What is included in the Malware Analysis Appliance Support package

book

Article ID: 168711

calendar_today

Updated On:

Products

Malware Analysis Software - MA

Issue/Introduction

Resolution

MAA Syslog tarball (as generated by MAA 4.2.5)

This list does not cover all problem areas nor does it point out all files that are inside the package.  It is intended to guide your search for information you are most likely looking for

Hardware:
/opt/mag2/VERSION (MAA version number)
/var/log/dmesg
/etc/mag2/mag2.conf (serial number)
 
iVM Task processing:
/var/log/syslog
/opt/mag2/log/start-iVM-xx.log (xx is the iVMnumber)
/opt/mag2/log/rapi-x.log (x RAPI instance number)
/opt/mag2/log/mq-consume-events-xx.log (xx is iVM number)
/opt/mag2/log/df-task-logger*.log (if task logging is enabled)
 
RAPI:
/opt/mag2/log/rapi*.log
/var/log/supervisor/rapi*.log (stderr/stdout)
/tmp/debug-<date.time>/rapi_info.log (version info)
 
Networking:
/opt/mag2/log/netcfg.log
/tmp/debug-<date-time>/net.log
 
Running Processes:
/tmp/debug-<date-time>/sysinfo.log (includes supervisorctl status and ps aux output)
 
iVMs and mVMs:
/opt/mag2/log/ivmcontrold.log
/opt/mag2/log/start-ivm-xx.log (xx is iVM number)
/opt/mag2/log/start-drd-xx-log (xx is mVM number)
/opt/mag2/log/watchdog-ivm.log
/opt/mag2/log/ivmdhcp.log
/var/log/syslog
 
Virtualbox:
/tmp/debug-<date-time>/vbox.log  (list of iVMs)
/opt/mag2/log/vtopd.log
/var/log/syslog
 
Updates:
/var/log/syslog
/opt/mag2/log/update.log
/opt/mag2/log/updater.log
/opt/mag2/log/updater-daemon.log
/opt/mag2/log/update<hash>.log (install log for an update)
 
Cleanup:
/opt/mag2/log/cleanup.log
 
Configuration:
/opt/mag2/log/df-config-mgr.log (config changes)
/etc/mag2/mag2.conf
/tmp/debug<date-time>/config.log (df-config-mgr --dump output available in 4.2.7 in this file)
 
System health:
/opt/mag2/log/health.log
/etc/mag2/health.conf
 
Disk utilization:
/tmp/debug-<date-time>/sysinfo.log