Proxylizer/Getting Started: Difference between revisions

From MikroTik Wiki
Jump to navigation Jump to search
← Older editNewer edit →
Line 11: Line 11:
** [[Proxylizer/Getting Started#Web-proxy log export to remote host (Proxylizer server) | Web-proxy log export to remote host]]
** [[Proxylizer/Getting Started#Web-proxy log export to remote host (Proxylizer server) | Web-proxy log export to remote host]]
* [[Proxylizer/Getting Started#Proxylizer server | Proxylizer server:]]
* [[Proxylizer/Getting Started#Proxylizer server | Proxylizer server:]]
** [[Proxylizer/Getting Started#Required packages | Required packages]]
** [[Proxylizer/Getting Started#Web page scripts | Web page scripts]]
** [[Proxylizer/Getting Started#Web page scripts | Web page scripts]]
** [[Proxylizer/Getting Started#Permissions for directories | Permissions for directories]]
** [[Proxylizer/Getting Started#Permissions for directories | Permissions for directories]]
Line 30: Line 31:
===Proxylizer server===
===Proxylizer server===
All the examples assume that web page root directory is "/var/www/proxylizer", web server user is "www-data", Proxylizer server system user is "proxylizer" and .pipe file destination/name is "/home/proxylizer/mysql.pipe".
All the examples assume that web page root directory is "/var/www/proxylizer", web server user is "www-data", Proxylizer server system user is "proxylizer" and .pipe file destination/name is "/home/proxylizer/mysql.pipe".
==== Required packages ====
*[http://en.wikipedia.org/wiki/Syslog-ng Syslog-ng] daemon
*Web server with [http://www.php.net PHP] and [http://pear.php.net/ PHP-Pear]
**[httpd.apache.org/ Apache2](recomended), [http://www.php.net PHP5], [http://lv.php.net/features.commandline PHP5-cli] and [http://pear.php.net/ PHP-Pear] : DB, Mail, Mail_Mime and Net_SMTP packages
*[http://www.mysql.com MySQL] database server
<pre>sudo apt-get install syslog-ng libapache2-mod-php5 php5-cli php-pear php-db php-mail php-mail-mime php-net-smtp mysql-server mysql-client</pre>
WARNING : If you have Ubuntu OS syslog-ng can conflict with ubuntu-minimal package! You can remove this package.
==== Web page scripts ====
==== Web page scripts ====


Line 52: Line 65:


==== Syslog daemon ====
==== Syslog daemon ====
Install syslog-ng daemon:
<pre>apt-get install syslog-ng</pre>
WARNING : If you have Ubuntu OS syslog-ng can conflict with ubuntu-minimal package! You can remove this package.


Change syslog-ng config to receive logs from Mikrotik router and put them into mysql.pipe file. Open /etc/syslog-ng/syslog-ng.conf and add these lines next to "#destinations" :
Change syslog-ng config to receive logs from Mikrotik router and put them into mysql.pipe file. Open /etc/syslog-ng/syslog-ng.conf and add these lines next to "#destinations" :
Line 77: Line 86:


<pre>/etc/init.d/syslog-ng restart</pre>
<pre>/etc/init.d/syslog-ng restart</pre>
==== Web server with PHP and PHP-Pear ====
Install web server (we recommend Apache2), PHP5, PHP5-cli and PHP-Pear : DB, Mail, Mail_Mime and Net_SMTP packages:
<pre>apt-get install libapache2-mod-php5 php5-cli php-pear php-db php-mail php-mail-mime php-net-smtp</pre>
==== MySQL database server ====
Install MySQL database server:
<pre> apt-get install mysql-server mysql-client </pre>


==== MySQL user for proxylizer database ====
==== MySQL user for proxylizer database ====

Revision as of 09:19, 9 January 2009

Download

You can download proxylizer archive here.

Install

All the examples assume that Proxylizer server IP address is 10.1.1.2.

The installation includes steps for setting up the following:

Mikrotik router

Web-proxy log export to remote host (Proxylizer server)

To forward logs from Mikrotik Router to Proxylizer server, open RouterOS console and type in the following commands: 

/system logging action add name=sendToProxylizer target=remote remote=10.1.1.2:514
/system logging add topics=web-proxy action=sendToProxylizer

Note that logs are sent to port number 514, it must be equal with the port on which Syslog daemon on Proxylizer server is listening.

Proxylizer server

All the examples assume that web page root directory is "/var/www/proxylizer", web server user is "www-data", Proxylizer server system user is "proxylizer" and .pipe file destination/name is "/home/proxylizer/mysql.pipe".

Required packages

sudo apt-get install syslog-ng libapache2-mod-php5 php5-cli php-pear php-db php-mail php-mail-mime php-net-smtp mysql-server mysql-client

WARNING : If you have Ubuntu OS syslog-ng can conflict with ubuntu-minimal package! You can remove this package.

Web page scripts

Download proxylizer archive. Create directory and extract it in web page root directory: 

sudo mkdir /var/www/proxylizer/
sudo tar -xvzf /var/www/proxylizer/

Permissions for directories

Change ownership of web page root directory for web server user: 

 chown proxylizer:www-data /var/www/proxylizer -R

Set write permissions to web page root directory for web server user: 

 chmod g+w /var/www/proxylizer

Set permissions to execute 3 shell script files for web server user group: 

cd /var/www/proxylizer
chmod g+x checkwebproxy.sh mail_send.php webproxylogtomysql.php

Syslog daemon

Change syslog-ng config to receive logs from Mikrotik router and put them into mysql.pipe file. Open /etc/syslog-ng/syslog-ng.conf and add these lines next to "#destinations" : 

destination d_mysql {
pipe("/home/proxylizer/mysql.pipe"
template("$HOST $YEAR-$MONTH-$DAY $HOUR:$MIN:$SEC $MSG\n") template-escape(yes));
};
log { source(net); destination(d_mysql); };

And this line next to "#sources": 

source net { udp(); }

Create pipe file: 

mkfifo /home/proxylizer/mysql.pipe

Set destination of .pipe file in /var/www/proxylizer/webproxylogtomysql.php. At the beginning of the file you must change variable value in the line: 

$MYSQL_PIPE = "/home/proxylizer/mysql.pipe";

restart syslog: 

/etc/init.d/syslog-ng restart

MySQL user for proxylizer database

Default user name for mysql database is root with no password. But we recomend to change it for security reasons.
Connect to mysql server and create new database and user: 

mysql -u root
CREATE DATABASE proxylizerdb;
GRANT ALL PRIVILEGES ON proxylizerdb.* TO proxylizer@localhost IDENTIFIED BY "password" WITH GRANT OPTION;
FLUSH PRIVILEGES;

Scheduled scripts for forwarding records from syslog to MySQL and report generation

Create directory for script logs and set permesions: 

mkdir /var/log/proxylizer
chown proxylizer:proxylizer /var/log/proxylizer
chmod u+w /var/log/proxylizer

If you want to write logs in different directory you must edit bash script "checkwebproxy.sh" and change "/var/log/proxylizer" to preferred directory.

Put two scripts in cron sheduler. First create crontab file for web server system user: 

nano /home/proxylizer/proxylizercrontab

and copy these lines: 

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
* *     * * *           /var/www/proxylizer/mail_send.php >> /var/log/proxylizer/mail_send_log.log
* *     * * *           /var/www/proxylizer/checkwebproxy.sh >> /var/log/proxylizer/checkwebproxy.log &

Set scheduler tasks from this file: 

crontab /home/proxylizer/proxylizercrontab
Retrieved from "https://wiki.mikrotik.com/index.php?title=Proxylizer/Getting_Started&oldid=10321"