Set the number of days to store flows in the Active NetFlow Window field. Default is 45 days.
Connect to the Sheriff Console through SSH and use your credentials to log in.
The Sheriff Setup menu displays.
On the Sheriff Setup main menu, select Jailbreak System to gain command line access.
Select Yes when prompted. You will be in the root directory.
On the command line, type the following command:
screen
We recommend using the screen session so that you can keep the program running even after you log out.
Run the following command:
tar czf sheriff-netflow-`date +%s`.tgz /var/nfsen /var/cache/nfdump
Adding `date +%s`
to the filename gives it a unique time stamp.
sheriff-netflow-<timestamp>.tgz
file. Transfer the file to the target system. You can use either an SFTP client on Windows, such as WinSCP; or the SCP protocol on Linux.
Connect to the Sheriff Console through SSH and use your credentials to log in.
The Sheriff Setup menu displays.
On the Sheriff Setup main menu, select Jailbreak System to gain command line access.
Select Yes when prompted. You will be in the root directory.
On the command line, type the following command:
screen
We recommend using the screen session so that you can keep the program running even after you log out.
Stop the following services so that they do not interfere with the process:
/etc/init.d/monit stop /etc/init.d/vigilante-server stop /etc/init.d/vigilante-agent stop /etc/init.d/vigilante-framework stop /etc/init.d/sheriff-api stop
Extract the backup file into the '/' directory:
tar xvzf sheriff-netflow-<timestamp>.tgz -C /
Update file permissions:
tar tvzf sheriff-netflow-<timestamp>.tgz | tr -s ' ' > /root/file_list ulimit -s 65536 cd / for i in `cat /root/file_list | cut -f2 -d" " | sort -u`; do user=`echo $i | cut -f1 -d"/"`; group=`echo $i | cut -f2 -d"/"`; chown $user:$group `grep $i root/file_list | cut -f6 -d" " | xargs`; done ulimit -s 8192
Restart all services for changes to apply:
sheriff-reconfig -c -v -d