IBM Support

IBM MustGather: Collecting data for Guardium Appliance

Question & Answer


Question

If there is a problem with the Guardium Collector, Aggregator or Central Manager, what basic information must be gathered before contacting IBM Software Support?

Answer

Tab navigation

There are some simple show commands that can be run by user cli that should be gathered and sent to Support whenever a PMR is logged for a VERSION 7 Guardium Appliance

  1. Open a putty session (or similar) to the Collector, Aggregator or Central Manager of concern.

    It is preferred if a log of the session can be made whilst gathering the data
    1. For example using putty :
    2. Right click in the top of the putty window to get Putty Reconfiguration
    3. Pick Session Logging
    4. All session output
    5. Choose a log file to save the session .. ( eg C:\putty\putty.log )
    6. Click Apply

  2. Log in as user cli
  3. Paste the following show commands into the cli prompt.

    NOTE - All of the commands can be pasted in one go.

    The commands listed are a subset of the available show commands and will provide the basic environment information that Technical Support will need before progressing with a PMR.

    Each command produces output to the screen (and session log if requested).

    show buffer
    show build
    show firewall
    show gui all
    show ignored port list
    show inspection-engines all
    show installed security policy
    show fail-policy
    show license
    show max_audit_reporting
    show merge_period
    show monitor buffer usage interval
    show network arp-table
    show network interface all
    show network macs
    show network resolver all
    show purge objects age
    show system fullname
    show system netfilter_buffer_size
    show system patch available
    show system patch installed
    show unit type
    show user expiration

  4. Send the resulting output to IBM Support in one of the following methods:
    • grab the resultant session log file (preferred method), or
    • cut and paste the resultant data from the session into a simple text file

  5. Produce a system static report:
    1. As user cli run the diag command .
    2. Enter the GUI user admin password when prompted
    3. Choose System Static Reports (Option 2) and allow this to run to completion
    4. This will produce a file called running_static.log in the /guard/diag/current directory
    Follow the instructions in this technote to grab the running_static.log file

Send all the gathered information via email or upload to ECUREP using - for example - the standard data upload specifying the PMR number and file to upload.

[{"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"--","Platform":[{"code":"PF016","label":"Linux"}],"Version":"8.2;8.0;7.0;8.0.1","Edition":"All Editions","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
16 June 2018

UID

swg21579853

Page Feedback