NSX-LogViewer is used for VMware NSX to help the organisation and people outside of the NSX team to check if traffic on a given IP/VM is dropped.
- Create virtual machine or docker lamp image (Could be like: https://www.howtoforge.com/tutorial/install-apache-with-php-and-mysql-on-ubuntu-18-04-lamp/)
- GIT clone to the desired directory, may be /var/www/ or /var/www/html/ (git clone https://github.com/sorenisager/NSX-Logviewer.git)
- Change the config file with your desired settings
- Import SQL file into MariaDB/MySQL database to get it to work
- Test if it works, if not - check errors or let me help you.
- Add entries in the ReverseLookup file, so you can resolve the IP's in the log into servernames. (This is being showed directly in the log file)
For this to be working, you need to configure your NSX and VMware Hosts to send logs to LogInsight (With enabled NSX ContentPack)
Gives the Option in the config file to reverse lookup ips into hostnames in the Alerthandler function. Loginsight is not sending the servernames in the logs. This helps us understand which system is affected at the dashboard directly.
Its a JSON file ex: "10.10.100.85": "dhcp-server"
There is no page security at the moment added to the code, you may need to use .htaccess or other type of security to prevent others from seeing the applicationdata.
The current version of the NSX-LogViewer
There may be future versions, it depends on the demand.
Look at sorenisager.com
- LAMP stack (PHP7+)
- MariaDB or MySQL is fine.
The software is free to use, but i can never behold responsible for anything.