LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 04-12-2012, 06:12 AM   #1
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Rep: Reputation: Disabled
Smile how to install and configure the sar report genarator


pls help to install and configure the sarg report generator on squid configuration...
 
Old 04-12-2012, 07:28 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
Once you have referred to the existing Sarg documentation and generic software management processes, please feel free to ask us *specific* questions about configuring Sarg. Until then, you're much better served researching this yourself from existing resources.
 
Old 04-12-2012, 03:33 PM   #3
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
You didn't mention which OS you're using? And did you try on google for sarg? If you type on google "sarg" and "how to install sarg on linux", you're problem would be solved upto an extent.

Then further you face any problem while installing or configuring sarg on your machine then you can ask here.

Last edited by Satyaveer Arya; 04-12-2012 at 03:34 PM.
 
Old 04-19-2012, 07:29 AM   #4
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
hi,

I m using the centos and by using the google source, i have installed, but its getting error while generating the report,, pls find my Sarg error report of segmentation in while checking over the sarg -l /var/log/squid/access.log -x -z command


[root@gtsl squid]# sarg -l /var/log/squid/access.log -x -z
SARG: Init
SARG: Loading configuration from: /etc/sarg/sarg.conf
SARG: TAG: http_port 8080
SARG: TAG: access_log /var/log/squid/access.log
SARG: TAG: output_dir /var/www/sarg/
SARG: TAG: resolve_ip yes
SARG: TAG: show_successful_message no
SARG: TAG: external_css_file /var/www/sarg/sarg.css
SARG: Parameters:
SARG:
SARG: Hostname or IP address (-a) =
SARG: Useragent log (-b) =
SARG: Exclude file (-c) =
SARG: Date from-until (-d) =
SARG: Email address to send reports (-e) =
SARG: Config file (-f) = /etc/sarg/sarg.conf
SARG: Date format (-g) = USA (mm/dd/yyyy)
SARG: IP report (-i) = No
SARG: Input log (-l) = /var/log/squid/access.log
SARG: Resolve IP Address (-n) = Yes
SARG: Output dir (-o) = /var/www/sarg//
SARG: Use Ip Address instead of userid (-p) = No
SARG: Accessed site (-s) =
SARG: Time (-t) =
SARG: User (-u) =
SARG: Temporary dir (-w) = /tmp
SARG: Debug messages (-x) = Yes
SARG: Process messages (-z) = Yes
SARG:
SARG: sarg version: 2.2.3.1 Jan-02-2007
SARG: Maximum file descriptor: cur=1024 max=1024, changed to cur=20000 max=20000
SARG: Reading access log file: /var/log/squid/access.log
SARG: (util) tbuf=2012Apr15962, reading: 0.00%
SARG: (util) period=2012Apr15-
SARG: Records in file: 1642962, reading: 100.00%
SARG: Records read: 1643742, written: 1643736, excluded: 1
SARG: Squid log format
SARG: (util) data=04/19/2012
SARG: (util) tbuf=2012Apr19
SARG: (util) period=2012Apr15-2012Apr19
SARG: Period: 2012Apr15-2012Apr19
SARG: pre-sorting files
SARG: File: /var/www/sarg//2012Apr15-2012Apr19 already exists, moved to /var/www/sarg//2012Apr15-2012Apr19.2
SARG: (util) dirname=/var/www/sarg//2012Apr15-2012Apr19
SARG: (util) wdir=/var/www/sarg//2012Apr15-2012Apr19
SARG: Making period file
SARG: Making file: /tmp/sarg/172.20.0.187
SARG: Making file: /tmp/sarg/172.20.0.195
SARG: Making file: /tmp/sarg/172.20.0.111
SARG: Making file: /tmp/sarg/172.20.0.218
SARG: Making file: /tmp/sarg/172.20.0.182
SARG: Making file: /tmp/sarg/172.20.0.199
SARG: Making file: /tmp/sarg/172.20.0.124
SARG: Making file: /tmp/sarg/172.20.0.208
SARG: Making file: /tmp/sarg/172.20.0.204
SARG: Making file: /tmp/sarg/172.20.0.202
SARG: Making file: /tmp/sarg/172.20.0.113
SARG: Making file: /tmp/sarg/172.20.0.145
SARG: Making file: /tmp/sarg/172.20.0.154
SARG: Making file: /tmp/sarg/172.20.0.114
SARG: Making file: /tmp/sarg/172.20.0.112
SARG: Making file: /tmp/sarg/172.20.0.194
SARG: Making file: /tmp/sarg/172.20.0.225
SARG: Making file: /tmp/sarg/172.20.0.109
SARG: Making file: /tmp/sarg/172.20.0.137
SARG: Making file: /tmp/sarg/172.20.0.191
SARG: Making file: /tmp/sarg/172.20.0.141
SARG: Making file: /tmp/sarg/172.20.0.201
SARG: Making file: /tmp/sarg/172.20.0.215
SARG: Making file: /tmp/sarg/172.20.0.214
SARG: Making file: /tmp/sarg/172.20.0.181
SARG: Making file: /tmp/sarg/172.20.0.128
SARG: Making file: /tmp/sarg/172.20.0.180
SARG: Making file: /tmp/sarg/172.20.0.126
SARG: Making file: /tmp/sarg/172.20.0.103
SARG: Making file: /tmp/sarg/172.20.0.209
SARG: Making file: /tmp/sarg/172.20.0.139
SARG: Making file: /tmp/sarg/172.20.0.134
SARG: Making file: /tmp/sarg/172.20.0.192
SARG: Making file: /tmp/sarg/172.20.0.104
SARG: Making file: /tmp/sarg/172.20.0.146
SARG: Making file: /tmp/sarg/172.20.0.183
SARG: Making file: /tmp/sarg/172.20.0.189
SARG: Making file: /tmp/sarg/172.20.0.196
SARG: Making file: /tmp/sarg/172.20.0.49
SARG: Making file: /tmp/sarg/172.20.0.186
SARG: Making file: /tmp/sarg/172.20.0.127
SARG: Making file: /tmp/sarg/172.20.0.216
SARG: Making file: /tmp/sarg/172.20.0.220
SARG: Making file: /tmp/sarg/172.20.0.144
SARG: Making file: /tmp/sarg/172.20.0.125
SARG: Making file: /tmp/sarg/172.20.0.212
SARG: Making file: /tmp/sarg/172.20.0.142
SARG: Making file: /tmp/sarg/172.20.0.221
SARG: Making file: /tmp/sarg/172.20.0.115
SARG: Making file: /tmp/sarg/172.20.0.123
SARG: Making file: /tmp/sarg/172.20.0.198
SARG: Making file: /tmp/sarg/172.20.0.119
SARG: Making file: /tmp/sarg/172.20.0.101
SARG: Making file: /tmp/sarg/172.20.0.131
SARG: Making file: /tmp/sarg/172.20.0.132
SARG: Making file: /tmp/sarg/172.20.0.120
SARG: Making file: /tmp/sarg/172.20.0.213
SARG: Making file: /tmp/sarg/172.20.0.140
SARG: Making file: /tmp/sarg/172.20.0.122
SARG: Making file: /tmp/sarg/172.20.0.227
SARG: Making file: /tmp/sarg/172.20.0.50
SARG: Making file: /tmp/sarg/172.20.0.102
SARG: Making file: /tmp/sarg/172.20.0.105
SARG: Making file: /tmp/sarg/172.20.0.138
SARG: Making file: /tmp/sarg/172.20.0.130
SARG: Making file: /tmp/sarg/172.20.0.121
SARG: Sorting file: /tmp/sarg/172.20.0.49
SARG: Sorting file: /tmp/sarg/172.20.0.182
SARG: Sorting file: /tmp/sarg/172.20.0.141
SARG: Sorting file: /tmp/sarg/172.20.0.209
SARG: Sorting file: /tmp/sarg/172.20.0.154
SARG: Sorting file: /tmp/sarg/172.20.0.134
SARG: Sorting file: /tmp/sarg/172.20.0.109
SARG: Sorting file: /tmp/sarg/172.20.0.204
SARG: Sorting file: /tmp/sarg/172.20.0.131
SARG: Sorting file: /tmp/sarg/172.20.0.196
SARG: Sorting file: /tmp/sarg/172.20.0.215
SARG: Sorting file: /tmp/sarg/172.20.0.181
SARG: Sorting file: /tmp/sarg/172.20.0.103
SARG: Sorting file: /tmp/sarg/172.20.0.137
SARG: Sorting file: /tmp/sarg/172.20.0.198
SARG: Sorting file: /tmp/sarg/172.20.0.146
SARG: Sorting file: /tmp/sarg/172.20.0.186
SARG: Sorting file: /tmp/sarg/172.20.0.144
SARG: Sorting file: /tmp/sarg/172.20.0.194
SARG: Sorting file: /tmp/sarg/172.20.0.121
SARG: Sorting file: /tmp/sarg/172.20.0.139
SARG: Sorting file: /tmp/sarg/172.20.0.201
SARG: Sorting file: /tmp/sarg/172.20.0.125
SARG: Sorting file: /tmp/sarg/172.20.0.101
SARG: Sorting file: /tmp/sarg/172.20.0.119
SARG: Sorting file: /tmp/sarg/172.20.0.111
SARG: Sorting file: /tmp/sarg/172.20.0.140
SARG: Sorting file: /tmp/sarg/172.20.0.142
SARG: Sorting file: /tmp/sarg/172.20.0.202
SARG: Sorting file: /tmp/sarg/172.20.0.195
SARG: Sorting file: /tmp/sarg/172.20.0.127
SARG: Sorting file: /tmp/sarg/172.20.0.120
SARG: Sorting file: /tmp/sarg/172.20.0.199
SARG: Sorting file: /tmp/sarg/172.20.0.212
SARG: Sorting file: /tmp/sarg/172.20.0.180
SARG: Sorting file: /tmp/sarg/172.20.0.192
SARG: Sorting file: /tmp/sarg/172.20.0.104
SARG: Sorting file: /tmp/sarg/172.20.0.213
SARG: Sorting file: /tmp/sarg/172.20.0.187
SARG: Sorting file: /tmp/sarg/172.20.0.220
SARG: Sorting file: /tmp/sarg/172.20.0.227
SARG: Sorting file: /tmp/sarg/172.20.0.112
SARG: Sorting file: /tmp/sarg/172.20.0.132
SARG: Sorting file: /tmp/sarg/172.20.0.145
SARG: Sorting file: /tmp/sarg/172.20.0.221
SARG: Sorting file: /tmp/sarg/172.20.0.122
SARG: Sorting file: /tmp/sarg/172.20.0.208
SARG: Sorting file: /tmp/sarg/172.20.0.126
SARG: Sorting file: /tmp/sarg/172.20.0.128
SARG: Sorting file: /tmp/sarg/172.20.0.115
SARG: Sorting file: /tmp/sarg/172.20.0.189
SARG: Sorting file: /tmp/sarg/172.20.0.105
SARG: Sorting file: /tmp/sarg/172.20.0.183
SARG: Sorting file: /tmp/sarg/172.20.0.130
SARG: Sorting file: /tmp/sarg/172.20.0.214
SARG: Sorting file: /tmp/sarg/172.20.0.216
SARG: Sorting file: /tmp/sarg/172.20.0.113
SARG: Sorting file: /tmp/sarg/172.20.0.50
SARG: Sorting file: /tmp/sarg/172.20.0.114
SARG: Sorting file: /tmp/sarg/172.20.0.138
SARG: Sorting file: /tmp/sarg/172.20.0.218
SARG: Sorting file: /tmp/sarg/172.20.0.123
SARG: Sorting file: /tmp/sarg/172.20.0.225
SARG: Sorting file: /tmp/sarg/172.20.0.191
SARG: Sorting file: /tmp/sarg/172.20.0.102
SARG: Sorting file: /tmp/sarg/172.20.0.124
Segmentation fault




while i try to HIT url of the squid Local host Http, the error from ONE SHOT report is mentioned below,

Not Found

The requested URL /sarg/ONE-SHOT/index.html was not found on this server.
Apache/2.2.3 (CentOS) Server at 172.20.0.10 Port 80
 
Old 04-19-2012, 07:54 AM   #5
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974Reputation: 1974
the google source?? what does that mean? Google don't write Sarg. And you should avoid using source directly if you can avoid it if you're having troubles. Sarg 2.2.3.1 is, as the output there clearly states, 5 years old. 2.3.1 has el5 / el6 rpms available and is considerably newer. http://pkgs.repoforge.org/sarg/
 
Old 04-19-2012, 08:47 AM   #6
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
Quote:
SARG: sarg version: 2.2.3.1 Jan-02-2007
As you can see you're usgin sarg-2.2.3 version which is outdated. That's why you're getting errors, generating bugs. So, you need to update your sarg with the latest version.
Recently I also updated my sarg package with the latest version and now it's running ok. Earlier I was also using the same version that you're using now but now after updating the package reports are generating automatically as per my requirements.
So, finally update the package and enjoy using sarg.
Good Luck!
 
1 members found this post helpful.
Old 04-21-2012, 08:53 AM   #7
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
Dear satya,
as per yours tips, i tried another version of sarg, but still it is not working my os is centos,, pls find the below error while i generated report on webmin,,

Now generating Sarg report from Squid log file /var/log/squid/access.log and all rotated versions ..

sarg -l /var/log/squid/access.log
SARG: Records in file: 10610, reading: 0.00%
SARG: Records in file: 10610, reading: 47.13%
SARG: Records in file: 10610, reading: 94.25%

.. Sarg failed! See the output above for details.

<- Return to module index

webpage error

Squid User's Access Report
DIRECTORY DESCRIPTION
ONE-SHOT One shot reports
daily Daily reports
weekly Weekly reports
monthly Monthly reports

when i click on any option, like one-shot or daily below error is displaying.


Not Found

The requested URL /sarg/ONE-SHOT/index.html was not found on this server.
Apache/2.2.3 (CentOS) Server at 172.20.0.10 Port 80

/etc/httpd/conf file conf below

Alias /sarg /var/www/sarg

<Directory /var/www/sarg>
DirectoryIndex index.html
Order deny,allow
Allow from all
Allow from 127.0.0.1
Allow from ::1
# Allow from your-workstation.com
</Directory>

sarg - x
[root@proxy squid]# sarg -x
SARG: Init
SARG: Loading configuration from /usr/local/etc/sarg.conf
SARG: Parameters:
SARG: Hostname or IP address (-a) =
SARG: Useragent log (-b) =
SARG: Exclude file (-c) =
SARG: Date from-until (-d) =
SARG: Email address to send reports (-e) =
SARG: Config file (-f) = /usr/local/etc/sarg.conf
SARG: Date format (-g) = USA (mm/dd/yyyy)
SARG: IP report (-i) = No
SARG: Input log (-l) = /var/log/squid/access.log
SARG: Resolve IP Address (-n) = No
SARG: Output dir (-o) = /var/www/html/squid-reports/
SARG: Use Ip Address instead of userid (-p) = No
SARG: Accessed site (-s) =
SARG: Time (-t) =
SARG: User (-u) =
SARG: Temporary dir (-w) = /tmp/sarg
SARG: Debug messages (-x) = Yes
SARG: Process messages (-z) = No
SARG:
SARG: sarg version: 2.3.1 Sep-18-2010
SARG: Reading access log file: /var/log/squid/access.log
SARG: Records in file: 11143, reading: 100.00%
SARG: Records read: 11143, written: 11143, excluded: 0
SARG: Squid log format
SARG: Period: 2012 Apr 22
SARG: pre-sorting files
SARG: File /var/www/html/squid-reports/2012Apr22-2012Apr22 already exists, moved to /var/www/html/squid-reports/2012Apr22-2012Apr22.7
SARG: Making file: /tmp/sarg/172_20_0_112
SARG: Making file: /tmp/sarg/172_20_0_120
SARG: Making file: /tmp/sarg/172_20_0_189
SARG: Making file: /tmp/sarg/172_20_0_138
SARG: Making file: /tmp/sarg/172_20_0_4
SARG: Making file: /tmp/sarg/172_20_0_213
SARG: Making file: /tmp/sarg/172_20_0_132
SARG: Making file: /tmp/sarg/172_20_0_102
SARG: Making file: /tmp/sarg/172_20_0_202
SARG: Making file: /tmp/sarg/172_20_0_214
SARG: Making file: /tmp/sarg/172_20_0_105
SARG: Making file: /tmp/sarg/172_20_0_204
SARG: Making file: /tmp/sarg/172_20_0_119
SARG: Making file: /tmp/sarg/172_20_0_127
SARG: Making file: /tmp/sarg/172_20_0_181
SARG: Making file: /tmp/sarg/172_20_0_50
SARG: Making file: /tmp/sarg/172_20_0_142
SARG: Making file: /tmp/sarg/172_20_0_115
SARG: Making file: /tmp/sarg/172_20_0_140
SARG: Making file: /tmp/sarg/172_20_0_192
SARG: Making file: /tmp/sarg/172_20_0_201
SARG: Making file: /tmp/sarg/172_20_0_191
SARG: Making file: /tmp/sarg/172_20_0_208
SARG: Making file: /tmp/sarg/172_20_0_218
SARG: Making file: /tmp/sarg/172_20_0_111
SARG: Making file: /tmp/sarg/172_20_0_212
SARG: Making file: /tmp/sarg/172_20_0_114
SARG: Making file: /tmp/sarg/172_20_0_130
SARG: Making file: /tmp/sarg/172_20_0_113
SARG: Making file: /tmp/sarg/172_20_0_207
SARG: Making file: /tmp/sarg/172_20_0_196
SARG: Making file: /tmp/sarg/172_20_0_198
SARG: Making file: /tmp/sarg/172_20_0_215
SARG: Making file: /tmp/sarg/172_20_0_194
SARG: Making file: /tmp/sarg/172_20_0_101
SARG: Making file: /tmp/sarg/172_20_0_139
SARG: Making file: /tmp/sarg/172_20_0_182
SARG: Making file: /tmp/sarg/172_20_0_145
SARG: Making file: /tmp/sarg/172_20_0_121
SARG: Making file: /tmp/sarg/172_20_0_144
SARG: Making file: /tmp/sarg/172_20_0_209
SARG: Making file: /tmp/sarg/172_20_0_104
SARG: Sorting file: /tmp/sarg/172_20_0_196
SARG: Sorting file: /tmp/sarg/172_20_0_4
SARG: Sorting file: /tmp/sarg/172_20_0_138
SARG: Sorting file: /tmp/sarg/172_20_0_209
SARG: Sorting file: /tmp/sarg/172_20_0_139
SARG: Sorting file: /tmp/sarg/172_20_0_207
SARG: Sorting file: /tmp/sarg/172_20_0_132
SARG: Sorting file: /tmp/sarg/172_20_0_102
SARG: Sorting file: /tmp/sarg/172_20_0_111
SARG: Sorting file: /tmp/sarg/172_20_0_114
SARG: Sorting file: /tmp/sarg/172_20_0_182
SARG: Sorting file: /tmp/sarg/172_20_0_121
SARG: Sorting file: /tmp/sarg/172_20_0_101
SARG: Sorting file: /tmp/sarg/172_20_0_189
SARG: Sorting file: /tmp/sarg/172_20_0_140
SARG: Sorting file: /tmp/sarg/172_20_0_198
SARG: Sorting file: /tmp/sarg/172_20_0_218
SARG: Sorting file: /tmp/sarg/172_20_0_214
SARG: Sorting file: /tmp/sarg/172_20_0_213
SARG: Sorting file: /tmp/sarg/172_20_0_105
SARG: Sorting file: /tmp/sarg/172_20_0_115
SARG: Sorting file: /tmp/sarg/172_20_0_50
SARG: Sorting file: /tmp/sarg/172_20_0_208
SARG: Sorting file: /tmp/sarg/172_20_0_192
SARG: Sorting file: /tmp/sarg/172_20_0_194
SARG: Sorting file: /tmp/sarg/172_20_0_191
SARG: Sorting file: /tmp/sarg/172_20_0_127
SARG: Sorting file: /tmp/sarg/172_20_0_202
SARG: Sorting file: /tmp/sarg/172_20_0_104
SARG: Sorting file: /tmp/sarg/172_20_0_112
SARG: Sorting file: /tmp/sarg/172_20_0_119
SARG: Sorting file: /tmp/sarg/172_20_0_215
SARG: Sorting file: /tmp/sarg/172_20_0_204
SARG: Sorting file: /tmp/sarg/172_20_0_144
SARG: Sorting file: /tmp/sarg/172_20_0_142
SARG: Sorting file: /tmp/sarg/172_20_0_113
SARG: Sorting file: /tmp/sarg/172_20_0_145
SARG: Sorting file: /tmp/sarg/172_20_0_130
SARG: Sorting file: /tmp/sarg/172_20_0_212
SARG: Sorting file: /tmp/sarg/172_20_0_181
SARG: Sorting file: /tmp/sarg/172_20_0_201
SARG: Sorting file: /tmp/sarg/172_20_0_120
SARG: Making report: 172.20.0.144
SARG: Making report: 172.20.0.105
SARG: Making report: 172.20.0.201
SARG: Making report: 172.20.0.189
SARG: Making report: 172.20.0.140
SARG: Making report: 172.20.0.114
SARG: Making report: 172.20.0.50
SARG: Making report: 172.20.0.213
SARG: Making report: 172.20.0.142
SARG: Making report: 172.20.0.139
SARG: Making report: 172.20.0.208
SARG: Making report: 172.20.0.145
SARG: Making report: 172.20.0.4
SARG: Making report: 172.20.0.209
SARG: Making report: 172.20.0.215
SARG: Making report: 172.20.0.218
SARG: Making report: 172.20.0.132
SARG: Making report: 172.20.0.130
SARG: Making report: 172.20.0.182
SARG: Making report: 172.20.0.198
SARG: Making report: 172.20.0.207
SARG: Making report: 172.20.0.104
SARG: Making report: 172.20.0.102
SARG: Making report: 172.20.0.212
SARG: Making report: 172.20.0.214
SARG: Making report: 172.20.0.138
SARG: Making report: 172.20.0.192
SARG: Making report: 172.20.0.101
SARG: Making report: 172.20.0.191
SARG: Making report: 172.20.0.112
SARG: Making report: 172.20.0.196
SARG: Making report: 172.20.0.119
SARG: Making report: 172.20.0.113
SARG: Making report: 172.20.0.194
SARG: Making report: 172.20.0.181
SARG: Making report: 172.20.0.121
SARG: Making report: 172.20.0.204
SARG: Making report: 172.20.0.115
SARG: Making report: 172.20.0.202
SARG: Making report: 172.20.0.127
SARG: Making report: 172.20.0.120
SARG: Making report: 172.20.0.111
SARG: Making index.html
SARG: Successful report generated on /var/www/html/squid-reports/2012Apr22-2012Apr22
SARG: Purging temporary file sarg-general
SARG: End

#### sarg.conf####
access_log /var/log/squid/access.log
output_dir /var/www/html/squid-reports



Webmin console settings

Log Source and Report Destination

Source Squid log file and generated report options
Source Squid log file Default (/usr/local/squid/var/logs/access.log)
Current Squid server log (/var/log/squid/access.log)
Other file
Destination report directory Default (/var/www/html/squid-reports)
Number of reports to keep Unlimited
User agent log file Default (none)
SquidGuard log file Default
Email report to Nowhere
Mail sending command Default (mailx)


pls help me to resolve it...
 
Old 04-22-2012, 04:53 AM   #8
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
Can you please attach your sarg.conf file?
 
Old 04-23-2012, 01:10 AM   #9
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
sarg.conf
#
# TAG: language
# Available languages:
# Bulgarian_windows1251
# Catalan
# Czech
# Czech_UTF8
# Dutch
# English
# French
# German
# Greek
# Hungarian
# Indonesian
# Italian
# Japanese
# Latvian
# Polish
# Portuguese
# Romanian
# Russian_koi8
# Russian_UFT-8
# Russian_windows1251
# Serbian
# Slovak
# Spanish
# Turkish
#
#language English

# TAG: access_log file
# Where is the access.log file
# sarg -l file
#
#access_log /usr/local/squid/var/logs/access.log
access_log /var/log/squid/access.log

# TAG: graphs yes|no
# Use graphics where is possible.
# graph_days_bytes_bar_color blue|green|yellow|orange|brown|red
#
#graphs yes
#graph_days_bytes_bar_color orange

# TAG: title
# Especify the title for html page.
#
#title "Squid User Access Reports"

# TAG: font_face
# Especify the font for html page.
#
#font_face Tahoma,Verdana,Arial

# TAG: header_color
# Especify the header color
#
#header_color darkblue

# TAG: header_bgcolor
# Especify the header bgcolor
#
#header_bgcolor blanchedalmond

# TAG: font_size
# Especify the text font size
#
#font_size 9px

# TAG: header_font_size
# Especify the header font size
#
#header_font_size 9px

# TAG: title_font_size
# Especify the title font size
#
#title_font_size 11px

# TAG: background_color
# TAG: background_color
# Html page background color
#
# background_color white

# TAG: text_color
# Html page text color
#
#text_color #000000

# TAG: text_bgcolor
# Html page text background color
#
#text_bgcolor lavender

# TAG: title_color
# Html page title color
#
#title_color green

# TAG: logo_image
# Html page logo.
#
#logo_image none

# TAG: logo_text
# Html page logo text.
#
#logo_text ""

# TAG: logo_text_color
# Html page logo texti color.
#
#logo_text_color #000000

# TAG: logo_image_size
# Html page logo image size.
# width height
#
#image_size 80 45

# TAG: background_image
# Html page background image
#
#background_image none

# TAG: password
# User password file used by Squid authentication scheme
# If used, generate reports just for that users.
#
#password none

# TAG: temporary_dir
# Temporary directory name for work files
# sarg -w dir
#
#temporary_dir /tmp

# TAG: output_dir
# The reports will be saved in that directory
# sarg -o dir
#
#output_dir /var/www/html/squid-reports
output_dir /var/www/sarg/ONE-SHOT

# TAG: output_email
# Email address to send the reports. If you use this tag, no html reports will be generated.
# sarg -e email
#
#output_email none

# TAG: resolve_ip yes/no
# Convert ip address to dns name
# sarg -n
#resolve_ip no
resolve_ip yes

# TAG: user_ip yes/no
# Use Ip Address instead userid in reports.
# sarg -p
#user_ip no

# TAG: topuser_sort_field field normal/reverse
# Sort field for the Topuser Report.
# Allowed fields: USER CONNECT BYTES TIME
#
#topuser_sort_field BYTES reverse

# TAG: user_sort_field field normal/reverse
# Sort field for the User Report.
# Allowed fields: SITE CONNECT BYTES TIME
#
#user_sort_field BYTES reverse

# TAG: exclude_users file
# users within the file will be excluded from reports.
# you can use indexonly to have only index.html file.
#
#exclude_users none

# TAG: exclude_hosts file
# Hosts, domains or subnets will be excluded from reports.
#
# Eg.: 192.168.10.10 - exclude ip address only
# 192.168.10.0 - exclude full C class
# s1.acme.foo - exclude hostname only
# acme.foo - exclude full domain name
#
#exclude_hosts none

# TAG: useragent_log file
# useragent.log file patch to generate useragent report.
#
#useragent_log none

# TAG: date_format
# Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)
#
#date_format u

# TAG: per_user_limit file MB
# Saves userid on file if download exceed n MB.
# This option allow you to disable user access if user exceed a download limit.
#
#per_user_limit none

# TAG: lastlog n
# How many reports files must be keept in reports directory.
# The oldest report file will be automatically removed.
# 0 - no limit.
#
#lastlog 0

# TAG: remove_temp_files yes
# Remove temporary files: geral, usuarios, top, periodo from root report directory.
#
#remove_temp_files yes

# TAG: index yes|no|only
# Generate the main index.html.
# only - generate only the main index.html
#
#index yes

# TAG: index_tree date|file
# How to generate the index.
#
#index_tree file

# TAG: overwrite_report yes|no
# yes - if report date already exist then will be overwrited.
# no - if report date already exist then will be renamed to filename.n, filename.n+1
#
#overwrite_report no

# TAG: records_without_userid ignore|ip|everybody
# What can I do with records without user id (no authentication) in access.log file ?
#
# ignore - This record will be ignored.
# ip - Use ip address instead. (default)
# everybody - Use "everybody" instead.
#
#records_without_userid ip

# TAG: use_comma no|yes
# Use comma instead point in reports.
# Eg.: use_comma yes => 23,450,110
# use_comma no => 23.450.110
#
#use_comma no

# TAG: mail_utility mail|mailx
# Mail command to use to send reports via SMTP
#
#mail_utility mailx
mail_utility mail

# TAG: topsites_num n
# How many sites in topsites report.
#
#topsites_num 100

# TAG: topsites_sort_order CONNECT|BYTES A|D
# Sort for topsites report, where A=Ascendent, D=Descendent
#
#topsites_sort_order CONNECT D

# TAG: index_sort_order A/D
# Sort for index.html, where A=Ascendent, D=Descendent
#
#index_sort_order D

# TAG: exclude_codes file
# Ignore records with these codes. Eg.: NONE/400
#
#exclude_codes /usr/local/sarg/exclude_codes

# TAG: replace_index string
# Replace "index.html" in the main index file with this string
# If null "index.html" is used
#
#replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?>

# TAG: max_elapsed milliseconds
# If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.
# Use 0 for no checking
#
#max_elapsed 28800000
# 8 Hours

# TAG: report_type type
# What kind of reports to generate.
# topusers - users, sites, times, bytes, connects, links to accessed sites, etc
# topsites - site, connect and bytes report
# sites_users - users and sites report
# users_sites - accessed sites by the user report
# date_time - bytes used per day and hour report
# denied - denied sites with full URL report
# auth_failures - autentication failures report
# site_user_time_date - sites, dates, times and bytes report
# downloads - downloads per user report
#
# Eg.: report_type topsites denied
#
#report_type topusers topsites sites_users users_sites date_time denied auth_failures site_user_time_date downloads

# TAG: usertab filename
# You can change the "userid" or the "ip address" to be a real user name on the reports.
# Table syntax:
# userid name or ip address name
# Eg:
# SirIsaac Isaac Newton
# vinci Leonardo da Vinci
# 192.168.10.1 Karol Wojtyla
#
# Each line must be terminated with '\n'
#
#usertab none

# TAG: long_url yes|no
# If yes, the full url is showed in report.
# If no, only the site will be showed
#
# YES option generate very big sort files and reports.
#
#long_url no

# TAG: date_time_by bytes|elap
# Date/Time reports will use bytes or elapsed time?
#
#date_time_by elap

# TAG: charset name
# ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)
# graphic character sets for writing in alphabetic languages
# You can use the following charsets:
# Latin1 - West European
# Latin2 - East European
# Latin3 - South European
# Latin4 - North European
# Cyrillic
# Arabic
# Greek
# Hebrew
# Latin5 - Turkish
# Latin6
# Windows-1251
# Japan
# Koi8-r
# UTF-8
#
#charset Latin1

# TAG: user_invalid_char "&/"
# Records that contain invalid characters in userid will be ignored by Sarg.
#
#user_invalid_char "&/"

# TAG: privacy yes|no
# privacy_string "***.***.***.***"
# privacy_string_color blue
# In some countries the sysadm cannot see the visited sites by a restrictive law.
# Using privacy yes the visited url will be changes by privacy_string and the link
# will be removed from reports.
#
#privacy no
#privacy_string "***.***.***.***"
#privacy_string_color blue

# TAG: include_users "user1:user2:...:usern"
# Reports will be generated only for listed users.
#
#include_users none

# TAG: exclude_string "string1:string2:...:stringn"
# Records from access.log file that contain one of listed strings will be ignored.
#
#exclude_string none

# TAG: show_successful_message yes|no
# Shows "Successful report generated on dir" at end of process.
#
#show_successful_message yes
show_successful_message no

# TAG: show_read_statistics yes|no
# Shows some reading statistics.
#
#show_read_statistics yes

# TAG: topuser_fields
# Which fields must be in Topuser report.
#
#topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE

# TAG: user_report_fields
# Which fields must be in User report.
#
#user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE

# TAG: bytes_in_sites_users_report yes|no
# Bytes field must be in Site & Users Report ?
#
#bytes_in_sites_users_report no

# TAG: topuser_num n
# How many users in topsites report. 0 = no limit
#
#topuser_num 0

# TAG: site_user_time_date_type list|table
# generate reports for site_user_time_date in list or table format
#
#site_user_time_date_type table

# TAG: datafile file
# Save the report results in a file to populate some database
#
#datafile none

# TAG: datafile_delimiter ";"
# ascii character to use as a field separator in datafile
#
#datafile_delimiter ";"

# TAG: datafile_fields all
# Which data fields must be in datafile
# user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
#
#datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed

# TAG: datafile_url ip|name
# Saves the URL as ip or name in datafile
#
#datafile ip

# TAG: weekdays
# The weekdays to take account ( Sunday->0, Saturday->6 )
# Example:
#weekdays 1-3,5
# Default:
#weekdays 0-6

# TAG: hours
# The hours to take account
# Example:
#hours 7-12,14,16,18-20
# Default:
#hours 0-23

# TAG: dansguardian_conf file
# DansGuardian.conf file path
# Generate reports from DansGuardian logs.
# Use 'none' to disable it.
# dansguardian_conf /usr/dansguardian/dansguardian.conf
#
#dansguardian_conf none

# TAG: dansguardian_ignore_date on|off
# 'on' must use the record even the date range is different from the used in squid access.log file.
# 'off' must use the record only if the date range is in the irange used in squid access.log file.
#
#dansguardian_ignore_date off

# TAG: squidguard_conf file
# path to squidGuard.conf file
# Generate reports from SquidGuard logs.
# Use 'none' to disable.
# You can use sarg -L filename to use an alternate squidGuard log.
# squidguard_conf /usr/local/squidGuard/squidGuard.conf
#
#squidguard_conf none

# TAG: squidguard_ignore_date on|off
# Use 'on' use the record even the date range is different from the used squid access.log file.
# Use 'off' use the record only if the date range is in the used squid access.log file.
#
#squidguard_ignore_date off

# TAG: squidguard_log_format
# Format string SquidGuard logs.
# REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#
# SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
#squidguard_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#

# TAG: show_sarg_info yes|no
# shows sarg information and site path on each report bottom
#
#show_sarg_info yes

# TAG: show_sarg_logo yes|no
# shows sarg logo
#
#show_sarg_logo yes

# TAG: parsed_output_log directory
# Saves the processed log in a sarg format after parsing the squid log file.
# This is a way to dump all of the data structures out, after parsing from
# the logs (presumably this data will be much smaller than the log files themselves),
# and pull them back in for later processing and merging with data from previous logs.
#
#parsed_output_log none

# TAG: parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress
# sarg logs compress util
#
#parsed_output_log_compress /bin/gzip

# TAG: displayed_values bytes|abbreviation
# how the values will be displayed in reports.
# eg. bytes - 209.526
# abbreviation - 210K
#
#displayed_values bytes

# Report limits
# TAG: authfail_report_limit n
# TAG: denied_report_limit n
# TAG: siteusers_report_limit n
# TAG: squidguard_report_limit n
# TAG: user_report_limit n
# TAG: dansguardian_report_limit n
# TAG: download_report_limit n
# report limits (lines).
# '0' no limit
#
#authfail_report_limit 10
#denied_report_limit 10
#siteusers_report_limit 0
#squidguard_report_limit 10
#dansguardian_report_limit 10
#user_report_limit 10
#user_report_limit 50

# TAG: www_document_root dir
# Where is your Web DocumentRoot
# Sarg will create sarg-php directory with some PHP modules:
# - sarg-squidguard-block.php - add urls from user reports to squidGuard DB
#
www_document_root /var/www/html

# TAG: block_it module_url
# This tag allow you to pass urls from user reports to a cgi or php module,
# to be blocked by some Squid acl
#
# Eg.: block_it /sarg-php/sarg-block-it.php
# sarg-block-it is a php that will append a url to a flat file.
# You must change /var/www/html/sarg-php/sarg-block-it to point to your file
# in $filename variable, and chown to a httpd owner.
#
# sarg will pass http://module_url?url=url
#
#block_it none

# TAG: external_css_file path
# This tag allow internal sarg css override.
# Sarg use theses style classes:
# .body body class
# .info sarg information class, align=center
# .title title class, align=center
# .header header class, align:left
# .header2 header class, align:right
# .header3 header class, align:right
# .text text class, align:left
# .data table text class, align:right
# .data2 table text class, align:right, border colors
# .link link class
#
# There is a sample in /usr/local/sarg/etc/css.tpl
#
#external_css_file none
external_css_file /var/www/sarg/sarg.css

# TAG: user_authentication yes|no
# Allow user authentication in User Reports using .htaccess
# Parameters:
# AuthUserFile - where the user password file is
# AuthName - authentication realm. Eg "Members Only"
# AuthType - authenticaion type - basic
# Require - authorized users to see the report.
# %u - user report
#
# user_authentication no
# AuthUserFile /usr/local/sarg/passwd
# AuthName "SARG, Restricted Access"
# AuthType Basic
# Require user admin %u

# TAG: download_suffix "suffix,suffix,...,suffix"
# file suffix to be considered as "download" in Download report.
# Use 'none' to disable.
#
#download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp 3,avi,mpg,mpeg"

# TAG: ulimit n
# The maximum number of open file descriptors to avoid "Too many open files" error message.
# You need to run sarg as root to use ulimit tag.
# If you run sarg with a low privilege user, set to 'none' to disable ulimit
#
#ulimit 20000

# TAG: ntlm_user_format username|domainname+username
# NTLM users format.
#
#ntlm_user_format domainname+username

# TAG: realtime_refresh_time num sec
# How many time to auto refresh the realtime report
# 0 = disable
#
# realtime_refresh_time 3

# TAG: realtime_access_log_lines num
# How many last lines to get from access.log file
#
# realtime_access_log_lines 1000

# TAG: realtime_types: GET,PUT,CONNECT,ICP_QUERY,POST
# Which records must be in realtime report.
#
# realtime_types GET,PUT,CONNECT

# TAG: realtime_unauthenticated_records: ignore|show
# What to do with unauthenticated records in realtime report.
#
# realtime_unauthenticated_records: show

# TAG: byte_cost value no_cost_limit
# Cost per byte.
# Eg. byte_cost 0.01 100000000
# per byte cost = 0.01
# bytes with no cost = 100 Mb
# 0 = disable
#
# byte_cost 0.01 50000000

# TAG: squid24 on|off
# Compatilibity with squid version <= 2.4 when using emulate_http_log on
#
# squid24 off
 
Old 04-23-2012, 02:03 AM   #10
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
Your sarg.conf files entries seems to be ok.
Did you use this command sarg -l /var/log/squid/access.log to generate the report? As I can see above in post no. 7 and it seems that when you used sarg -x commmand to generate the report it generated the report successfully.

Last edited by Satyaveer Arya; 04-23-2012 at 02:14 AM.
 
Old 04-23-2012, 02:09 AM   #11
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
And for your convinience you can uncomment this line from this section in sarg.conf file-

Quote:
# TAG: topsites_num n
# How many sites in topsites report.
#
#topsites_num 100
Change it to-
Quote:
# TAG: topsites_num n
# How many sites in topsites report.
#
topsites_num 100
You can set topsites_num to at any value like, 200, 300, 400 any value. According to your needs.
 
Old 04-23-2012, 03:41 AM   #12
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
[root@gtsl sarg]# sarg -l /var/log/squid/access.log
SARG: Unknown option TAG: temporary_dir
SARG: Unknown option TAG: output_dir
SARG: (util) Cannot open file /usr/local/sarg/exclude_codes (exclude_codes)
[root@gtsl sarg]#
 
Old 04-23-2012, 03:44 AM   #13
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
[root@gtsl /]# sarg -l /var/log/squid/access.log
SARG: (util) Cannot open file /usr/local/sarg/exclude_codes (exclude_codes)
 
Old 04-23-2012, 03:50 AM   #14
Satyaveer Arya
Senior Member
 
Registered: May 2010
Location: Palm Island
Distribution: RHEL, CentOS, Debian, Oracle Solaris 10
Posts: 1,415

Rep: Reputation: 305Reputation: 305Reputation: 305Reputation: 305
Quote:
SARG: (util) Cannot open file /usr/local/sarg/exclude_codes (exclude_codes)
Check the location of exclude_codes file

Code:
# locate exclude_codes
And copy the file into /usr/local/sarg/ directory from that location. And then again try to execute the sarg command to generate the report.
 
1 members found this post helpful.
Old 04-23-2012, 04:17 AM   #15
mail2ganesh.cse
Member
 
Registered: Apr 2012
Posts: 65

Original Poster
Rep: Reputation: Disabled
[root@gtsl /]# sarg -l /var/log/squid/access.log
SARG: (util) Cannot open file /usr/local/sarg/exclude_codes (exclude_codes)
[root@gtsl /]# locate exclude_codes
/root/sarg-2.3.1/exclude_codes
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] sar report fernfrancis Linux - Newbie 6 05-31-2011 02:12 AM
[SOLVED] how to enable sar report gadhave.vikas Solaris / OpenSolaris 2 05-16-2011 11:24 AM
Need the meaning of outch/s in sar report pskumar Solaris / OpenSolaris 4 09-15-2010 07:00 AM
Issue with sar report pskumar Solaris / OpenSolaris 4 07-22-2010 02:17 PM
sar report mokku Linux - Newbie 2 08-14-2008 02:11 PM


All times are GMT -5. The time now is 08:45 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration