Visitors

HOW TO: Increase or decrese dubugging level in Trend Micro Deep Security Virtual Appliance DSVA

The default debug log level in Trend Micro DSVA is 5. To check current debug log level run this command:

grep LOG_EMERG /var/log/syslog

If DSVA was restarted recently and debug level has not been reconfigured since last reboot, you will not get any LOG_EMERG results.  The only way to check current debug log level is to change it up or down and then run grep command again.

To increase or decrease debug logs execute the following commands via ssh or the console:

  • To increase debug logs:
    killall –USR1 ds_am (increments +1, up to level 8)
  • To decrease debug logs:
    killall –USR2 ds_am (decrements -1, down to level 0)
root@DSVA001:~# grep LOG_EMERG /var/log/syslog
 root@DSVA001:~# killall -USR1 ds_am
 root@DSVA001:~#
 Message from syslogd@DSVA001 at Oct 11 11:05:51 ...
  vmpd[19896]: [LOG_EMERG][main.cpp:555] debug_level changed: 5->6

root@DSVA001:~# grep LOG_EMERG /var/log/syslog
 Oct 11 11:05:51 DSVA001 vmpd[19896]: [LOG_EMERG][main.cpp:555] debug_level changed: 5->6

root@DSVA001:~# killall -USR2 ds_am
 root@DSVA001:~#
 Message from syslogd@DSVA001 at Oct 11 11:06:05 ...
  vmpd[19896]: [LOG_EMERG][main.cpp:562] debug_level changed: 6->5

root@DSVA001:~# grep LOG_EMERG /var/log/syslog
 Oct 11 11:05:51 DSVA001 vmpd[19896]: [LOG_EMERG][main.cpp:555] debug_level changed: 5->6
Oct 11 11:06:05 DSVA001 vmpd[19896]: [LOG_EMERG][main.cpp:562] debug_level changed: 6->5

Trend Micro recommends increasing debug level to 6 to allow for more debugging. Reset the debug level to 5 for normal operations.

To enable SSH on Deep Security Virtual Appliance (DSVA)

root@DSVA001:~# ssh-server start
Starting Dropbear SSH server: dropbear
root@DSVA-pdc1vex001:~# ssh-server status
ssh running

If you would like ssh service to start with DSVA please follow these instructions: Enabling persistent SSH service on Deep Security Virtual Appliance (DSVA)

Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

  

  

  

This site uses Akismet to reduce spam. Learn how your comment data is processed.