Message: "nanny: Non-stap traffic on stap port detected or stap link failure"

Question & Answer

Question

Guardium message.log file shows this error: nanny: [6140]: nanny: Non-stap traffic on stap port detected or stap link failure

Cause

Every 300 seconds, a process called "nanny" wakes up in the appliance and checks the iptables on the appliance for any traffic using 16016, 16018, 9500, or 9501 as the destination port. These are all ports the appliance uses to listen to STAP traffic.

If the nanny process finds recent traffic on these ports, it checks its internal database for a legitimate STAP heartbeat.

If there is no recent STAP heartbeat, it issues the message shown above to the syslog, which is then sent to your remote syslog server.

Answer

There are 2 reasons why the system would not find a recent heartbeat in the database:

1 - The STAPs have gone down.
2 - No STAPs were ever configured for the appliance.

[{"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Not Applicable","Platform":[{"code":"PF016","label":"Linux"}],"Version":"10.1.2;9.5","Edition":"All Editions","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Tips

Message: "nanny: Non-stap traffic on stap port detected or stap link failure"

Question & Answer

Question

Cause

Answer

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?