Wechseln zu:Navigation, Suche
Wiki

UTM/CLI/Alertingcenter: Unterschied zwischen den Versionen

Aus Securepoint Wiki
(Die Seite wurde neu angelegt: „{{Set_lang}} {{#vardefine:headerIcon|spicon-utm}} {{:UTM/CLI/Alertingcenter.lang}} </div>{{Select_lang}}{{TOC2}} {{Header|06.2023|new=true| ||{{Menu|Extras|CLI}} }} ---- <li class="list--element__alert list--element__hint em2">{{#var:Parameter ohne Wert}}</li> <br clear=all> {| class="sptable pd5 Einrücken" |- ! {{#var:Befehl}} !! {{#var:Parameter}} !! {{#var:Beschreibung}} !! {{#var:Beispiel}} |- | {{h3|alertingcenter}} {{h4|alertingcenter alerts…“)
 
KKeine Bearbeitungszusammenfassung
 
(Eine dazwischenliegende Version desselben Benutzers wird nicht angezeigt)
Zeile 3: Zeile 3:
{{#vardefine:headerIcon|spicon-utm}}
{{#vardefine:headerIcon|spicon-utm}}
{{:UTM/CLI/Alertingcenter.lang}}
{{:UTM/CLI/Alertingcenter.lang}}
{{var | neu--Benachrichtigungsart http_request
| Neue Benachrichtigungsart für [[#alertingcenter severity|severity]]
| New alert type for [[#alertingcenter severity|severity]]  }}
{{var | neu--alertingcenter test
| Neuer Befehl: [[#alertingcenter test|alertingcenter test]]
| New command: [[#alertingcenter test|alertingcenter test]] }}


</div>{{Select_lang}}{{TOC2}}
</div>{{Select_lang}}{{TOC2}}
{{Header|06.2023|new=true|
{{Header|12.7.0|
||{{Menu|Extras|CLI}}
* {{#var:neu--rwi}}
* {{#var:neu--Benachrichtigungsart http_request}}
* {{#var:neu--alertingcenter test}} <small>v12.6</small>
|[[UTM/CLI/Alertingcenter_06.2023 | 06.2023]]
|{{Menu-UTM|Extras|CLI}}
}}
}}
----
----


<li class="list--element__alert list--element__hint em2">{{#var:Parameter ohne Wert}}</li>


<li class="list--element__alert list--element__hint em2">{{#var:Parameter ohne Wert}} {{code|alertingcenter collectd set plugin "DF" limit_severity_1 "35" limit_severity_2 [ ]}}</li>
<br clear=all>
<br clear=all>


{| class="sptable pd5 Einrücken"  
{| class="sptable2 pd5 Einrücken sortable"  
|-
|-
! {{#var:Befehl}} !! {{#var:Parameter}} !! {{#var:Beschreibung}} !! {{#var:Beispiel}}
! {{#var:Befehl}} !! class="unsortable" | Parameter !! class="unsortable" | {{#var:desc}} !! class="unsortable" | {{#var:Beispiel}}
|-
|-
| {{h3|alertingcenter}} {{h4|alertingcenter alerts}} '''alertingcenter alerts''' get  
| {{h3|alertingcenter}} {{h4|alertingcenter collectd}} '''alertingcenter collectd''' get  
| –
| –
| {{#var:Auflistung aller Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
| {{#var:Ausgabe aller Schwellenwert-gesteuerter Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
 
{| class="sptable"
{| class="sptable"
! {{#var:Wert}} !! {{#var:desc}}
! {{#var:val}} !! {{#var:desc}}
|-
|-
| alert_id || {{#var:alert_id--desc}}
| plugin || {{#var:plugin--desc}}
|-
|-
| severity || {{#var:severity--desc}}
| tolerance_time || {{#var:tolerance_time--desc}}
|-
|-
| time || {{#var:time--desc}}
| severity_1 || {{#var:severity_1--desc}}
|-
|-
| collector || {{#var:collector--desc}}
| severity_2 || {{#var:severity_2--desc}}
|-
|-
| program || {{#var:program--desc}}
| limit_severity_1 || {{#var:limit_severity_1--desc}}
|-
|-
| user_message || {{#var:user_message--desc}}
| limit_severity_2 || {{#var:limit_severity_2--desc}}
|-
| attribute || {{#var:attribute--desc}}
|-
| value || {{#var:value--desc}}
|}
|}
| {{code| alertingcenter alerts get }}
|-


| {{code| alertingcenter collectd get }}
|-
|-
| alertingcenter alerts program get
| rowspan="7" | alertingcenter collectd set
|
|
| {{#var:Auflistung aller Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
| {{#var:alertingcenter collectd set--desc}}  
{| class="sptable"
| rowspan="7" | {{code| alertingcenter collectd set plugin "DF" limit_severity_1 "35" }}
! programm !! programm_translated
|-
|-
| fetchmail || Mail Connector   
| plugin || {{#var:plugin--desc}}
|-
|-
| ctasd || Spamfilter
| limit_serverity_1 || {{#var:limit_severity_1--desc}}
|-      
| collectd || Statistics
|-
|-
| openvpn || SSL-VPN         
| limit_serverity_2 || {{#var:limit_severity_2--desc}}
|-
|-
| squid || HTTP Proxy
| tolerance_time || {{#var:tolerance_time--desc}}
|-      
| spf2bd || IPS Bans
|-  
| spauthd || Authentication
|-
|-
| pppd || Dial-up         
| serverity_1 || {{#var:severity_1--desc}}
|-
|-
| mailscanner || Mailscanner     
| serverity_2 || {{#var:severity_2--desc}}
|-
|-
| tomoyo || Mandatory-Access-Control
 
 
|-
|-
| server || Core Daemon
| {{h4|alertingcenter syslog}} '''alertingcenter syslog''' pattern get
|-      
|
| dyndns_client || Dynamic DNS
| {{#var:alertingcenter syslog pattern get--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
|-     
{| class="sptable2"
| spnetd || Network
! {{#var:val}} !! {{#var:desc}}
|-         
| dbus || DBUS alert
|-
|-
| ulogd || IDS/IPS
| pattern_id || {{#var:pattern_id--desc}}
|-
|-
| policy_greylist_server || Greylist
| pattern_name || {{#var:pattern_name--desc}}
|-
|-
| kryptochef || Krypto Daemon
| group_id || {{#var:group_id--desc}}
|-
|-
| system_cloudbackup_store || Cloud Backup
| pattern_message || {{#var:pattern_message--desc}}
|-
| spupdater || Updater
|-
| new_if_names || Interface Changes         
|}
|}
| {{code| alertingcenter alerts program get }}
| {{code| alertingcenter syslog pattern get }}
|-
|-


|-
|-
| {{h4|alertingcenter collectd}} '''alertingcenter collectd''' get  
| alertingcenter syslog patterngroup get  
| –
| –
| {{#var:Ausgabe aller Schwellenwert-gesteuerter Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
| {{#var:alertingcenter syslog pattergroup get--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}


{| class="sptable"
{| class="sptable2"
! {{#var:Wert}} !! {{#var:desc}}
! {{#var:val}} !! {{#var:desc}}
|-
|-
| plugin || {{#var:plugin--desc}}
| group_id || {{#var:group_id--desc}}
|-
|-
| tolerance_time || {{#var:tolerance_time--desc}}
| group_name || {{#var:group_name--desc}}
|-
|-
| severity_1 || {{#var:severity_1--desc}}
| group_severity || {{#var:group_severity--desc}}
|-
|-
| severity_2 || {{#var:severity_2--desc}}
| group_message || {{#var:group_message--desc}}
|-
| limit_severity_1 || {{#var:limit_severity_1--desc}}
|-
| limit_severity_2 || {{#var:limit_severity_2--desc}}
|}
|}


| {{code| alertingcenter collectd get }}
| {{code| alertingcenter syslog patterngroup get }}
|-
|-


|-
|-
| rowspan="7"| alertingcenter collectd set  
| rowspan="4" | alertingcenter syslog patterngroup set  
|
|
| {{#var:alertingcenter collectd set--desc}}  
| {{#var:alertingcenter syslog patterngroup set--desc}}
| rowspan="7"| {{code| alertingcenter collectd set plugin "DF" limit_severity_1 "35" }}
| rowspan="4" | {{code| alertingcenter syslog patterngroup set group_id 26 group_severity "INFO" language de }}
|-
|-
| plugin || {{#var:plugin--desc}}
| group_id || {{#var:group_id--desc}}
|-
|-
| limit_serverity_1 || {{#var:limit_severity_1--desc}}
| group_severity || {{#var:group_severity--desc}}
|-
|-
| limit_serverity_2 || {{#var:limit_severity_2--desc}}
| language || {{#var:language--desc}}
|-
|-
| tolerance_time || {{#var:tolerance_time--desc}}
 
|-
| serverity_1 || {{#var:severity_1--desc}}
|-
| serverity_2 || {{#var:severity_2--desc}}
|-
|-
| alertingcenter syslog expression get
| –
| {{#var:alertingcenter syslog expression get--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}


{| class="sptable2"
! {{#var:val}} !! {{#var:desc}}
|-
|-
| rowspan="8"| {{h4|alertingcenter report}} '''alertingcenter report''' create
| expr_id || {{#var:expr_id--desc}}
|
| {{#var:alertingcenter report create--desc}}
| rowspan="8"| {{code| alertingcenter report create program "fetchmail" collector "MAILQUEUE" severity "WARNING" alert_id "100" period "all" since_id "0800" alert_limit [ ] }}
|-
|-
| program || {{#var:program--desc}}
| pattern_id || {{#var:pattern_id--desc}}
|-
|-
| collector || {{#var:collector--desc}}
| expr_command || {{#var:expr_command--desc}}
|-
|-
| severity || {{#var:severity--desc}}
| expr_program || {{#var:expr_program--desc}}
|-
|}  
| alert_id || {{#var:alert_id--desc}}
| {{code| alertingcenter syslog expression get }}
|-
| period || {{#var:period--desc}}
|-
| since_id || {{#var:since_id--desc}}
|-
| alert_limit || {{#var:alert_limit--desc}}
|-
|-


Zeile 161: Zeile 143:
| {{h4|alertingcenter severity}} '''alertingcenter severity''' get
| {{h4|alertingcenter severity}} '''alertingcenter severity''' get
| –
| –
| {{#var:alertingcenter severity get--desc}} {{Einblenden|{{#var:Details}}|{{#var:hide}}|true|dezent}}
| {{#var:alertingcenter severity get--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
{| class="sptable"
 
! {{#var:Wert}} !! {{#var:desc}}
{| class="sptable2"
! {{#var:val}} !! {{#var:desc}}
|-
|-
| priority || {{#var:priority--desc}}
| priority || {{#var:priority--desc}}
Zeile 171: Zeile 154:
| emitter || {{#var:emitter--desc}}
| emitter || {{#var:emitter--desc}}
|}
|}
| {{code| alertingcenter severity get }}
| {{code| alertingcenter severity get }}
|-
|-
 
| rowspan="3" | alertingcenter severity set  
|-
| rowspan="3"| alertingcenter severity set  
|
|
| {{#var:alertingcenter severity set--desc}}  
| {{#var:alertingcenter severity set--desc}}  
| rowspan="3"| {{code| alertingcenter severity set severity "DEBUG" emitter "report"  }}
| rowspan="3" | {{code| alertingcenter severity set severity "DEBUG" emitter "report"  }}
|-
|-
| severity || {{#var:severity--desc}}
| severity || {{#var:severity--desc}}
Zeile 184: Zeile 166:
| emitter || {{#var:emitter--desc}}
| emitter || {{#var:emitter--desc}}
|-
|-
 
| {{h4|alertingcenter alerts}} '''alertingcenter alerts''' get
| –
| {{#var:Auflistung aller Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
{| class="sptable2"
! {{#var:val}} !! {{#var:desc}}
|-
| alert_id || {{#var:alert_id--desc}}
|-
|-
| {{h4|alertingcenter syslog}} '''alertingcenter syslog''' expression get
| severity || {{#var:severity--desc}}
|
| {{#var:alertingcenter syslog expression get--desc}} {{Einblenden|{{#var:Details}}|{{#var:hide}}|true|dezent}}
{| class="sptable"
! {{#var:Wert}} !! {{#var:desc}}
|-
|-
| time || {{#var:time--desc}}
|-
|-
| expr_id || {{#var:expr_id--desc}}
| collector || {{#var:collector--desc}}
|-
| program || {{#var:Benachrichtigung}}
|-
|-
| pattern_id || {{#var:pattern_id--desc}}
| user_message || {{#var:user_message--desc}}
|-
|-
| expr_command || {{#var:expr_command--desc}}
| attribute || {{#var:attribute--desc}}
|-
|-
| expr_program || {{#var:expr_program--desc}}
| value || {{#var:value--desc}}
|}  
|}
| {{code| alertingcenter syslog expression get }}
| {{code| alertingcenter alerts get }}
|-
|-


|-
|-
| alertingcenter syslog pattern get  
| alertingcenter alerts program get
| –
| –
| {{#var:alertingcenter syslog pattern get--desc}} {{Einblenden|{{#var:Details}}|{{#var:hide}}|true|dezent}}
| {{#var:Auflistung aller Benachrichtigungen--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
{| class="sptable"
{| class="sptable2"
! {{#var:Wert}} !! {{#var:desc}}
! programm !! programm_translated
|-
| fetchmail || Mail Connector   
|-
| ctasd || Spamfilter
|-       
| collectd || Statistics
|-
| openvpn || SSL-VPN         
|-
| squid || HTTP Proxy
|-     
| spf2bd || IPS Bans
|-   
| spauthd || Authentication
|-
|-
| pattern_id || {{#var:pattern_id--desc}}
| pppd || Dial-up         
|-
|-
| pattern_name || {{#var:pattern_name--desc}}
| mailscanner || Mailscanner     
|-
|-
| group_id || {{#var:group_id--desc}}
| tomoyo || Mandatory-Access-Control
|-
|-
| pattern_message || {{#var:pattern_message--desc}}
| server || Core Daemon
|}
|-      
 
| dyndns_client || Dynamic DNS
| {{code| alertingcenter syslog pattern get }}
|-      
| spnetd || Network
|-         
| dbus || DBUS alert
|-
|-
 
| ulogd || IDS/IPS
|-
|-
| alertingcenter syslog patterngroup get
| policy_greylist_server || Greylist
|
| {{#var:alertingcenter syslog pattergroup get--desc}} {{Einblenden| {{#var:Details}} | {{#var:hide}} |true|dezent}}
 
{| class="sptable"
! {{#var:Wert}} !! {{#var:desc}}
|-
|-
| group_id || {{#var:group_id--desc}}
| kryptochef || Krypto Daemon
|-
|-
| group_name || {{#var:group_name--desc}}
| system_cloudbackup_store || Cloud Backup
|-
|-
| group_severity || {{#var:group_severity--desc}}
| spupdater || Updater
|-
|-
| group_message || {{#var:group_message--desc}}
| new_if_names || Interface Changes         
|}
|}


| {{code| alertingcenter syslog patterngroup get }}
| {{code| alertingcenter alerts program get }}
|-
| rowspan="8" | {{h4|alertingcenter report}} '''alertingcenter report''' create
|
| {{#var:alertingcenter report create--desc}}
| rowspan="8" | {{code| alertingcenter report create program "fetchmail" collector "MAILQUEUE" severity "WARNING" alert_id "100" period "all" since_id "0800" alert_limit [ ] }}
|-
| program || {{#var:Benachrichtigung}}
|-
| collector || {{#var:collector--desc}}
|-
|-
 
| severity || {{#var:severity--desc}}
|-
|-
| rowspan="4"| alertingcenter syslog patterngroup set
| alert_id || {{#var:alert_id--desc}}
|
| {{#var:alertingcenter syslog patterngroup set--desc}}
| rowspan="4"| {{code| alertingcenter syslog patterngroup set group_id 26 group_severity "INFO" language de }}
|-
|-
| group_id || {{#var:group_id--desc}}
| period || {{#var:period--desc}} ''<nowiki>all | today | unit</nowiki>''
|-
|-
| group_severity || {{#var:group_severity--desc}}
| since_id || {{#var:since_id--desc}}
|-
|-
| language || {{#var:language--desc}}
| alert_limit || {{#var:alert_limit--desc}}
|-
|-
| {{h4|alertingcenter test}} '''alertingcenter test'''
| –
| {{#var:alertingcenter test--desc}}
| {{code|alertingcenter test}}
|}
|}

Aktuelle Version vom 7. Juni 2024, 09:36 Uhr



























































De.png
En.png
Fr.png








Syntax des CLI-Befehls alertingcenter
Letzte Anpassung zur Version: 12.7.0
Neu:
notempty
Dieser Artikel bezieht sich auf eine Resellerpreview

06.2023

Aufruf: UTM-IP:Port oder UTM-URL:Port
Port wie unter Netzwerk / Servereinstellungen / Webserver konfiguriert
Default-Port: 11115
z.B.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Extras CLI


  • Sollen keine Werte für einen Parameter übergeben werden, so wird dieser Parameter nicht mit angegeben. Soll ein Parameterwert mit <leer> überschrieben werden, müssen zwei eckige Klammern verwendet werden.
    Beispiel: alertingcenter collectd set plugin "DF" limit_severity_1 "35" limit_severity_2 [ ]


    • Befehl Parameter Beschreibung Beispiel

    alertingcenter

    alertingcenter collectd

    alertingcenter collectd get     		Ausgabe aller Schwellenwert-gesteuerter Benachrichtigungen
    Wert Beschreibung
    plugin Name des überwachten Systems
    tolerance_time Zeit der tolerierten Überwachung in Minuten
    severity_1 Erste Benachrichtigungsstufe
    severity_2 Zweite Benachrichtigungsstufe
    limit_severity_1 Erster Schwellenwert
    limit_severity_2 Zweiter Schwellenwert
    		alertingcenter collectd get
    alertingcenter collectd set Festlegen der Werte für Schwellenwert gesteuerten Benachrichtigung alertingcenter collectd set plugin "DF" limit_severity_1 "35"
    plugin Name des überwachten Systems
    limit_serverity_1 Erster Schwellenwert
    limit_serverity_2 Zweiter Schwellenwert
    tolerance_time Zeit der tolerierten Überwachung in Minuten
    serverity_1 Erste Benachrichtigungsstufe
    serverity_2 Zweite Benachrichtigungsstufe

    alertingcenter syslog

    alertingcenter syslog pattern get     		Auflistung aller Syslog Dienste
    Wert Beschreibung
    pattern_id ID des Dienstes
    pattern_name Name des Dienstes
    group_id ID der Gruppe
    pattern_message Benachrichtigung des Dienstes
    		alertingcenter syslog pattern get
    alertingcenter syslog patterngroup get Auflistung aller Dienstgruppen
    Wert Beschreibung
    group_id ID der Gruppe
    group_name Name der Gruppe
    group_severity Zugewiesene Schwellenwert-gesteuerte Benachrichtigung der Gruppe
    group_message Benachrichtigung der Gruppe
    		alertingcenter syslog patterngroup get
    alertingcenter syslog patterngroup set Erstellung einer neuen Dienstgruppe alertingcenter syslog patterngroup set group_id 26 group_severity "INFO" language de
    group_id ID der Gruppe
    group_severity Zugewiesene Schwellenwert-gesteuerte Benachrichtigung der Gruppe
    language Sprache der Dienstgruppe. Deutsch: de, Englisch: en
    alertingcenter syslog expression get Auflistung aller Syslog Ausdrücke
    Wert Beschreibung
    expr_id ID des Ausdrucks
    pattern_id ID des Dienstes
    expr_command Inhalt des Ausdrucks
    expr_program Zugewiesene Benachrichtigung
    		alertingcenter syslog expression get

    alertingcenter severity

    alertingcenter severity get     		Auflistung aller Schwellenwert-gesteuerten Benachrichtigungen
    Wert Beschreibung
    priority Prioritätswert (0 - 9) der Schwellenwert-gesteuerten Benachrichtigungen
    severity Name der Schwellenwert-gesteuerten Benachrichtigungen
    emitter Zugewiesene Benachrichtigungsart (report, fast_mail oder notempty
    Neu ab v12.7.0
     http_request)
    		alertingcenter severity get
    alertingcenter severity set Erstellt eine neue Schwellenwert-gesteuerte Benachrichtigung alertingcenter severity set severity "DEBUG" emitter "report"
    severity Name der Schwellenwert-gesteuerten Benachrichtigungen
    emitter Zugewiesene Benachrichtigungsart (report, fast_mail oder notempty
    Neu ab v12.7.0
     http_request)

    alertingcenter alerts

    alertingcenter alerts get     		Auflistung aller Benachrichtigungen
    Wert Beschreibung
    alert_id ID des Alarms
    severity Name der Schwellenwert-gesteuerten Benachrichtigungen
    time Einrichtungszeit
    collector Schwellenwert-gesteuerte Benachrichtigung
    program Benachrichtigung
    user_message Nachricht an dem Empfänger
    attribute Parameter, die zugesendet werden
    value Werte der zugesendeten Parameter
    		alertingcenter alerts get
    alertingcenter alerts program get Auflistung aller Benachrichtigungen
    programm programm_translated
    fetchmail Mail Connector
    ctasd Spamfilter
    collectd Statistics
    openvpn SSL-VPN
    squid HTTP Proxy
    spf2bd IPS Bans
    spauthd Authentication
    pppd Dial-up
    mailscanner Mailscanner
    tomoyo Mandatory-Access-Control
    server Core Daemon
    dyndns_client Dynamic DNS
    spnetd Network
    dbus DBUS alert
    ulogd IDS/IPS
    policy_greylist_server Greylist
    kryptochef Krypto Daemon
    system_cloudbackup_store Cloud Backup
    spupdater Updater
    new_if_names Interface Changes
    		alertingcenter alerts program get

    alertingcenter report

    alertingcenter report create     		Erstellt eine neue regelmäßige Benachrichtigung alertingcenter report create program "fetchmail" collector "MAILQUEUE" severity "WARNING" alert_id "100" period "all" since_id "0800" alert_limit [ ]
    program Benachrichtigung
    collector Schwellenwert-gesteuerte Benachrichtigung
    severity Name der Schwellenwert-gesteuerten Benachrichtigungen
    alert_id ID des Alarms
    period Zeitrahmen der zu sendenden Nachricht all | today | unit
    since_id Uhrzeit der Zustellung der Nachricht
    alert_limit Maximale Anzahl der Alarmnachrichten

    alertingcenter test

    alertingcenter test     		Erwirkt einen Test Alert, der anschließend auslesbar sein sollte (alertingcenter alerts get) alertingcenter test
    Abgerufen von „https://wiki.securepoint.de/index.php?title=UTM/CLI/Alertingcenter&oldid=91922