Troubleshooting¶
Monitoring¶
Check service status:
sudo systemctl status wazuh-dfn
View logs:
sudo tail -f /opt/wazuh-dfn/logs/wazuh-dfn.log
Troubleshooting¶
Check virtualenv activation:
source /opt/wazuh-dfn/venv/bin/activate
python -V # Should show Python 3.12.x
Verify Wazuh alert file permissions:
sudo ls -l /var/ossec/logs/alerts/alerts.json
Check Kafka connectivity:
telnet incubator-stream.soc.dfn.de 443
Validate certificate permissions:
ls -l /opt/wazuh-dfn/certs/
Review logs for specific error messages:
sudo tail -n 100 /opt/wazuh-dfn/logs/wazuh-dfn.log