search

ajrockefeller / openfpc

Automatically exported from code.google.com/p/openfpc
0 stars 0 forks source link

Unable to extract pcap using the OpenFPC Web GUI #37

Open GoogleCodeExporter opened 8 years ago

GoogleCodeExporter commented 8 years ago 
What steps will reproduce the problem?
1. Using the OpenFPC WebInterface
2. Attempts to use the ExtractPcap feature
3. Attempts to use the Session search feature

What is the expected output? What do you see instead?
Expected output is to have the pcap downloaded.

Instead, received the below error
Result: 0
Error: Unable to create socket to server localhost on TCP:4242
Size: 0
Shell result: 0,fetch,0,0,0,0,0,Unable to create socket to server localhost on 
TCP:4242 

What version of the product are you using? On what operating system?
Lastest feature released plus all the rev updates. On CentOS 
2.6.32-279.22.1.el6.i686

Please provide any additional information below.
Hi. I'm not sure if this is the place to post my question. If it isn't, please 
accept my apology and remove the post. I'm a new user and have been trying 
unsuccessfully to get the OpenFPC web GUI to work. I have reinstalled a couple 
time and run into the same issue. Please assist if possible. Thanks very much 
in advance.

I followed the install instruction closely. Was able to extract the pcap using 
CLI:
openfpc-client --dst-addr=[ipaddress] -w /var/log/test --last 600

The status shows
###############################################################################
[*] OpenFPC instance openfpc-default.conf
 - NODENAME: Default_Node
 - DESCRIPTION: "An OpenFPC node. www.openfpc.org"
 - STATUS : ENABLED
 - PORT: 4242
 - INTERFACE: eth1
 - FULL PACKET CAPTURE: ENABLED
 - PACKET STORE: /var/tmp/openfpc/pcap
 - SESSION DATA SEARCH: ENABLED
 - SESSION DATABASE NAME: openfpc
 - SESSION LAG: 0
 - SESSION INSERT FAIL: 4
Daemonlogger (Default_Node) :                                           Running
OpenFPC Queue Daemon (Default_Node):                                    Running
OpenFPC Connection Tracker (Default_Node) :                             Running
OpenFPC Connection Uploader (Default_Node) :                            Running

The httpd error log shows
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  A 
session had already been started - ignoring session_start() in 
/usr/share/openfpc/www/includes/functions.php on line 572
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: auth in /usr/share/openfpc/www/includes/functions.php on line 
574
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: op in /usr/share/openfpc/www/includes/functions.php on line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: ipv in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: cxtid in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: sessp in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: srcip in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: dstip in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: srcport in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: dstport in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: start_date in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Warning:  date(): 
It is not safe to rely on the system's timezone settings. You are *required* to 
use the date.timezone setting or the date_default_timezone_set() function. I$
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: end_date in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Warning:  date(): 
It is not safe to rely on the system's timezone settings. You are *required* to 
use the date.timezone setting or the date_default_timezone_set() function. I$
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: protocol in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: logline in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: comment in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: bpf in /usr/share/openfpc/www/includes/functions.php on line 
443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: op in /usr/share/openfpc/www/includes/functions.php on line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: username in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined index: password in /usr/share/openfpc/www/includes/functions.php on 
line 443
[Mon Mar 11 10:55:55 2013] [error] [client 155.19.99.118] PHP Notice:  
Undefined variable: out in /usr/share/openfpc/www/login.php on line 60

Original issue reported on code.google.com by Ngoj...@gmail.com on 11 Mar 2013 at 3:20

GoogleCodeExporter commented 8 years ago 
I had a similar issue and the fix was to copy /usr/sbin/mergecap over to 
/usr/bin.  Give that a shot.

Original comment by jeff.l.r...@gmail.com on 29 Mar 2013 at 6:56

GoogleCodeExporter commented 8 years ago 
I'm experiencing this same issue.   Coping mergecap fixed the problem until 
reboot now the issue is back.

Original comment by lostz...@gmail.com on 11 Feb 2014 at 6:39

GoogleCodeExporter commented 8 years ago 
I solved this issue by disabling selinux on redhat 6.5

Original comment by lostz...@gmail.com on 6 Mar 2014 at 4:17