Sarg não Gera Relatórios [RESOLVIDO]

1. Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 25/06/2010 - 08:37h

bom dia galera
seguinte
o sarg que eu tenho em um cliente num firewall que montei no kurumin 7 mesmo tava funcionando blz, e de repente parou de gerar relatórios e simplismente agora está gerando tudo em branco aí pensei, vou atualizar então pra versão + nova pra ver se resolve, só que antes, desinstalei e instalei novamente o mesmo versão 2.2.1, que é o que o próprio kurumin instala, não resolvendo, aí baixei do site oficial a versão 2.2.7.1 que está instalada e é a ultima versão que saiu do sarg mesmo assim continua o problema
procurei aqui no forum e achei um igual o meu problema só que não falou se foi resolvido ou não, então resumindo, se alguem tiver a paciencia de ler tudo isso eu agradeço



segue meu sarg.conf

# sarg.conf
#
# TAG: language
# Available languages:
# Bulgarian_windows1251
# Catalan
# Czech
# Czech_UTF8
# Dutch
# English
# French
# German
# Greek
# Hungarian
# Indonesian
# Italian
# Japanese
# Latvian
# Polish
# Portuguese
# Romanian
# Russian_koi8
# Russian_UTF-8
# Russian_windows1251
# Serbian
# Slovak
# Spanish
# Turkish
#
language Portuguese

# TAG: access_log file
# Where is the access.log file
# sarg -l file
#
#access_log /usr/local/squid/var/logs/access.log
access_log /var/log/squid/access.log

# TAG: graphs yes|no
# Use graphics where is possible.
# graph_days_bytes_bar_color blue|green|yellow|orange|brown|red
#
#graphs yes
#graph_days_bytes_bar_color orange

# TAG: graph_font
# The full path to the TTF font file to use to create the graphs. It is required
# if graphs is set to yes.
#
#graph_font /usr/share/fonts/truetype/ttf-dejavu/DejaVuSans.ttf

# TAG: title
# Especify the title for html page.
#
title "Relatorio Diario de Acessos"

# TAG: font_face
# Especify the font for html page.
#
font_face Tahoma,Verdana,Arial

# TAG: header_color
# Especify the header color
#
header_color darkblue

# TAG: header_bgcolor
# Especify the header bgcolor
#
header_bgcolor blanchedalmond

# TAG: font_size
# Especify the text font size
#
font_size 9px

# TAG: header_font_size
# Especify the header font size
#
header_font_size 9px

# TAG: title_font_size
# Especify the title font size
#
title_font_size 11px

# TAG: background_color
# TAG: background_color
# Html page background color
#
background_color white

# TAG: text_color
# Html page text color
#
text_color #000000

# TAG: text_bgcolor
# Html page text background color
#
#text_bgcolor lavender

# TAG: title_color
# Html page title color
#
#title_color green

# TAG: logo_image
# Html page logo.
#
#logo_image none

# TAG: logo_text
# Html page logo text.
#
#logo_text ""

# TAG: logo_text_color
# Html page logo texti color.
#
#logo_text_color #000000

# TAG: logo_image_size
# Html page logo image size.
# width height
#
#image_size 80 45

# TAG: background_image
# Html page background image
#
#background_image none

# TAG: password
# User password file used by Squid authentication scheme
# If used, generate reports just for that users.
#
#password none

# TAG: temporary_dir
# Temporary directory name for work files
# sarg -w dir
#
temporary_dir /tmp

# TAG: output_dir
# The reports will be saved in that directory
# sarg -o dir
#
output_dir /var/www/squid-reports

# TAG: output_email
# Email address to send the reports. If you use this tag, no html reports will be generated.
# sarg -e email
#
#output_email none

# TAG: resolve_ip yes/no
# Convert ip address to dns name
# sarg -n
#resolve_ip no

# TAG: user_ip yes/no
# Use Ip Address instead userid in reports.
# sarg -p
#user_ip no

# TAG: topuser_sort_field field normal/reverse
# Sort field for the Topuser Report.
# Allowed fields: USER CONNECT BYTES TIME
#
topuser_sort_field BYTES reverse

# TAG: user_sort_field field normal/reverse
# Sort field for the User Report.
# Allowed fields: SITE CONNECT BYTES TIME
#
user_sort_field BYTES reverse

# TAG: exclude_users file
# users within the file will be excluded from reports.
# you can use indexonly to have only index.html file.
#
exclude_users /usr/local/share/sarg

# TAG: exclude_hosts file
# Hosts, domains or subnets will be excluded from reports.
#
# Eg.: 192.168.10.10 - exclude ip address only
# 192.168.10.0/24 - exclude full C class
# s1.acme.foo - exclude hostname only
# *.acme.foo - exclude full domain name
#
exclude_hosts /usr/local/share/sarg

# TAG: useragent_log file
# useragent.log file patch to generate useragent report.
#
#useragent_log none

# TAG: date_format
# Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)
#
date_format e

# TAG: per_user_limit file MB
# Saves userid on file if download exceed n MB.
# This option allow you to disable user access if user exceed a download limit.
#
#per_user_limit none

# TAG: lastlog n
# How many reports files must be keept in reports directory.
# The oldest report file will be automatically removed.
# 0 - no limit.
#

# TAG: remove_temp_files yes
# Remove temporary files: geral, usuarios, top, periodo from root report directory.
#
remove_temp_files yes

# TAG: index yes|no|only
# Generate the main index.html.
# only - generate only the main index.html
#
index yes

# TAG: index_tree date|file
# How to generate the index.
#
#index_tree file

# TAG: overwrite_report yes|no
# yes - if report date already exist then will be overwrited.
# no - if report date already exist then will be renamed to filename.n, filename.n+1
#
overwrite_report yes

# TAG: records_without_userid ignore|ip|everybody
# What can I do with records without user id (no authentication) in access.log file ?
#
# ignore - This record will be ignored.
# ip - Use ip address instead. (default)
# everybody - Use "everybody" instead.
#
records_without_userid ignore

# TAG: use_comma no|yes
# Use comma instead point in reports.
# Eg.: use_comma yes => 23,450,110
# use_comma no => 23.450.110
#
use_comma no

# TAG: mail_utility mail|mailx
# Mail command to use to send reports via SMTP
#
#mail_utility mailx

# TAG: topsites_num n
# How many sites in topsites report.
#
topsites_num 100

# TAG: topsites_sort_order CONNECT|BYTES A|D
# Sort for topsites report, where A=Ascendent, D=Descendent
#
topsites_sort_order BYTES D

# TAG: index_sort_order A/D
# Sort for index.html, where A=Ascendent, D=Descendent
#
#index_sort_order D

# TAG: exclude_codes file
# Ignore records with these codes. Eg.: NONE/400
#
exclude_codes /usr/local/share/sarg/exclude.codes

# TAG: replace_index string
# Replace "index.html" in the main index file with this string
# If null "index.html" is used
#
#replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?>

# TAG: max_elapsed milliseconds
# If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.
# Use 0 for no checking
#
max_elapsed 28800000
# 8 Hours

# TAG: report_type type
# What kind of reports to generate.
# topusers - users, sites, times, bytes, connects, links to accessed sites, etc
# topsites - site, connect and bytes report
# sites_users - users and sites report
# users_sites - accessed sites by the user report
# date_time - bytes used per day and hour report
# denied - denied sites with full URL report
# auth_failures - autentication failures report
# site_user_time_date - sites, dates, times and bytes report
# downloads - downloads per user report
#
# Eg.: report_type topsites denied
#
report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads

# TAG: usertab filename
# You can change the "userid" or the "ip address" to be a real user name on the reports.
# Table syntax:
# userid name or ip address name
# Eg:
# SirIsaac Isaac Newton
# vinci Leonardo da Vinci
# 192.168.10.1 Karol Wojtyla
#
# Each line must be terminated with '\n'
#
#usertab none

# TAG: long_url yes|no
# If yes, the full url is showed in report.
# If no, only the site will be showed
#
# YES option generate very big sort files and reports.
#
long_url no

# TAG: date_time_by bytes|elap
# Date/Time reports will use bytes or elapsed time?
#
#date_time_by elap

# TAG: charset name
# ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)
# graphic character sets for writing in alphabetic languages
# You can use the following charsets:
# Latin1 - West European
# Latin2 - East European
# Latin3 - South European
# Latin4 - North European
# Cyrillic
# Arabic
# Greek
# Hebrew
# Latin5 - Turkish
# Latin6
# Windows-1251
# Japan
# Koi8-r
# UTF-8
#
#charset Latin1

# TAG: user_invalid_char "&/"
# Records that contain invalid characters in userid will be ignored by Sarg.
#
#user_invalid_char "&/"

# TAG: privacy yes|no
# privacy_string "***.***.***.***"
# privacy_string_color blue
# In some countries the sysadm cannot see the visited sites by a restrictive law.
# Using privacy yes the visited url will be changes by privacy_string and the link
# will be removed from reports.
#
#privacy no
#privacy_string "***.***.***.***"
#privacy_string_color blue

# TAG: include_users "user1:user2:...:usern"
# Reports will be generated only for listed users.
#
#include_users none

# TAG: exclude_string "string1:string2:...:stringn"
# Records from access.log file that contain one of listed strings will be ignored.
#
#exclude_strings /usr/local/share/sarg/exclude.strings

# TAG: show_successful_message yes|no
# Shows "Successful report generated on dir" at end of process.
#
show_successful_message no

# TAG: show_read_statistics yes|no
# Shows some reading statistics.
#
#show_read_statistics yes

# TAG: topuser_fields
# Which fields must be in Topuser report.
#
topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE

# TAG: user_report_fields
# Which fields must be in User report.
#
#user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE

# TAG: bytes_in_sites_users_report yes|no
# Bytes field must be in Site & Users Report ?
#
#bytes_in_sites_users_report no

# TAG: topuser_num n
# How many users in topsites report. 0 = no limit
#
topuser_num 0

# TAG: datafile file
# Save the report results in a file to populate some database
#
#datafile none

# TAG: datafile_delimiter ";"
# ascii character to use as a field separator in datafile
#
#datafile_delimiter ";"

# TAG: datafile_fields all
# Which data fields must be in datafile
# user;date;time;url;connect;bytes;in_cache;out_cach e;elapsed
#
#datafile_fields user;date;time;url;connect;bytes;in_cache;out_cach e;elapsed

# TAG: datafile_url ip|name
# Saves the URL as ip or name in datafile
#
#datafile ip

# TAG: weekdays
# The weekdays to take account ( Sunday->0, Saturday->6 )
# Example:
#weekdays 1-3,5
# Default:
#weekdays 0-6

# TAG: hours
# The hours to take account
# Example:
#hours 7-12,14,16,18-20
# Default:
#hours 0-23

# TAG: dansguardian_conf file
# DansGuardian.conf file path
# Generate reports from DansGuardian logs.
# Use 'none' to disable it.
# dansguardian_conf /usr/dansguardian/dansguardian.conf
#
#dansguardian_conf none

# TAG: dansguardian_ignore_date on|off
# 'on' must use the record even the date range is different from the used in squid access.log file.
# 'off' must use the record only if the date range is in the irange used in squid access.log file.
#
#dansguardian_ignore_date off

# TAG: squidguard_conf file
# path to squidGuard.conf file
# Generate reports from SquidGuard logs.
# Use 'none' to disable.
# You can use sarg -L filename to use an alternate squidGuard log.
# squidguard_conf /usr/local/squidGuard/squidGuard.conf
#
#squidguard_conf none

# TAG: squidguard_ignore_date on|off
# Use 'on' use the record even the date range is different from the used squid access.log file.
# Use 'off' use the record only if the date range is in the used squid access.log file.
#
#squidguard_ignore_date off

# TAG: squidguard_log_format
# Format string SquidGuard logs.
# REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#
# SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
#squidguard_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#

# TAG: show_sarg_info yes|no
# shows sarg information and site path on each report bottom
#
#show_sarg_info yes

# TAG: show_sarg_logo yes|no
# shows sarg logo
#
#show_sarg_logo yes

# TAG: parsed_output_log directory
# Saves the processed log in a sarg format after parsing the squid log file.
# This is a way to dump all of the data structures out, after parsing from
# the logs (presumably this data will be much smaller than the log files themselves),
# and pull them back in for later processing and merging with data from previous logs.
#
#parsed_output_log none

# TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress
# Command to run to compress sarg parsed output log. It may contain
# options (such as -f to overwrite existing target file). The name of
# the file to compresse is provided at the end of this
# command line. Don't forget to quote things appropriately.
#
#parsed_output_log_compress /bin/gzip

# TAG: displayed_values bytes|abbreviation
# how the values will be displayed in reports.
# eg. bytes - 209.526
# abbreviation - 210K
#
#displayed_values bytes

# Report limits
# TAG: authfail_report_limit n
# TAG: denied_report_limit n
# TAG: siteusers_report_limit n
# TAG: squidguard_report_limit n
# TAG: user_report_limit n
# TAG: dansguardian_report_limit n
# TAG: download_report_limit n
# report limits (lines).
# '0' no limit
#
#authfail_report_limit 10
#denied_report_limit 10
#siteusers_report_limit 0
#squidguard_report_limit 10
#dansguardian_report_limit 10
#user_report_limit 10
#user_report_limit 50

# TAG: www_document_root dir
# Where is your Web DocumentRoot
# Sarg will create sarg-php directory with some PHP modules:
# - sarg-squidguard-block.php - add urls from user reports to squidGuard DB
#
#www_document_root /var/www/html

# TAG: block_it module_url
# This tag allow you to pass urls from user reports to a cgi or php module,
# to be blocked by some Squid acl
#
# Eg.: block_it /sarg-php/sarg-block-it.php
# sarg-block-it is a php that will append a url to a flat file.
# You must change /var/www/html/sarg-php/sarg-block-it to point to your file
# in $filename variable, and chown to a httpd owner.
#
# sarg will pass http://module_url?url=url
#
#block_it none

# TAG: external_css_file path
# This tag allow internal sarg css override.
# Sarg use theses style classes:
# .body body class
# .info sarg information class, align=center
# .title title class, align=center
# .header header class, align:left
# .header2 header class, align:right
# .header3 header class, align:right
# .text text class, align:left
# .data table text class, align:right
# .data2 table text class, align:right, border colors
# .link link class
#
# There is a sample in /usr/local/sarg/etc/css.tpl
#
#external_css_file none

# TAG: user_authentication yes|no
# Allow user authentication in User Reports using .htaccess
# Parameters:
# AuthUserFile - where the user password file is
# AuthName - authentication realm. Eg "Members Only"
# AuthType - authenticaion type - basic
# Require - authorized users to see the report.
# %u - user report
#
# user_authentication no
# AuthUserFile /usr/local/sarg/passwd
# AuthName "SARG, Restricted Access"
# AuthType Basic
# Require user admin %u

# TAG: download_suffix "suffix,suffix,...,suffix"
# file suffix to be considered as "download" in Download report.
# Use 'none' to disable.
#
#download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,d rv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp 3,avi,mpg,mpeg"

# TAG: ulimit n
# The maximum number of open file descriptors to avoid "Too many open files" error message.
# You need to run sarg as root to use ulimit tag.
# If you run sarg with a low privilege user, set to 'none' to disable ulimit
#
#ulimit 20000

# TAG: ntlm_user_format username|domainname+username
# NTLM users format.
#
#ntlm_user_format domainname+username

# TAG: realtime_refresh_time num sec
# How many time to auto refresh the realtime report
# 0 = disable
#
# realtime_refresh_time 3

# TAG: realtime_access_log_lines num
# How many last lines to get from access.log file
#
# realtime_access_log_lines 1000

# TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST
# Which records must be in realtime report.
#
# realtime_types GET,PUT,CONNECT

# TAG: realtime_unauthenticated_records: ignore|show
# What to do with unauthenticated records in realtime report.
#
# realtime_unauthenticated_records: show

# TAG: byte_cost value no_cost_limit
# Cost per byte.
# Eg. byte_cost 0.01 100000000
# per byte cost = 0.01
# bytes with no cost = 100 Mb
# 0 = disable
#
# byte_cost 0.01 50000000

# TAG: squid24 on|off
# Compatilibity with squid version <= 2.4 when using emulate_http_log on
#
# squid24 off


  


2. Re: Sarg não Gera Relatórios [RESOLVIDO]

irado furioso com tudo
irado

(usa XUbuntu)

Enviado em 25/06/2010 - 09:15h

que me lembre, o sarg NÃO É um 'daemon', então provavelmente é acionado por um crontab qualquer ou então, como faço aqui, manualmente.

pro crontab naturalmente vai ficar "automágico" ;)


3. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 25/06/2010 - 10:07h

blz irado obrigado ai primeiramente pela resposta
só que coloquei tb no crontab pra executar todos os dias o comando sarg e mesmo assim não gera os relatórios, se eu digitar simplismente o comando sarg, ele faz a contagem tudo certim e tal e da a mensagem não ha registros e fim


4. Re: Sarg não Gera Relatórios [RESOLVIDO]

irado furioso com tudo
irado

(usa XUbuntu)

Enviado em 25/06/2010 - 10:09h

hmmm..
o access.log tem conteúdo?
seu crontab está com o path completo? (/usr/bin/sarg)
é crontab de root ou de user?


5. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 25/06/2010 - 10:20h

então irado tem conteudo sim, tanto que se eu dou um tail -f /var/log/squid/access.log ele mostra tudo qe ta acontecendo agora, agora no crontab eu só coloquei isso, só tem isso la
0 0 * * * /sarg esse caminho ai que vc falou tem que ter tb?
ah e o crontab só uso como root


6. Re: Sarg não Gera Relatórios [RESOLVIDO]

irado furioso com tudo
irado

(usa XUbuntu)

Enviado em 25/06/2010 - 10:31h

bem.. vamos tentar para experimentar:

ali em cima (sarg.conf), onde diz:
#access_log /usr/local/squid/var/logs/access.log
access_log /var/log/squid/access.log

troque para

access_log /tmp/access.log

copie o seu atual access.log (que deve estar no primeiro path /var/log..) para o /tmp

DEPOIS acione o sarg manualmente:

/usr/bin/sarg

examine seu /tmp; deve ter sido criado um sub-folder com a data dos conteúdos do access.log; no meu caso em particular, chamou-se 2010Jun13-2010Jun24 que é o periodo de existencia do meu access.log (no meu deskitópi).

se existir, dentro desse folder temos um index.html, que vc vai acessar pelo browser. Verifique se os dados são como vc espera.

se NÃO existir conteúdo, se não for criado o folder, enfim, QUALQUER COISA diferente indica que.. fu**u - risos. Vamos ter que procurar o problema no próprio sarg, quem sabe reinstalando-o.

mas se existir o folder, se houver conteúdo, então o êrro PROVAVELMENTE está no path do seu sarg.conf.

BTW, SIM, normalmente eu uso o path inteiro (/usr/bin/sarg) não apenas para o sarg mas para TODO e qualquer script/aplicativo que eu utilize em crontab.

bem, taí. Verifique e volte.




7. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 25/06/2010 - 14:13h

é irado, foi não velho, fiz tudo ai que vc falou e nada


8. nada?

irado furioso com tudo
irado

(usa XUbuntu)

Enviado em 25/06/2010 - 14:36h

não gerou nada? err.. perguntinha que não quer calar.. vc acionou tudo como root?

bão, vamos economizar: compacte o seu access.log (tar cfvj /tmp/acess.tar.bz2 /var/log/squid/logs/access.log e despache-o (upload) aqui:

http://www.mediafire.com/

depois me passe o link. Se eu conseguir gerar (como espero) os relatórios aqui, então define-se o problema com o seu binário :)

se quiser ir adiantando, pode até remove-lo/reinstala-lo.




9. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 28/06/2010 - 14:03h

e ai irado blz
cara, seguinte, sempre executo todos os comandos como root e como te disse no tópico esse que eu abri, tava instalado o que vem mesmo versão 2.2.1 e parou de funcionar do nada, aí desinstalei e instalei aproveitando o mais novo que peguei no site oficial do sarg que está atualmente na versão 2.2.7.1m OK
segue link abaixo o meu access.log, ele tem no total 168 mega aí ta com 23 pq compactei
mais uma vez te agradeço ai a ajuda
http://www.mediafire.com/?1oanftxjzmo


10. relatorio gerado :)

irado furioso com tudo
irado

(usa XUbuntu)

Enviado em 29/06/2010 - 08:58h

oi, daniel.

bem, aqui o relatorio foi gerado sem problemas:

http://www.mediafire.com/?rwagmyjumtz

então COM CERTEZA o problema está com o seu binário do sarg. Tenho duas sugestões:

a) o Kurumin foi descontinuado e, naturalmente, não existem mais atualizações para êle. Substitua-o por algum outro de sua preferência.

b) naturalmente, inexistindo atualizações, não adiantará querer instalar o sarge a partir dos pacotes originais. Tente fazê-lo a partir de algum pacote mais atual da Debian, ou a partir do codigo fonte: http://sarg.sourceforge.net/sarg.php

boa sorte.


11. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 29/06/2010 - 09:04h

ok irado obrigado pelas dicas ai mais uma vez e se eu conseguir resolver posto aqui o que fiz


12. Re: Sarg não Gera Relatórios [RESOLVIDO]

daniel silva
danielbsilva2

(usa Debian)

Enviado em 30/06/2010 - 08:40h

irado seguinte, num vo fica sofrendo não viu, é pelo seguinte sou iniciante em linux mas sei me virar, por isso escolhi o kurumin pq fiquei meio medroso em mexer no debian puro mas num to vendo outra saida não viu, vo ter que fazer tudo no debian mesmo e ponto final
cara obrigado ai por tudo
valew
abrass!!!






Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner
Linux banner
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts