Summary of the content on the page No. 1
®
Blue Coat Systems
™
SG Appliance
Volume 9: Managing the Blue Coat SG Appliance
SGOS Version 5.2.2
Summary of the content on the page No. 2
Contact Information Blue Coat Systems Inc. 420 North Mary Ave Sunnyvale, CA 94085-4121 http://www.bluecoat.com/support/contact.html bcs.info@bluecoat.com http://www.bluecoat.com For concerns or feedback about the documentation: documentation@bluecoat.com Copyright© 1999-2007 Blue Coat Systems, Inc. All rights reserved worldwide. No part of this document may be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any e
Summary of the content on the page No. 3
Contents Contact Information Chapter 1: About Managing the SG Appliance Document Conventions......................................................................................................................................7 Chapter 2: Monitoring the SG Appliance Using Director to Manage SG Systems ............................................................................................................9 Setting up Director and SG Appliance Communication.....................................
Summary of the content on the page No. 4
Volume 9: Managing the Blue Coat SG Appliance Restore-Defaults......................................................................................................................................... 34 Factory-Defaults......................................................................................................................................... 35 Keep-Console................................................................................................................................
Summary of the content on the page No. 5
Contents Viewing Traffic History ................................................................................................................................... 65 Understanding Chart Data ....................................................................................................................... 67 Refreshing the Data ................................................................................................................................... 67 About Bypassed Bytes.........
Summary of the content on the page No. 6
Volume 9: Managing the Blue Coat SG Appliance vi
Summary of the content on the page No. 7
Chapter 1: About Managing the SG Appliance Volume 9: Managing the Blue Coat SG Appliance describes how to monitor the SG appliance with SNMP (a brief introduction to Director is provided), event logging, or health monitoring. It also describes common maintenance and troubleshooting tasks. Discussed in this volume: ❐ Chapter 2: "Monitoring the SG Appliance" ❐ Chapter 3: "Maintaining the SG Appliance" ❐ Chapter 4: "Diagnostics" ❐ Chapter 5: "Statistics" ❐ Appendix A: "Glossary" Document Conventi
Summary of the content on the page No. 8
Volume 9: Managing the Blue Coat SG Appliance 8
Summary of the content on the page No. 9
Chapter 2: Monitoring the SG Appliance This chapter describes the methods you can use to monitor your SG appliances, including event logging, SNMP, and health monitoring. A brief introduction to Director is also provided. This chapter contains the following sections: ❐ “Using Director to Manage SG Systems” on page 9 ❐ “Monitoring the System and Disks” on page 12 ❐ “Setting Up Event Logging and Notification” on page 15 ❐ “Configuring SNMP” on page 20 ❐ “Configuring Health Monitoring” on pa
Summary of the content on the page No. 10
Volume 9: Managing the Blue Coat SG Appliance The Blue Coat appliance certificate is an X.509 certificate that contains the Note: hardware serial number of a specific SG device as the Common Name (CN) in the subject field. Refer to the device authentication information in Volume 5: Advanced Networking for more information about appliance certificates. Director Registration Requirements To register the appliance with Director, the SSH-Console service must be enabled. Director registration wil
Summary of the content on the page No. 11
Chapter 2: Monitoring the SG Appliance Setting up Director and SG Appliance Communication Director and the SG appliance use SSHv2 as the default communication mode. SSHv1 is not supported. For Director to successfully manage multiple appliances, it must be able to communicate with an appliance using SSH/RSA and the Director’s public key must be configured on each system that Director manages. When doing initial setup of the SG appliance from Director, Director connects to the device using th
Summary of the content on the page No. 12
Volume 9: Managing the Blue Coat SG Appliance To delete a key: SGOS#(config sshd) delete director-client-key clientID Monitoring the System and Disks The System and disks page in the Management Console has the following tabs: ❐ Summary Provides configuration information and a general status information about the device. ❐ Tasks Enables you to perform systems tasks, such as restarting the system and clearing the DNS or object cache. See Chapter 3: "Maintaining the SG Appliance" for information
Summary of the content on the page No. 13
Chapter 2: Monitoring the SG Appliance Viewing System Environment Sensors The icons on the Environment tab are green when the related hardware environment is within acceptable parameters, and red when an out-of-tolerance condition exists. If an icon is red, click View Sensors to view detailed sensor statistics to learn more about the out-of-tolerance condition. Note: The health monitoring metrics on the Statistics > Health page also show the state of environmental sensors. See “Configuring H
Summary of the content on the page No. 14
Volume 9: Managing the Blue Coat SG Appliance Viewing Disk Status You can view the status of each of the disks in the system and take a disk offline if needed. To view disk status or take a disk offline: 1. Select Maintenance > System and disks > Environment. The default view provides information about the disk in slot 1. Note: The name and appearance of this tab differs, depending on the range of disks available to the SG appliance model you use. 2. Select the disk to view or to take offline b
Summary of the content on the page No. 15
Chapter 2: Monitoring the SG Appliance Viewing SSL Accelerator Card Information Selecting the Maintenance > System and disks > SSL Cards tab allows you to view information about any SSL accelerator cards in the system. If no accelerator cards are installed, that information is stated on the pane. To view SSL accelerator cards: Note: You cannot view statistics about SSL accelerator cards through the CLI. Select Maintenance > System and disks > SSL Cards. Setting Up Event Logging and Notificatio
Summary of the content on the page No. 16
Volume 9: Managing the Blue Coat SG Appliance Related CLI Commands for Setting the Event Logging Level SGOS#(config event-log) level {severe | configuration | policy | informational | verbose} Table 2-1. Event Logging Level Options severe Writes only severe error messages to the event log. configuration Writes severe and configuration change error messages to the event log. policy Writes severe, configuration change, and policy event error messages to the event log. informational Writes severe
Summary of the content on the page No. 17
Chapter 2: Monitoring the SG Appliance Note: The SG appliance must know the host name or IP address of your SMTP mail gateway to mail event messages to the e-mail address(es) you have entered. If you do not have access to an SMTP gateway, you can use the Blue Coat default SMTP gateway to send event messages directly to Blue Coat. The Blue Coat SMTP gateway only sends mail to Blue Coat. It will not forward mail to other domains. To enable event notifications: 1. Select Maintenance > Event Log
Summary of the content on the page No. 18
Volume 9: Managing the Blue Coat SG Appliance To enable syslog monitoring: 1. Select Maintenance > Event Logging > Syslog. 2. In the Loghost field, enter the domain name or IP address of your loghost server. 3. Select Enable Syslog. 4. Click Apply. Related CLI Commands to Enable Syslog Monitoring SGOS#(config event-log) syslog {disable | enable} Viewing Event Log Configuration and Content You can view the system event log, either in its entirety or selected portions of it. Viewing the Event Lo
Summary of the content on the page No. 19
Chapter 2: Monitoring the SG Appliance Syslog notification: disabled Syslog facility: daemon Event recipients: SMTP gateway: mail.heartbeat.bluecoat.com Viewing the Event Log Contents Again, you can view the event log contents from the show command or from the event-log configuration mode. The syntax for viewing the event log contents is SGOS# show event-log -or- SGOS# (config event-log) view [start [YYYY-mm-dd] [HH:MM:SS]] [end [YYYY-mm-dd] [HH:MM:SS]] [regex regex | substring string] Pressi
Summary of the content on the page No. 20
Volume 9: Managing the Blue Coat SG Appliance Example SGOS# show event-log start "2004-10-22 9:00:00" end "2004-10-22 9:15:00" 2004-10-22 09:00:02+00:00UTC "Snapshot sysinfo_stats has fetched / sysinfo-stats " 0 2D0006:96 ../Snapshot_worker.cpp:183 2004-10-22 09:05:49+00:00UTC "NTP: Periodic query of server ntp.bluecoat.com, system clock is 0 seconds 682 ms fast compared to NTP time. Updated system clock. " 0 90000:1 ../ntp.cpp:631 Configuring SNMP You can view an SG appliance using a