Bluecoat Proxy Listener
  • 1 Minute to read
  • Contributors
  • Dark
    Light
  • PDF

Bluecoat Proxy Listener

  • Dark
    Light
  • PDF

Bluecoat Proxy listener for Adapter

Bluecoat Proxy sends logs in a chunk i.e. it sends multiple log events in a single packet. So it is difficult to split the single log event from the chunk of data.

To resolve this issue, we have created a listener which will separate the single log event from the chunk of data.

This document will help you to configure the bluecoat listener on the Adapter server.

  • Steps to configure bluecoat listener on the Adapter server.
  • Login into all Adapter servers.
  • Copy the attached listener file on the server at any temporary location like /var/tmp.
  • Copy the bcp.pyc file from the temporary location to the deployment key folder using below command:
$ cp /var/tmp/bcp.pyc /dnif/<deploy_key>/
  • For login into Docker container, follow the below link.

https://dnif.it/docs/guides/tutorials/access-dnif-container-via-ssh.html

  • Go to the location “/usr/src/nm/rtpd-adapter-v6/SyslogListner_TCP/bin” using below command:
$ cd /usr/src/nm/rtpd-adapter-v6/SyslogListener_TCP/bin/
  • Move the bcp.pyc file from deploy_key folder to the recent location using below command:
$ mv /dnif/<deploy_key>/bcp.pyc
  • Create a file bcpex.py at location “/usr/src/nm/rtpd-adapter-v6/SyslogListner_TCP/" by using below command:
$ vim /usr/src/nm/rtpd-adapter-v6/SyslogListner_TCP/bcpex.py
  • Copy the below lines to the file bcpex.py.
    from bcp import execute()
    execute()

  • Save the file using :wq!.

  • Go to the location*"/etc/supervisor/conf.d"* and open a file "ad.conf".

$ vim /etc/supervisor/conf.d/ad.conf
  • Copy the below lines to the file ad.conf after the paragraph program:syslog_listerner_tcp]
[program:bluecoat_tcp]
command=/usr/bin/python -u
/usr/src/nm/rtdp-adapter-v6/SyslogListenerTCP/bcpex.py
process_name=%(program_name)s
autostart=true
autorestart=true
redirect_stderr=true
stdout_logfile=/dnif/%(ENV_DKEY)s/log/BCPLTCP.log
stderr_logfile=/dnif/%(ENV_DKEY)s/log/BCPLTCP.log
stderr_events_enabled=true
directory=/tmp/
stopasgroup=true
stdout_logfile_maxbytes=10MB
  • You can refer the below snapshot for your reference:

image.png

  • Save the file using the command
:wq!.
  • Run the below command.
$ supervisorctl update
  • Check for the bluecoat_tcp service is running or not by using below commands:
$ supervisorctl
  • You can refer the below snapshot for your reference:

image.png

  • Check the Bluecoat proxy access logs on DNIF console.

: Kindly find the below attachment for the listener patch(bcp.pyc).


Was this article helpful?

What's Next