MISP / misp-dashboard

A live dashboard for a real-time overview of threat intelligence from MISP instances
GNU Affero General Public License v3.0
194 stars 66 forks source link

Diagnostic tool - find the faulty link #87

Open mokaddem opened 5 years ago

mokaddem commented 5 years ago

A diagnostic tool which can be use to debug or pinpoint a connection problem.

mokaddem commented 5 years ago

Some guidelines in the meantime:

  1. MISP
    • Ensure that ZMQ is installed and enabled with the correct settings
  2. MISP ZMQ
    • You can use MISP/tools/misp-zmq/sub.py which will subscribe to the ZMQ and print the data
  3. ZMQ_subscriber
    • You can change the logging level from logging.INFO to logging.DEBUG and look in the logs for the string Pushed: *
    • Or add a print statement in the put_in_redis_list function
  4. ZMQ_dispatcher
    • Look in the logs for the string Handling *
  5. Server (Flask) and Browser (live Dashboard)
    • Open the Web developer Network tab in your browser and look for the url /_logs with Content-Type: text/event-stream;

If you are using the CIRCL VM, you can find logs in $DASH_HOME/logs/ and /var/log/apache2/misp-dashboard.*