was polled by the Monitoring Server program ViPNet h
54. ecurity level If necessary you can also configure notifications for each severity level see Configuring Pop up Notifications on page 63 e Messages in the Information about events registered on hosts window Notifications are displayed in a separate window Messages about events are displayed just after these events have been registered Information about Events Registered on Hosts x Clear all entries a a as HW100C Fedotov VPN N43 11 0 7 8 15 18 46 24 09 2014 ViPNet host is unreachable Ufa Mukhametov Timur VP 11 0 7 13 15 18 46 24 09 2014 Less than 20 of free memory left Vladimir TDC 11 0 6 237 o 15 18 46 24 09 2014 ViPNet host is accessible HW100C Fedotov VPN N43 11 0 7 8 15 13 46 24 09 2014 ViPNet host is accessible Figure 35 Message in the Information about events registered on hosts window Information about events is shown in a table where o Host name a name of the host where an event has occurred ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 62 o TP address an IP address of the host where an event has occurred o Event an event s severity level The correspondence of a color and a severity level is configured by the administrator o Event time the time the event took place o Message a message from the Monitoring Server program about the registered event The maximum number of events in the table is 5
55. ed and which software can be installed on your ViPNet host Roles may have some attributes user permissions that affect the choice of features and quantitative characteristics Roles for each ViPNet host are specified by the ViPNet network administrator in ViPNet Network Manager T Tunneled host A host where no ViPNet software encrypting traffic on the network layer is installed In a potentially dangerous network section the traffic of this host is encrypted and then decrypted on the coordinator it is placed behind ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 124 U Unprocessed parameters Monitored hosts parameters that have been collected and stored by the monitoring server but have not yet been processed with the processing rules Unprotected host A host that exchanges unencrypted traffic with a ViPNet host yV ViPNet Business Mail A program which allows you to exchange protected emails between ViPNet hosts With ViPNet Business Mail ViPNet users linked with each other can exchange protected email messages ViPNet Business Mail is part of the ViPNet Client software You can install it together with other components of this software or alone ViPNet Business Mails has standard email client features such as e Email sending and receiving e Email attachments sending and receiving e Digitally signing email messages and their attachments
56. ensors ator SRI4 Server Coordinator SR6 IntoTeCs kwatabie seracrs Figure 21 An example of a configured dashboard Configuring a Current Settings Tile If you want to keep track of the current parameters of any hosts select the Current settings tile type To do this 1 To configure an information tile in the new dashboard click the desired tile To configure a tile in an existing dashboard select the tab and in the upper part of the information tile click HA Eait 2 Select the Current settings tile type 3 If you want to view the value of a particular parameter for several hosts in the Filter using list choose Parameter In the list of parameters choose a parameter that you want to monitor in the list of hosts select the check boxes next to the desired hosts 4 If you want to view the value of a particular parameter for several hosts in the Filter using list choose Parameter In the list of parameters choose a parameter that you want to monitor in the list of hosts select the check boxes next to the desired hosts 5 To monitor statistic parameters in an information tile select Statistic parameters in the Filer using list Statistical parameters allow to visually monitor the current state of a ViPNet network For more information about the statistical parameters see Monitoring the Network Health on page 71 ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViP
57. erforms forwarding or not TTL The lifespan of an IP datagram TTL The number of received IP datagrams The number of incoming IP datagrams containing errors in the packet heading The number of IP datagrams discarded because of an incorrect IP address Number of IP datagrams that were being attempted to be forwarded The number of IP datagrams whose protocol code is not supported The number of IP datagrams discarded because the buffer is full The number of incoming IP datagrams successfully processed on the IP layer Format Possible values Integer Integer Integer Integer Integer Integer Integer Integer Integer ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 104 Parameter name Description The number of IP and ICMP datagrams intended for sending The number of IP and ICMP datagrams intended for sending but discarded because the buffer is full The number of routing errors Maximal timeout in seconds for the fragments assembling The number of received fragments The number of received IP datagram fragments The number of received and successfully assembled IP datagrams The number of IP datagrams that could not be assembled The number of IP datagrams that could not be assembled for some reasons The number of successfully fragmented IP datagrams The number of IP datagrams intended for fragmenting but whose
58. evel Format Physical address For example a0 b3 cc a0 ac 26 Integer Integer HH MM SS CS centiseconds For example 11 43 23 33 Byte Integer Integer Possible values Possible values 1 the interface is enabled 2 the interface is disabled 3 the interface is being checked Possible values 1 the interface is enabled 2 the interface is disabled 3 the interface is being checked Parameter name The number of received but discarded packets The number of packets received with errors The number of packets whose protocol code contains errors The number of sent bytes The number of ordinary packets received from the top system level The number of broadcast and multicast packets received from the top system level The number of sent but discarded packets The number of sent packets containing errors The number of IP packets in the send queue Table 22 Address information table ARP Parameter name Description The number of unicast packets received from the top system level The number of broadcast and multicast packets received from the top system level Description Format Possible values Integer Integer Integer Integer Integer Integer Integer Integer Integer Data type Possible values ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 108 Parameter name Low bit value
59. fication in a pop up window Severity levels 4 Critical 4 Standard 4 Warning 4 Informational Figure 36 Configuring event notification ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 63 3 Under Severity levels select the corresponding check boxes to receive messages about the events with these severity levels 4 Click Save As a result in the lower right corner of the window messages about events with the chosen severity levels will be displayed in a pop up window Event Information Xx ie Host name IP address Anastasia Administrator 11 0 7 21 Processing rule name Host Status X Message ViPNet host is accessible Figure 37 Viewing the pop up messages By clicking this pop up message you can open the Host Information window see Viewing Information about a Monitored Host on page 32 Visual notification on the Map This notification type is implemented by way of the hosts blinking on the map when the processing rules are executed see Monitoring Hosts on a Map on page 45 The blinking color corresponds to the event of the highest severity level among the events detected If there is no blinking then no events are detected on the host However keep in mind that no blinking may be caused by this notification type being disabled the processing rule being edited or deleted or notifications with the specified severity level being blocked acco
60. fragmenting is impossible for example because of a flag Format Possible values Integer Integer Integer Integer Integer Integer Integer Integer Integer Parameter name Description Format Possible values The number of IP datagram fragments The number of IP datagram Integer created by this host fragments created by this SNMP host Table 21 Network interfaces Parameter name Description Format Possible values Number of interfaces The number of network interfaces Integer Text description of the interface String Interface type Integer For example 6 Ethernet 9 802 5 Token Ring 23 PPP 28 SLIP Maximum Transmission Unit MTU The largest data unit that can be Integer transmitted maximum transmission unit Speed The interface speed in bps bps ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 106 Parameter name Physical address The required state of the interface Current state of the network interface Current state time The number of received bytes The number of ordinary packets delivered to the top system level The number of broadcast and multicast packets delivered to the top system level Description The time when the interface assumed the current state The number of unicast packets delivered to the top system level Received broadcast and multicast IP packets delivered to the top system l
61. ge int mftp status mftp queue length mftp queue size start address end address bmail status failover status event type event timestamp event source event cate gory user event node event description journal Parameter being exported The last date and time when the host was polled by the Monitoring Server program Free disk space Disk space usage per cent CPU load per cent Total physical memory RAM Free physical memory RAM RAM usage per cent Disk space usage per cent MFTP status The number of envelopes in the queue Total size of all the envelopes in the queue Start IP address of the tunneled addresses range End IP address of the tunneled addresses range ViPNet Business Mail status Failover service status Event type Date and time of the event Event source name Event category The name of the user who invoked the event ViPNet host on which the event has occurred Event description Log containing the event entry ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 85 Structure of the Events History Export File This appendix displays the XML scheme according to which results of applying processing rules are exported When an export file is being created the UTF 8 encoding is used lt xml version 1 0 encoding utf 8 gt lt xs schema attributeFormDefault unqualified elementFormDefault qualified xmins xs http www
62. ger Format Integer Integer String Integer Possible values Possible values Critical means a high severity level Warning means a middle severity level Standard means a low severity level Possible values Possible values Critical means a high severity level Warning means a middle severity level ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 118 Parameter name Number of attacks Attack URL Table 33 Hosts under attack Parameter name Sensor identifier ViPNet host identifier Host IP address Number of attacks targeting this host Table 34 Attacking host list Parameter name Sensor identifier Description The number of attacks with the specified ID A URL address with a description of the attack Description ViPNet IDS sensor s ID Attacked host s identifier Attacked host s IP address The number of network attacks to this host Description ViPNet IDS sensor s ID Format Integer Format Integer Integer IP address Integer Format Integer Possible values Standard means a low severity level Possible values Possible values Parameter name ViPNet host identifier Host IP address Number of attacks initiated by this host Description Attacker host s ID Attacker host s IP address The number of network attacks from this host Format Integer IP address In
63. host s IP addresses Added roles Total physical memory RAM Free physical memory RAM Description The identifier of the host s IP addresses server Whether the host functions as the IP addresses server on the network A list of roles assigned to the host Measured in megabytes MB Measured in megabytes MB Format Possible values None Not defined A hexadecimal number For example 10611972 String Yes No Not defined A string that consists of an IP address or several IP addresses divided by a comma For example 10 0 2 230 192 168 16 1 A string which consists of role names divided by a comma For example Business Mail VPN host Monitoring Client Integer For example 4 094 MB Integer Parameter name Memory usage CPU load Business Mall Cluster Failover module status Description RAM usage Yo CPU load per cent Jo ViPNet Business Mall status Work in the hot failover cluster mode Failover status on the active cluster node Format Integer For example 66 Yo Integer String String String Possible values Online Offline UDB protocol error Unknown None Not defined Online Offline UDB protocol error Unknown None Not defined ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 92 Table 10 General characteristics of a monitored host Disks Parameter name Disk name
64. hosts see Monitored host on page 122 to export options of the monitored hosts and the monitoring events history Also it describes the work with notifications This document is a part of the documentation kit distributed with ViPNet StateWatcher monitoring system The documentation kit consists of the following documents e ViPNet StateWatcher Monitoring System for ViPNet Networks Overview e ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Server Administrator s Guide e ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide this document Audience This document is intended for ViPNet StateWatcher users who monitor ViPNet hosts via Monitoring Web Access It is also intended for ViPNet StateWatcher administrators who can perform all user scenarios plus a number of specific ones The administrator only scenarios are described in a special document ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Server Administrator s Guide Document Conventions This document concerns the following conventions ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 7 Table 1 Document conventions Icon Description A Warning Indicates an obligatory action or information which may be critical for continuing user operations Fa Note Indicates a non obligatory but desirable act
65. hosts are hosts that are monitored by one of your child monitoring servers e Sum is the total number of hosts regardless of the way they are monitored The color and number of a table entry depends on the following parameters e Critical is the number of hosts on which critical events were registered The number of hosts is red e Warning is the number of hosts on which the events with warning severity level were registered The number of hosts is yellow e Standard is the number of hosts on which the least critical events were registered The number of hosts is green e Informational is the number of hosts on which the events of informational type were registered The number of hosts is blue e Accessible hosts is the number of hosts with the Accessible status registered during the poll e Unreachable hosts is the number of hosts with the Unreachable status registered during the poll e Polled hosts is the number of hosts which are added for monitoring and for which polling is enabled e Not polled hosts is the number of hosts which are not added for monitoring and also hosts which are added for monitoring but for which polling is disabled 4 In the cell on the crossing of the required host type and the required severity level click the number that represents the quantity of the events that occurred as a result of processing rules execution Note The number in the cell corresponds to the number of hosts on which events had been
66. identifier node name Monitored host name event start timestamp Start date and time of the event event end timestamp End date and time of the event rule id Processing rule identifier rule name Processing rule name severity Event severity level message Notification text formed by a processing rule ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 87 Monitored Parameters ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 88 Parameters Monitored on Hosts In this appendix you will find a list of parameters that are monitored in the current version of the ViPNet State Watcher monitoring system The parameters are joined into the same logical groups as in the Monitoring Web Access Each logical group of parameters is described in a separate table For each parameter you can see its name format brief description type of data and if necessary the possible values Some parameters can be controlled only in later versions of the software for ViPNet Client and ViPNet Coordinator in 3 1 3 version or later for ViPNet Coordinator Linux in 3 6 1 version or later for the ViPNet Coordinator HW software hardware appliance in 2 2 version or later Such version dependent parameters are marked with an asterisk Note If ViPNet Client or ViPNet Coordinator version earlier than 3 1 or ViPNet Coor
67. ion or information which may be helpful for users Tip Contains additional information Table 2 Conventions for highlighted information Icon Name Key Key Menu gt Submenu gt Command Code ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide Description The name of an interface element For instance the name of a window a box a button or a key Shortcut keys To use the shortcut keys press and hold the first key and press other keys A hierarchical sequence of elements For instance menu items or sections in the navigation pane A file name path text file code fragment or a command executed from the command line ViPNet StateWatcher 42 8 About Monitoring Web Access Monitoring Web Access MWA is a part of the ViPNet StateWatcher monitoring system You can connect to this web application from a Windows OS computer with the ViPNet Client software and a web browser installed MWA provides remote access to the Monitoring Server program and to its database In MWA users can view data about monitored hosts status the statistics which is collected from hosts monitoring events history and more The Monitoring Server administrators can not only view data in the Monitoring Server database but also change settings of the Monitoring Server program For more information about the Monitoring Server settings see the document ViPNet State Watcher Monito
68. le it performs the export ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 55 To export monitoring events history to a file 1 2 On the main page click the Events History tab Specify event search criteria and click Find In the search results pane click Export An exporting process will start During this process in the notification pane the icon will be displayed When the exporting process will be finished the icon wil be displayed Click wd The window prompting you whether an export file should be saved will be displayed In the request window click OK If you export over 60 000 entries about monitoring events you will be prompted that the created file can t be opened with Microsoft Office Excel Note For the export file to be available for opening with Microsoft Office Excel you Fa should decrease the entries number to 60 000 To do this narrow the events filtering criteria The resulting file will be saved as an archive a file witha zip extension This archive includes a file with an xm1 extension to where the selected monitoring event history entries are saved The following data see Structure of the Events History Export File on page 86 is saved to an export file o monitored host identifier o monitored host name o time and date of a processing rule execution o processing rule identifier o processing rule name
69. less of groups specified on the other monitoring servers Some monitored groups are built in they are present on all monitoring servers for service needs and can t be discarded ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42122 Monitored host A ViPNet host a client or a coordinator that is subject to monitoring in ViPNet StateWatcher monitoring system Every monitoring server has its own list of monitored hosts A host may be monitored by more than one monitoring server Monitoring event Any alteration of the state of a host traced by processing rules which has been detected on a monitored host Every monitoring event is attributed a severity level which reflects the importance of the event for the host s operation Every monitoring event is followed by a notification You may set the notification type in a corresponding processing rule Monitoring server A ViPNet host client with special software installed that monitors the network A monitoring server performs all the main functions for network monitoring collecting processing and storing the hosts state data notifying its users about host operation failures and critical events The ViPNet StateWatcher monitoring system may include more than one monitoring server Monitoring Web Access A web interface via which you can access the monitoring server for its configuring accessing its monitoring databas
70. lts list click the entry with the event you need A Ww N In the Detailed information about event window you will find the following information about the monitoring event o Host a monitoring ViPNet host name o Path in the cascade a chain of the child monitoring servers through which the monitoring event notification was transferred This field is displayed only for the events registered on cascaded monitored hosts o Detection time a time when an event was detected by the system o End time a time when an event ended If the event has not been ended the box is empty o Message an informational message about the registered event o Processing rule a processing rule name o Parameters the host parameters that caused the rule execution The parameters are shown in a table where e Name a name of a changed parameter e Current the current value of this parameter e Previous a parameter value obtained during the previous poll e The last available a value obtained during the last successful poll Opposite to the previous value that can be unknown this parameter has a real value ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 54 Detailed Information About Event x Host HW100C Fedotov VPN N24321 Path in the cascade Detection time 15 17 04 22 09 2014 Local End time 15 23 00 22 09 2014 Local Message ViPNet host is unreachable Pro
71. n There are two ways you can export the unprocessed host parameters e Automatic export The parameters of automatic export are specified by the Monitoring Server administrator When you schedule the automatic export it starts in the background with the frequency specified in the Monitoring Server program by default every 1 hour The automatic export results are saved to a folder which you can also specify in the Monitoring Server program You can enable or disable an automatic export process by default this process is disabled e Manual export is available both for administrators and for MWA users To export unprocessed parameters manually 1 On the main page on the Monitor tab click Export 2 In the displayed window ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 57 o Specify the time interval for which you want to save unprocessed host parameters Note If in the specified time interval hosts have been polled several times then all parameters including those that changed after polling will be saved in the export file o Choose hosts with the parameters you want to export Select the check boxes of these hosts with the parameters you want to export To select or unselect all the hosts in the list use the All check box To choose a host from a list click the icon and select the corresponding check box You can also filter hosts by name
72. n the passive cluster node Ofiline Unknown Not available Not defined CPU load percentage 90 Integer Measured in megabytes MB Integer Measured in megabytes MB Integer ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 102 Parameters Monitored on Public Hosts In this appendix you will find a list of parameters that are monitored in the current version of the ViPNet StateWatcher monitoring system The parameters are joined into the same logical groups as in Monitoring Web Access Each logical group of parameters is described in a separate table For each parameter you can see its name format brief description type of data and if necessary the possible values Table 19 System parameters Parameter name Host description Up time Contact information Host name Location Amount of RAM Host s current time Description SNMP host description The time of uninterrupted operation of a host Contact information for the person who administers this public host The SNMP host s name SNMP host location RAM size in KB The current time and date on the monitored host Format Possible values String HH MM SS CS centiseconds For example 11 43 23 33 String String String KB HH MM SS DD MM YYYY For example 10 54 27 02 02 2013 Table 20 Network settings Parameter name Description Router Whether the host is a router p
73. ng on the host s type GS means a protected host with installed ViPNet Client software E means a protected host with installed ViPNet Coordinator software or with ViPNet Coordinator HW VA g means a protected mobile host a smartphone with a special version of the ViPNet Client software o means a protected host with ViPNet ThinClient mc means a public host F means a uninterruptible power supply means a printer LH means a router B means an IDS C9 means a public host ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 46 means a group of hosts It is displayed in case you set district based displaying of hosts Blinking of the icons denotes that some events are detected on the hosts for example E When configuring the monitoring server the administrator sets the color of blinking for each severity level For more information on map notification see Notifications on the Map see Visual notification on the Map on page 64 When working with a map you can e Scaling the map with the ability to set the default zoom level e Moving around the map and positioning on it see Recentering the Map and Positioning on the Map on page 47 e Searching for a monitored host by its name and automatic centering on the search result see Searching for Hosts on the Map on page 48 e Searching for a geographical object by its name and automatic centering on th
74. nitoring servers by name To do this type the name or a part of the name in the search box above the server list Every time you type a symbol the automatic list filtering is performed according to the occurrence of the typed symbols in a server name To clear the box click Warning Statistics is displayed only for monitoring servers which are connected in a cascade and are accessible Table 6 Servers status displaying in MWA Server icon Description es Cascade relation has been established mg Cascade relation has not been established mi z Waiting for the cascade relation to be established or broken CL 3 In the view pane two tables will be displayed o General information table This table includes the following parameters e Server name is the name of a server the statistics of which you are viewing e Identifier is an identifier of a network server e IP address is an IP address of a server on the network o Statistics table The table includes information about quantity and statuses of monitored hosts There are 3 categories of the monitored hosts in the table e Hosts monitored directly are hosts that are monitored by this server In the statistics of directly monitored hosts all hosts where the events with the specified severity level were registered are taken in account ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 68 e Cascaded
75. nitoring system is designed for checking the network status of ViPNet hosts for monitoring security events on the hosts for detecting malfunctioning in hosts operation and for notifying hosts users promptly about any network issues ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 126 Index C Configuring a Current Settings Tile 39 Configuring a Graph Tile 39 Configuring Pop up Notifications 61 Customization pack 44 D Data rotation 33 E Exporting the Monitoring Events History e 53 M Monitored host 6 Monitoring event 59 Monitoring Hosts on a Dashboard e 12 Monitoring Hosts on a Map 63 Monitoring the Network Health 40 P Parameters Monitored on Hosts 33 Pop up Messages 34 R Recentering the Map and Positioning on the Map 46 Recommended Internet Explorer Configuration 11 ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide S Searching for Geographical Objects 46 47 Searching for Hosts on the Map 46 47 Structure of the Events History Export File 55 Structure of the Unprocessed Host Parameters Export File 58 Vv Viewing Information about a Monitored Host 13 46 49 63 ViPNet Business Mail 65 ViPNet network 125 Visual notification on the Map 46 ViPNet StateWatcher 42 127
76. on pane in the lower right hand corner the icon will be displayed To view the export error click the icon Ola window with an error text will be displayed Cause and solution e An error occurred while creating an XML file To solve this problem try to start the export process again e The hard disk where the export file is being uploaded is full To solve this problem free up necessary disk space and try to start the export process again e The customization pack updating process started while an exported file was being uploaded To solve this problem stop the customization pack updating process and wait until the export process finishes e Unexpected error To solve this problem try to start the export process again ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 77 Structure of the Unprocessed Host Parameters Export File This appendix displays the XML scheme according to which the export of unprocessed host parameters is performed When an export file is being created the UTF 8 encoding is used lt xml version 1 0 encoding utf 8 gt lt xs schema attributeFormDefault unqualified elementFormDefault qualified xmlns xs http www w3 org 2001 XMLSchema gt lt xs element name export type exportType gt lt xs complexTyp lt xS gt Sequence gt CES KKSI CES lt XS i LXSI Susi CES lt xS5 lt xS5 lt xSi lt xXSi lt
77. onitoring Hosts on a Map cecssccccsssseceeesneeceeeseeececeeneeeeeeaeeceeeeaeaeeeseeeeeeeeesneeeees 45 Recentering the Map and Positioning on the Map csseccessceceseeeceeseeeeneeees 47 Searching for Hosts on the Map ceeeccsssscccssseeesseeeeeeeeceaeeeeneecesaeecssaeeeseaeesas 48 Searching for Geographical Objects eeecceeescesseeceeseeeceseecesaeeeseecesaeeesneeeeeas 49 Viewing Information about a Monitored Host eee eeesceescecesneeceeeeeeeeseeeeeeeees 50 Viewing Information about a Monitored Hosts Group ceeseeceseeeeeneeeeeeneeees 50 Viewing the Monitoring Events History esccceescecesseeeeseeeceseeeeeneeceseecesaeeesneeeesas 52 Detailed Viewing of the Monitoring Events History ccccessceceseeeeeseeeeeeneeees 54 Exporting the Monitoring Events History 0 c cesscccesseceeseeceeeseeeeeneecesaeeeeeeees 59 Exporting Unprocessed Host Parameters 0 ccesscccesseecessnceceeaeeesseeceseecesaeeesseeeeeas 57 Working with Notifications eseeeseeeeeeeeseeesesssesssesssresstressressrresstesstesssteessressressresseesse 60 Visual notifications in the Host List cee ceessecessceeeseereceseeeeseeeesaeesesaeeesneees 60 Pop up Messages haranean anan a AGA ABA GANA GA NUNG ANAKAN 61 Configuring Pop up Notifications cccccccssssecceeeeseteeeeeseneeeeeestaeeeeeeeaeees 63 Visual notification on the Map cccesscecessecesseeceesseecesaeesseecesaeeces
78. or ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 116 Parameter name Report started Report ended Total number of attacks registered on the current sensor Table 30 Available sensors Parameter name Sensor identifier Sensor name Table 31 Attacks statistics Parameter name Sensor identifier Description Start of the time period during which the monitoring server was collecting data from the ViPNet IDS appliance End of the time period during which the monitoring server was collecting data from the ViPNet IDS appliance The number of network attacks this sensor has detected Description ViPNet IDS sensor s ID ViPNet IDS sensor s name Description ViPNet IDS sensor s ID Format Possible values HH MM SS DD MM YYYY For example 10 54 27 02 02 2013 HH MM SS DD MM YYYY For example 10 54 27 02 02 2013 Integer Format Possible values Integer String Format Possible values Integer Parameter name Attack severity Attacks number Table 32 Attacks list Parameter name Sensor s ID Attack s ID Attack s name Attack s severity level Description Attack s severity level Critical Warning or Standard The number of attacks with the specified severity level Description ViPNet IDS sensor s ID Network attack s ID Network attack s name Attack s severity level Critical Warning or Standard Format Integer Inte
79. ored hosts number Inform the administrator of the Monitoring Server program or your ViPNet network administrator about the problem Ask the administrator to modify the limitation to increase the allowed number of monitored hosts in the ViPNet Network Control Center program or to remove unnecessary hosts from the list of monitored hosts Monitoring Server is Unavailable Description e When you are browsing a web application s page you are clicking a button or a link a log entry and so on you are notified that the monitoring server is inaccessible Cause and solution e The Monitoring Server program has been stopped ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 75 Inform your administrator about the problem Find out why the program was stopped and ask him or her to start the Apache Tomcat service After you start the Apache Tomcat service the Monitoring Server program starts automatically StateWatcher Role Is Not Registered Description e At the web application startup or during its operation you are notified that the StateWatcher role is not assigned to the server host Cause and solution e The Monitoring Server program has been stopped because of the licensing terms violation Inform the administrator of the Monitoring Server program or your ViPNet network administrator about the problem and ask him or her to check whether the State
80. ost identifier ViPNet Monitor program s status Host status Host name Host type The current time and date on the monitored host ViPNet software version ViPNet driver version ViPNet control daemon version IP packets log version Encrypted packets format VPN server identifier for a host ViPNet server flag List of host s IP addresses External ViPNet server polling period in the dynamic UDP mode Dynamic UDP flag External ViPNet server in the dynamic UDP mode flag Host virtual address Firewall IP address Proxy server identifier ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 82 Element name poll timestamp port use firewall firewall type fix firewall task list forward id iface id iface name iface ip iface netmask iface mode iface start mode iface ext iface used iface timediff iface max log size iface reg all iface reg broadcast iface reg tcp serv port enc in pass enc out pass enc in drop enc out drop unenc in pass unenc out pass unenc in drop unenc out drop enc in br pass enc out br pass Parameter being exported The last date and time when the host was polled by the Monitoring Server program Firewall port for UDP packets Firewall flag Firewall type Fixed firewall settings flag Host roles list Identifier of a VPN server used in the dynamic UDP mode Interface identifier Interface name List of network interf
81. osts by the specified parameters For easier viewing you can filter hosts in one of the following ways e Filtering hosts in a group On the Host List page in the pane with the group name click the link with the number and severity of events The page will be displayed with all hosts in the selected group on which the events of the selected severity level were registered You may cancel searching by the selected criteria by clicking the Default button on the toolbar By default the severity levels are marked in red yellow and green colors for Critical Warning and Standard severity levels Informational messages are marked in blue color 4 Default group Bazanova Vera Logisti 0001070b 110 194 3 29 11025 20 29 42 16 01 20 20 28 31 16 01 20 Server Coordinator S 0001027d 10 0 2 20 4 0 1 4831 20 29 18 16 01 20 20 28 05 16 01 20 yo E p0 po pol pol p8 CSL Nastya Shpilevska 10e10a0b 11 0 3 202 3 2 10 15632 20 29 43 16 01 20 20 28 31 16 01 20 Figure 16 Filtering hosts in a group e Hosts filtering by monitoring groups Select the check boxes of the groups you want to display and then click Apply ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 36 All groups 7 All even 4 All groups Default group HOME Open VPN 4321 w Server Apply Figure 17 Filtering hosts by groups e Filtering by
82. osts on page 89 The detailed information tab is not updated dynamically while the host is being polled To update this information close and reopen the Host Information window The Current Events tab shows event notifications received from the host The current notifications the notifications that were created by processing rules are displayed with the corresponding executed processing rules The parameters on this tab are updated every time the host is polled either automatically or manually On this tab you can also disable notification about this host by clicking Suspend notifications In the list choose the time interval 1 hour 12 hours 1 day During this time interval the events in the Events column will not be changed and the Suspend notifications button will be replaced with the Resume notifications button You can resume displaying the notifications before the end of suspending time interval by clicking this button Notification on maps is also disabled The Events history tab contains history of processing rules executions for the host for the last 24 hours The Description tab allows you to save arbitrary information about a host for example if you want to give a detailed description of a host The added information can be viewed and edited by other users Note If no events registered before are displayed on Events History tab contact your monitoring server administrator They could be removed by the data rotation
83. period ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 94 Parameter name Driver version IP packets type Host type Allowed traffic absence timeout when working in the dynamic address translation mode IP packets log version Firewall address Firewall port Fixed external IP address for access through the firewall is enabled Description ViPNet network protection driver version The format of outgoing encrypted packets addressed to ViPNet hosts ViPNet host type A timeout for sending UDP packets to maintain a connection with a coordinator IP packets log version IP address of the firewall behind which the host is placed Firewall port for UDP packets Fixed firewall settings flag Format For example 3 1 3 7623 3 numbers divided by a period For example 3 0 437 2 numbers divided by a period String Integer 2 numbers divided by a period 4 numbers divided by a period For example 10 0 2 20 Integer String Possible values 4 0 4 1 Client Coordinator Not defined 25 3 0 format 2 8 format Possible values range from 1 to 65535 Yes No Parameter name Description Format Possible values Proxy server s ID Identifier of the ViPNet coordinator used as a proxy server Table 13 ViPNet Monitor parameters Tunneled IP addresses ranges Parameter name Description A hexadecimal number For ex
84. port number should be typed only if it is not the default one the default port number is 80 You may ask your ViPNet administrator about your monitoring server address and the port number o Inthe ViPNet Monitor program in the Private Network section click your monitoring server and do one of the following on the toolbar click Web on the Actions menu or on the context menu click bag Open Web Resource on this ViPNet Host After you connect to the monitoring server successfully the logon window will be displayed ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 22 ViPNet StateWatcher ViPNet network monitoring system Figure 9 User logon 2 Inthe User box type the account name and in the Password box type the password to this account and click Log in User name password and other user attributes are specified by the Monitoring Server administrator when he or she creates a user account After logon a page with a list of monitored hosts will be displayed Note The first time you connect to Monitoring Server you might come across a problem that there are no monitored hosts on the list and on other pages This may occur if the StateWatcher administrator has not specified any monitored hosts In this case ask your administrator to do this ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet
85. procedure see Data rotation on page 122 ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 34 Viewing Information about the Events Registered on Hosts To view the information about the events registered on monitored hosts l 1 On the Host List page in the notification pane click In the Information about events registered on hosts window you can get information about events registered on monitored hosts see Pop up Messages on page 61 2 If necessary you may also get detailed information about each registered event To do this choose the required event from the list and in the Event column click the icon of the corresponding severity level The window with the information about the host where the event was registered will be displayed Polling Monitored Hosts The Hosts list page is refreshed automatically every time the monitoring server polls the hosts If the monitoring server does not receive any information about a parameter then this parameter is considered to be unknown In this case the word Unknown is displayed instead of this parameter The list of cascaded monitored hosts is updated automatically in the following cases e You add a new host to the list of monitored hosts on a child monitoring server e You remove a host from the list of monitored hosts on a child monitoring server e You establish a connection to a new child monitoring
86. rd click tab and in the upper part of the information tile click Edit 4 If you want to keep track of the current parameters of any hosts select the Current settings tile type For details see Configuring a Current Settings Tile on page 41 5 If you want to keep track of the changes in any parameters in the form of a graph select the Graph tile type For details see Configuring a Graph Tile on page 42 6 Ifyou want to track the latest detected monitoring events select the Recent events tile type If you want to keep track of all parameters use the default settings If you want to select monitoring hosts select the Use filter check box and select the required nodes If you want to monitor only the events of particular importance check the boxes next to the required critical levels To save the settings click Save 7 If you want to keep track of the hosts on a map select the Map tile type and click Save As a result the following dashboard will be created ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 40 F3 VipNet StateWatcher Dashboard Ear Statistical parameters Statistical parameters Statistical parameters cy i 4 day 12 hours 12 hoon me Shows yr phous louns 3 hours 2 saz NG 30 mar 20 mer a Current settings Zx Current settings Zx Current settings Zx Parameter Up time Host Server Coordinator SR14 Info Parameter Avakable s
87. rding to notification filters specified for each user You can disable notification for a monitored host on its monitoring server In such a case there will be no blinking even though some events are detected after processing rules execution Notification will be enabled when the specified time expires or on user s request Cascaded hosts may fail to blink if at some point in a cascade the connection is broken for example if some child monitoring servers are switched off Sound Notifications Sound notifications are played in Monitoring Web Access when an event is registered on a host Each severity level has its own sound file with an mp3 extension These connections are specified by the administrator during the Monitoring Server configuring ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 64 Sound notification about an event on a host is played only when it is registered for the first time If during the next poll the same event is found on the host the sound notification is not repeated If several processing rules are executed at the same time the sound file of the maximum severity level established by the executed rules is played Email Notifications Email notifications are the notifications that are sent to monitoring server s users when processing rules are executed Messages are sent to the email addresses specified in the user accounts A message a
88. repeated Messages are displayed as windows with detailed or brief event information There are two pop up message types e Messages in a pop up window which are displayed in lower right hand corner of a page when an event on a monitored host is registered ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 61 Event Information pa E Host name IP address Anastasia Administrator 11 0 7 21 Processing rule name Host Status X Message ViPNet host is accessible Figure 34 Pop up message Messages in pop up windows include brief event information o Host name IP address a monitored ViPNet host name and its IP address o Processing rule name a rule name o Message a message from the Monitoring Server program about the registered event By default messages about the last registered event with the highest severity level are displayed first on the list If there are more events registered at the same poll then the 3 last messages with the highest severity level are displayed Each message is displayed for 3 seconds For example if 50 events occur on one or more hosts if all messages are enabled for all severity levels then 3 messages about the events with the highest severity level will be displayed one after another If there are only 2 events with a critical severity level then the third message will contain information about an event with the next lower s
89. ring System for ViPNet Networks Monitoring Server Administrator s Guide which is included in the ViPNet StateWatcher distribution kit Distribution Kit All the components distributed with Monitoring Web Access are specified in the table below Table 3 Distribution kit Item File name Software Adobe Flash Player plug in for Mozilla flashplayer 11 plugin debu required for Firefox browser g 32bit exe monitoring via Monitoring Web adobe Flash Player plug in for Internet flashplayer_11_ax_debug_32 Access Explorer browser bit exe There is Adobe Flash Player plug inin therefore it is not included in the Google Chrome browser distribution kit You can download a setup file for the iReport 3 7 6 windows iReport visual designer from installer exe http jasperforge org projects ireport http jasperforge org projects ireport Documentation ViPNet StateWatcher Monitoring vipnet statewatcher pdf in PDF System for ViPNet Networks Overview ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 429 ViPNet StateWatcher Monitoring vipnet statewatcher usergu System for ViPNet Networks ide pdf Monitoring Web Access User s Guide ViPNet StateWatcher Monitoring vipnet statewatcher admgui System for ViPNet Networks de pdf Monitoring Server Administrator s Guide System Requirements You can work in Monitoring Web Access on any ViPNet host where the ViPNe
90. ring Unprocessed Host Parameters Exporting eseeeseeeeeeeees 77 Appendix B Structure of the Unprocessed Host Parameters Export File scscscssssssseeee 78 Appendix C Structure of the Events History Export File scccsssssssssscssssesssseessssesseseees 86 Appendix D Monitored Parameters kaa ANAN 88 Parameters Monitored on Hosts ccsscccessceesssceecessecesscecesaceceecesaeecssaeceessaeeeseeeeeas 89 Parameters Monitored on Public Hosts ccceccccceecccccssescccsccccecesescccssueccceesaccceeusceees 103 ViPNet IDS Monitoring Parameters cccceescceesceceesseeeeesceceeeceseecesaeecssaeeeseaeeesaees Appendix E Glossary sssccccscsscssssscsssessssecsssssescsssscseesssessesssssscseesscsssscssssscsessocsesssesessssees Appendix F Index Introduction About This Document 7 About Monitoring Web Access 9 What s New in Version 4 3 13 Feedback 17 ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 6 About This Document This document describes the purpose and scope of Monitoring Web Access that is a part of the ViPNet State Watcher monitoring system It contains information on the basic features and operating principle of the interface Also the document describes the user interface of this program This document presents guidelines on how to view data and statistics gathered from monitored
91. rrent values of the parameters or a map When a new user account is created a default dashboard is also created for it Home tab It contains the following information tiles e Current settings e Graph e Recent events e Map When working with MWA you can configure a default monitoring dashboard default or create a new one You can configure up to eight dashboards including the default dashboard for each user Dashboard and its settings are individual for each user and are not displayed to other users The figure below shows a default dashboard ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 38 A ViPNet Statewatcher Dashboard Current settings Zx Graph Zx Statistical parameters Monitored hosts accessible within the ViPNet network 561 ay Coordinators accessidie within the ViPNet network 3 Charts accessible within the VENet network 525 paan Events with the Informational severity level 3 Suing Events with the Waming severity level Events with the Critical severity level 1 3 hours Total mambar of events 3 hour me oma San ame m mm im Recent events Zx Map Zx maat il Host name Event Event time Message o er MW300C Fedotov VPN NG4321 E 182204 12092014 ViPNet host i unreachable HW200C Fedotov VPN NG4322 E 16170419092014 ViPNet host unreachable Ufa Muthametov Timur VPN NG MB 180204 1309 2014 ViPNet Monitor is turned off HWLOOC
92. s gt name unenc out drop bytes 5 name enc in br pass bytes 5 name enc out br pass bytes 5 name enc in br drop bytes gt name enc out br drop bytes 5 name unenc in br pass bytes gt name unenc out br pass bytes gt name unenc in br drop bytes gt name unenc out br drop bytes gt name traffic total in gt name traffic total out 5 name traffic total 5 name traffic load gt axXScSequence xTyp lt xs element type tunn ilsType gt name tunnel maxOccurs unbounded minOccurs 0 gt lt xs sequence gt lt xs complexType gt lTyp ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 79 lt xs complexType name exportType gt KR Sequence gt lt XSi lt xs sequence gt lt xs complexType gt lt xs complexTyp name tunnelTyp lt xs i sequence gt lt xs element type xs string lt xs element type xs string lt xs sequence gt lt xs complexType gt lt xs complexType name diskType gt lt xs sequence gt lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs element type xs string lt xs sequence gt lt xs complexType gt lt xs complexTyp name ifacesTyp lt xs i sequence gt Ses lement type recordType name record gt name start address 5 name end address gt name disk name gt
93. s listed below Table 4 Recommended screen resolutions for Monitoring Web Access Recommended resolutions Partially supported resolutions 1400 x 1050 1024 x 768 1600 x 1200 1280 x 768 1680 x 1050 1280 x 800 1920 x 1080 1280 x 1024 1360 x 768 1440 x 900 1600 x 900 Note If you use partially supported screen resolutions some web pages may exceed your screen bounds Fa For viewing web pages without scroll bars set the screen resolution to 1280 x 1024 or higher We don t recommend you to use screen resolution 1280 x 600 when you work in Monitoring Web Access One of the following browsers should be installed e Microsoft Internet Explorer versions from 8 0 to 11 e Firefox versions from 4 0 to 32 0 You can download the latest version from www mozilla org en US firefox new www mozilla org en US firefox new e Google Chrome versions from 11 0 to 37 0 Tip We recommend you to use the latest browser versions O We don t recommend you to open Monitoring Web Access in different browsers or different windows tabs of the same browser simultaneously Also we don t recommend you to work in Monitoring Web Access using more than one account at a time ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 11 Warning For Monitoring Web Access to work correctly enable JavaScript and Cookies in your browser For more information about enabling and disabling the
94. se A features see Help to your browser If you use Internet Explorer version 9 0 disable the high security level in the Internet Options see Recommended Internet Explorer Configuration on page 19 For sound notifications the Adobe Flash Player plug in is required The plug in is downloaded automatically by your browser when there is an Internet connection Otherwise you can download it from http get adobe com flashplayer ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 12 What s New 1n Version 4 3 This section contains a brief description of changes made to the ViPNet StateWatcher monitoring system and its new features in version 4 3 in comparison to version 4 2 1 You can find information about earlier versions of the monitoring system in the document ViPNet State Watcher Monitoring System for ViPNet Networks Overview in the appendix Version History e Monitoring hosts on the dashboard You can configure the dashboard to acquire up to date information about monitored hosts in a handy form You can choose parameters for display on the Dashboard page On the dashboard current values of monitored hosts parameters can be displayed in graphs or on a map see Monitoring Hosts on a Dashboard on page 38 w ViPNet StateWatcher BEKS olo fe Home Current settings Zx Graph Statistical parameters Monitored hosts accessible within the 573 a
95. sscssssscssesens 18 Recommended Internet Explorer Configuration cccceesscceesceceeeececeeneeceeaeeesneeeeees 19 Starting and Ending a Monitoring Session esseeescecesseeeeseeeceeeeeeseecesaeecsnaeeeeaees 22 Changing a User Password cscccccsessscceeesneeceesenneeeeseeaeeeceesaeeceseenaaaeeeeeeaneeseeesaneeeees 25 Interface of the Host List Page 3 nn BAGA ANAN 26 Chapter 2 ViPNet Host MOomitoring sccscssoscsscsssscssssscscsscsscssssccsccsesssscssesssscsscssssscsessens 28 Monitoring Hosts in the Host List ees ceesceessecessececesseeceseecneeceseecssaeeesesaeeeeneeeeeas 29 Viewing the Monitored Hosts List eee eessccesseeceeseeceescecesaeeeeseeeeeaeesenaeeeeeneees 29 Monitored Hosts Lista in E A EE 29 HOSCGrOUP S a i Ilan Ives ie ARE i TEE EE S 31 Viewing Information about a Monitored Host cc eeeeeesceeeseeceeeeeeeeeneeees 32 Viewing Information about the Events Registered on Hosts 35 Polling Monitored Hosts cessccesscecessceceseeessceceseecssaceesneecesaeeceeseecesaeeeseeees 35 Filtering Monitored HOSS s ioeiseess eisson NANANA NANGANGALAGA 36 Monitoring Hosts on a Dashboard eeeseesseeesesesesssssssressressrrssissrressressressreresereseresses 38 Configuring Dashboard o eaei A E AAAA 39 Configuring a Current Settings Tile 0 0 0 eeeceeseccessceceseneecesaeeeeneeeeeaeesesaeeeeeeees 41 Configuring a Graph Tileston ann 42 M
96. stomization pack A pack of settings for configuring the monitoring system according to your needs A customization pack may contain localization files additional built in processing rules email templates and customized icons for host types in your company By default a customization pack is installed when you install the Monitoring Server software on a new computer or when you upgrade your Monitoring Server program You may update the installed customization pack with a StateWatcheriInstaller jar file D Data rotation A procedure for deleting outdated information such as e unprocessed host parameters e monitoring events registered as a result of processing host parameters with rules The monitoring server administrator may change rotation parameters in advanced settings of Monitoring Server E Email notification templates Files with a jasper extension which are compiled templates of Jasper reports To work with these templates you may use a freely distributed report designer iReport that is included in the distribution kit To download the latest iReport version click this link http jasperforge org projects ireport M Monitored group A named subset from the total set of hosts monitored by the monitoring server Groups are user defined logical units of monitored hosts united on the basis of belonging to the same department geographic location and so on On a monitoring server you can specify monitored groups regard
97. t Client software any version is installed Warning For the correct work of Monitoring Web Access you need to accept and install the latest Windows OS updates The minimum system requirements for your computer to run Monitoring Web Access are as follows e Processor Intel Pentium IV or any other x86 compatible processor of similar characteristics e Minimum RAM 512 MB 1 GB recommended e Operating system Microsoft Windows XP SP3 32 bit Server 2003 32 bit Vista SP2 32 64 bit Server 2008 32 64 bit Windows 7 32 64 bit Server 2008 R2 64 bit Server 2012 64 bit Server 2012 R2 64 bit and Windows 8 32 64 bit e Access to the Internet if you want to send SMS notifications For your Monitoring Web Access to work efficiently for example when you need to monitor many hosts or for better detailization on maps we recommend you to use a more powerful computer e Processor Intel Core 2 Quad or any other x86 compatible processor of similar characteristics e Minimum RAM 8 GB ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 10 e Operating system Microsoft Windows Vista SP2 64 bit Server 2008 64 bit Windows 7 64 bit Server 2008 R2 64 bit Server 2012 64 bit Server 2012 R2 64 bit and Windows 8 32 64 bit e Access to the Internet if you want to send SMS notifications We recommend you to use the screen resolution
98. t StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4242 2 Select the Graph tile type and a graph type line chart pie chart or bar chart 3 If you want to view the value of a particular parameter for several hosts in the Filter using list choose Parameter In the list of parameters choose a parameter that you want to monitor in the list of hosts select the check boxes next to the desired hosts 4 If you want to view the value of a particular parameter for several hosts in the Filter using list choose Parameter In the list of parameters choose a parameter that you want to monitor in the list of hosts select the check boxes next to the desired hosts 5 To monitor statistic parameters in an information tile select Statistic parameters in the Filer using list 6 If you want to see the time of the last update of the parameters values in a tile with a Pie chart type select a check box next to Show update time 7 If necessary change the graph color To do this press the palette button next to the corresponding parameter and select a color 8 If you selected a Pie chart type you can select which parameter will be a summary parameter Percentages of the other parameters will be calculated with respect to the summary parameter for example when monitoring the space on a hard drive select the total disk size as a summary parameter The final parameter should be greater than the
99. t only hosts in a group but not in a whole list You can adjust the width and order of columns in the list of monitored hosts e To change the width of a column hover over the column header s border and then click and drag the border to stretch or narrow the column e To change the order of columns in the monitored hosts list click the column header drag and drop it You may add or remove columns displayed in the list of monitored hosts To do this 1 On the Host List tab in the upper right corner click Settings and then choose Configure columns Johnson Configure columns Configure event notifications Show Network Health pane Figure 13 Configuring columns in the list of monitored hosts 2 An Add Remove Columns in the Table window will appear where you can add or Egy remove columns from the monitored hosts list with the and buttons ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 30 Add Remove Columns in the Table X Add Remove Columns in the Table Available Displayed amp General host parameters Host type Access IP addresses LI Host name Business Mail Events CPU load Identifier Failover md IP address Free RAM G ViPNet software version IP addresses server Time on host Memory usage Last polled on Roles Status Total RAM Hi Total 68 Total 9 Due to the build in restrictions you can display only 15 columns
100. ted In individual filters for each user it is specified on which hosts an event should be registered to send a notification to this user Also you may specify an event severity threshold Notifications about the events with a severity level equal or higher than the threshold level will be sent to the user Only an administrator can configure notification filters The processing rules specified in the Monitoring Server program are executed every time the hosts are polled If during a poll a rule is executed then the notifications are sent in the following order e Visual and sound notifications ViPNet Business Mail email and SMS messages are displayed or sent only when an event is registered for the first time If during the next polls the same change or event is registered then this notification will not be repeated e A host s name is highlighted in the host list or on a map when an event is registered regardless of previous poll results The hosts are highlighted till the events on them are fixed Visual notifications in the Host List This notification type is intended for host highlighting on the Monitor page ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 60 ViPNet StateWatcher Monitor Monitored Hosts 1155 Poll group Epot All groups All events v 4 Default group 1 pag E GA Joerg Wiedecke Infotecs VPN N97039 lb 110 4 2 2 254
101. ted Moreover you can configure the display of these data on the dashboard ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 14 Host Information x Host name Infotecs Coordinator Berlin VPN N27039 IP address 11 0 1 34 Web link 11 0 1 34 Identifier 1b7f0061 Host status Accessible Host local time 10 38 46 19 09 2014 Last polled on 10 32 04 19 09 2014 Detailed infomation ET ET TT o LF Tirewall Identifier of the coordinator through which the traffic is directed and which works as a firewall 00000000 with dynamic address translation gt Tunneled IP ranges a 4 List of accessible coordinators connection to them has been established ViPNet host identifier Host name Link status 0001000b _Server Coordinator SR1 InfoTeCS Moscow No KP 0001027d Server Coordinator SR2 InfoTeCS Moscow Yes E 000103a4 Yes 000103cf Y Figure 3 Viewing the connection status of a host with ViPNet coordinators e Changes to Monitoring Web Access Interface The monitoring web interface has been improved and updated Flat UI design has been developed for MWA fonts are easier to read and icons have been redesigned ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 15 Version 4 3 A ViPNet Statewatcher Monitor Host List Monitored Hosts 1155 ik Host name T
102. teger Possible values ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 120 Glossary A Authentication The process of identifying an individual usually based on a user name and a password In security systems authentication is distinct from authorization which is the process of giving individuals access to system objects based on their identity Authentication merely ensures that the individual is who he or she claims to be but says nothing about the access rights of the individual C Cascade A multilevel hierarchical structure of child parent connections between monitoring servers In a cascade every child monitoring server transfers the hosts monitoring data to its parent monitoring server The cascade interaction structure balances the monitoring load between monitoring servers and allows you to monitor a segmented network even when ViPNet hosts in its segments are not linked with the parent monitoring server Cascaded monitored host A host that is monitored by a given monitoring server not directly but through its direct child server or through a chain of its child monitored servers The given monitoring server only ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 121 receives notifications about events on the cascaded monitored host from its child monitoring servers Cu
103. tion Limits how users browse Internet and Intranet Web sites Total disk space required 4 4 MB Detail Space available on disk 37871 9MB __Detais _ Figure 6 Disabling Enhanced Security Configuration for Windows Server 2003 1 3 To exit the wizard click Finish For Windows Server 2008 R2 2 1 Click the Start button and then click Control Panel 2 2 In the All Control Panel Items window click Programs and Features 2 3 In the Programs and Features window click Turn Windows features on or off ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 20 2 4 In the Server Manager window under Server Summary 5 Security Information click Configure IE ESC EL Server Manager _ File Action View Help 9 Ga Server Manager WIN PCNFUOSUS ESE ror sty AGUA 3 Roles Features Jam Diagnostics a Event Viewer iy Device Manager Ci Configuration Storage A Get an overview of the status of this server perform top management tasks and add or remove server roles and features Server Summary Help Computer Information 188 Change System Properties Security Information MP Go to Windows Firewall Windows Firewall Public On E Configure Updates t Check for New Roles Windows Updates Check for updates only using Windows Update Run Security Configuration Wizard Last checked for updates Toda
104. tored host is not connected with the monitoring server Check the connection between the host and your monitoring server in the ViPNet Client Monitor program or by executing the ping command If there is no connection ask your administrator to check that host links are properly set in the ViPNet Network Manager program ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 73 Possible Malfunctions Description e At the web application startup or during its operation you are notified that the Monitoring server role is not assigned to the server host Cause and solution e The Monitoring Server program has been stopped because of the licensing terms violation Inform the administrator of the Monitoring Server program or your ViPNet network administrator about the problem and ask him or her to check whether the Monitoring server role is assigned to the server host Description e At the web application startup or during its operation you are notified that the permitted number of monitored hosts has been exceeded Cause and solution e The Monitoring Server program has been stopped because of the violation of the licensing terms related to the limitation on the monitored hosts number Inform the administrator of the Monitoring Server program or your ViPNet network administrator about the problem Ask the administrator to modify the limitation to incre
105. toring Web Access User s Guide ViPNet StateWatcher 4 2 65 The file includes message text about a host status change or about a critical event The file name is formed according to the following template lt host name gt host identifier gt lt rule name gt execution time gt txt Note The file with a text is attached to the incoming email message The length of the F4 attachment name has limitations which is why the attachment name may be a shortened file name At the same time the file name remains unchanged and is fully displayed after you save the attachment on your hard drive According to ViPNet Business Mail autoprocessing rules the files are sent to the ViPNet hosts users who monitor hosts via Monitoring Web Access The messages transferred from a monitoring server to a MWA host are saved to the Inbox folder When the messages are being received the ViPNet Business Mail program notifies the users about it SMS Notifications SMS notifications are SMS messages automatically created based on the corresponding processing rule s message and some service information The standard length of an SMS message is 70 characters If the notification text is longer than that the notification is divided into several SMS notifications no longer than 70 characters each Every SMS notification includes several fields containing the following information e the Monitoring Server s name maximum 40 characters e the processing rule s
106. ts search On the left side of the toolbar the number of monitored hosts that has been added for monitoring on this Monitoring Server is shown These hosts may be polled or not 2 The view pane that includes a list of monitored hosts with their detailed information 3 The notification pane containing the following buttons and links o Help for starting the context help o About for viewing information about the ViPNet State Watcher ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 26 o Configure event notifications for configuring notifications about host events in a dialog box o kw for turning sound notifications on and off o for information about events registered on monitored hosts o for notification about the export of unprocessed host parameters A o M for notification about the export of events history 4 The User menu allowing you to edit your account or exit the monitoring system 5 The Settings menu allowing you to choose which columns will be displayed in the hosts list to configure pop up messages and to show or hide the Network Health panel ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 27 ViPNet Host Monitoring Monitoring Hosts in the Host List Monitoring Hosts on a Dashboard Monitoring Hosts on a Map Viewing the Monitoring Events History E
107. ues 1 active 2 continue pending 3 pause pending 4 pause Possible values 1 can t be deleted 2 can be deleted Possible values ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 114 Parameter name Description Data type Possible values The number of critical events Integer The number of all events Integer ViPNet IDS Monitoring Parameters In this appendix you will find a list of ViPNet IDS software and hardware appliance parameters that are monitored in the current version of the ViPNet StateWatcher monitoring system The parameters are logically grouped the same way as in the monitoring web access interface Each logical group of parameters is described in a separate table For each parameter you can see its name format brief description type of data and if necessary the possible values Table 29 System options Parameter name Host description Up time Contact information of the person who administers this host Host name Location Current sensor identifier Description Format Possible values Public host description String The time of uninterrupted operation HH MM SS CS centiseconds HAMON For example 11 43 23 33 Contacts of the ViPNet IDS String administrator The public host s name String Public host s location String ViPNet IDS sensor s ID Integer ViPNet StateWatcher Monitoring System f
108. umentation of even higher quality ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 17 General Information Recommended Internet Explorer Configuration Starting and Ending a Monitoring Session Changing a User Password Interface of the Host List Page ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide 19 22 25 26 ViPNet StateWatcher 42 18 Recommended Internet Explorer Configuration In order to correctly display the web interface Internet Explorer should not be in Compatibility View mode If you use Internet Explorer 8 prior to starting the Monitoring Web Access make sure that the required parameters are set in Internet Options To do this 1 Run Internet Explorer 2 On the Tools menu click Internet Options 3 On the Advanced tab under Multimedia select the Play animations in webpages and Play sounds in webpages check boxes Internet Options eles General Security Privacy Content Connections Programs Advanced Settings 4g Multimedia a Always use pada for HIM FT Showi image download placeholders V Show pictures V Smart image dithering a Printing l Print background colors and images Search from the Address bar Do not submit unknown addresses to your auto search pri Just display the results in the main window amp security
109. vent History Define Event Search Criteria Hosts MAI Ew Default group i HOME BW Open eA VPN 4321 wd Server Totak 1155 Selected 1155 Show Results 86 32ms Results per page s v HW100C Fedotov VPN N 4321 HW100C Fedotov VPN N24321 HW100C Fedotov VPN N24321 HW100C Fedotov VPN N24321 Help About 15 02 04 22 09 2014 22 09 2014 14 47 04 22 09 2014 22 09 2014 14 32 04 22 09 2014 22 09 2014 14 17 04 22 09 2014 22 09 2014 Processing rules Built in rules ViPNet Monitor Offline i ViPNet Monitor Status Started Services SNMP Hide search criteria Event time Local Universal GMT Since 21sep2014 15 13 to 22sep2014 S 16 13 2 Passive Failover Cluster Node Status Failover Cluster Node Switching 4 Coordinator Offline Severity level Many High Level Attacks on the Current Critical W Standard IDS Sensor moda Warning Informationa View mode Brief all messages as one string 7 mane Coordinator Offline Critical ViPNet host is unreachable 14 53 00 Coordinator Offline Critical ViPNet host is unreachable 143801 Coordinator Offline Critical ViPNet host is unreachable 2 main Coordinator Offline Critical ViPNet host is unreachable Figure 30 Viewing monitoring events history naa amp 2 On the Search criteria page specify filtering parameters for the events registered by the monitoring system and click
110. vent registered on a host during a poll An icon color depends on the Monitoring Server program settings Identifier The identifier of the ViPNet host IP address The current IP address of the monitored host ViPNet software version The version of the ViPNet software installed on a ViPNet host Host local time The local time and date on a monitored host Last time polled The time and date of the last poll of a monitored host The Monitoring Server polls hosts periodically and the poll period can be defined in the program settings You ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 29 can initiate polling process manually any time you want to do this select the required hosts and click Poll Status The current status of a monitored host with the ViPNet Monitor program installed There are two possible statuses Accessible and Unreachable Note The ViPNet software version Host local time and Last time polled parameters Fa are not automatically displayed for the list of cascaded monitored hosts They can be received only on request of the parent monitoring server s administrator You may sort the information in the list of monitored hosts by any column except for the Events column by clicking the column header On the first click the information is sorted in ascending order on the second click it is sorted in descending order fa Note You can sor
111. xporting Unprocessed Host Parameters Working with Notifications Statistics Monitoring the Network Health ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide 29 38 45 52 57 60 67 71 ViPNet StateWatcher 42 28 Monitoring Hosts in the Host List You may monitor hosts in the host list Monitoring is a necessary procedure for getting detailed actual information about ViPNet hosts Viewing the Monitored Hosts List To view the host list on the main page on the Monitor tab click Host List On this tab there is a list of grouped hosts with the polling results for each host and also links and buttons for starting functions available for the user If this monitoring server has cascaded child servers then on the Host List page cascaded monitored hosts will be displayed as well Monitored Hosts List A list of monitored hosts includes only the monitored hosts specified by the administrator of this monitoring server For each monitored host the following information is displayed Table 5 Columns of the Monitored Hosts list Column name Description ViPNet type Host type icon Monitoring Server detects it automatically when adding the host for monitoring Host name The name of the ViPNet host or the public host Events Events registered on the monitored host In the Events column you can see the number of events and a colored icon indicating the most important e
112. xs7 e KES E 1 lt xs761 lt xs sequence gt Leme Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen Lemen type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s type xs s lt xs complexType gt lt xs compl name tunn tring tring tring tring tring Ering tring tring tring tring tring tring tring tring tring tring tring Ering tring tring tring tring cring tring tring tring tring tring tring tring tring tring tring tring tring name enc out pass gt name enc in drop gt name enc out drop gt name unenc in pass gt name unenc out pass gt name unenc in drop gt name unenc out drop gt name enc in br pass gt name enc out br pass 5 name enc in br drop gt name enc out br drop gt name unenc in br pass gt name unenc out br pass 5 name unenc in br drop gt name unenc out br drop gt name enc in pass bytes gt name enc out pass bytes 5 name enc in drop bytes 5 name enc out drop bytes 5 name unenc in pass bytes gt name unenc out pass bytes gt name unenc in drop byte
113. y at 4 13PM Pe Configure IE ESC Last installed updates 12 11 2013 12 15PM TE Enhanced Security Configuration On for Administrators Esc On for Users Roles Summary Roles Summary Heip A Roles 0 of 17 installed B Go to Roles Ib CR Last Refresh Today at 4 23PM Configure refresh Figure 7 Setting Enhanced Security Configuration in Internet Explorer 2 5 In the displayed window for Administrators and Users select Disable and click OK 4 Internet Explorer Enhanced Security Confi Internet Explorer Enhanced Security Configuration IE ESC reduces the exposure of your server to potential attacks from Web based content Internet Explorer Enhanced Security Configuration is enabled by default for Administrators and Users groups Administrators on Recommended o F off Users on Recommended w CC off More abati Explorer Enk J Security Confiqurati OK Cancel Figure 8 Disabling Enhanced Security Configuration in Internet Explorer ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 21 Starting and Ending a Monitoring Session To start working in Monitoring Web Access 1 Connect to the monitoring server There are two ways to do this o Open a web browser and in the address bar type http smonitoring server address5 cport numbers Specify the IP address of the monitoring server you want to connect to A
114. y level as well as host statuses regardless of their categories In Monitoring Web Access you can view both the cascade statistics for the cascade parts you have access to and the structure of the cascade parts Pi ViPNet StateWatcher Monitor Cascade Parent monitoring server _Server State Watcher 03 InfoTeCS Moscow Identifier 107d3 IP address 10 0 4 237 Server name Identifier IP address ee Server State Watcher 02 InfoTeCs Moscow Server State Watcher 02 InfoTeCS Moscow 0001048e 10 04 65 aaa Cascaded hosts Total directly Critical 2 0 1 Waring pi 0 1 Standard 0 0 0 Informational 1 1 Accessible hosts 573 0 73 Unreachable hosts 582 0 582 Polled hosts 1155 0 1155 Not polled hosts 3 0 a Go to the list of hosts for the selected server load tomes OB Figure 38 Viewing the statistics and the cascade structure With the data on the statistics page you can assess the monitoring server work and define the critical areas of your network ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 42 67 Viewing the Statistics for a Cascade Segment To view statistics for the specific cascade segment 1 On the Monitor tab click Cascade 2 In the navigation pane choose the monitoring server whose statistics you want to see If necessary expand the monitoring servers list by clicking the icon which you can find to the left of a server name You can also filter mo
115. ze is measured in megabytes MB and displayed only starting with 3 1 3 version for ViPNet Client Coordinator or with 3 6 1 version for ViPNet Coordinator Linux Format Number is an integer Total is an integer Possible values ViPNet StateWatcher Monitoring System for ViPNet Networks Monitoring Web Access User s Guide ViPNet StateWatcher 4 2 98 Parameter name Integral parameters Total incoming IP traffic Total outgoing IP traffic Total Load on a network interface Description Total incoming IP traffic since the last request in megabytes MB Total outgoing IP traffic since the last request in megabytes MB Total incoming and outgoing IP traffic since the last request in megabytes MB Average traffic rate on the interface during the last polling period Measured in megabytes per second MB sec Table 16 Network interfaces IP packets log settings Parameter name Maximum IP packets log size Description Measured in megabytes MB Format Possible values Integer Integer Integer A decimal fraction with two decimal digits For example 24 86 MB sec Format Possible values Integer For example 1 MB Parameter name Logs aggregation period Log all IP packets Log broadcast IP packets For TCP connections log only the remote server port Table 17 MFTP Parameter name MHTP status Description A time interval within which similar events are joined
Download Pdf Manuals
Related Search