System Status
Spectra Analyze > Administration > Usage & Alerts > System Status
The System Status page shows the general health of the appliance.
For optimal system performance, ensure that System Services, Supervisor Services, External Services (primarily Spectra Detect Manager and Spectra Intelligence, if configured), system load and RabbitMQ queues operate normally. Other stats depend on which services and/or third-party integrations are enabled on the appliance.
This page also displays the internal build version and the version of Spectra Core at the top right, should that information be needed when interacting with ReversingLabs Support.
Downloading logs
The Download Logs button allows the user to download a support archive containing relevant system logs from the Spectra Analyze instance as a single file. The contents of the support archive downloaded this way are identical to the contents of the archive generated by running the tcbase support command directly from the console. The only difference between the two is that, when run, the tcbase support command may break up large log files.
During processing, the button is disabled and says Retrieving logs…. When processing is done, the log file is downloaded to the user's hard drive, while the button is reactivated. Users should not close the page or navigate away until the logs are created. If needed, the user can then email the retrieved log file to ReversingLabs Support.
Appliance status details
| Icon | Section | Description |
|---|---|---|
 | Network | Network interfaces on the appliance and their current estimated transfer status for incoming and outgoing traffic. The displayed transfer rate is updated periodically, and might not capture peak traffic on the interface. To get the approximate traffic traversing through the network, multiply the numbers by 8. |
 | RabbitMQ Queues | The status of the queues on the appliance used for background tasks, such as calls to Spectra Intelligence/T1000 APIs, Spectra Core processing requests, data collection/input, and more. The size of individual queues varies and might reach low thousands. This section helps to ensure that all queues are running and have at least one consumer, and that the number of messages is not increasing. If that is not the case, especially if any of the queues show more than 100 000 messages, contact ReversingLabs Support. |
 | Connectors | If any of the Connectors are enabled and configured on the appliance, this section indicates the status of each connector. Otherwise, this section is empty. |
   | CPU Disk Partitions Memory | Current resource utilization on the appliance, showing general load, storage size, and storage usage. If there are any red icons, that means the system is under more load than it can handle, and the traffic needs to be partitioned. In case of CPU and memory indicators showing a red icon, consider increasing the CPU and RAM parameters for the Spectra Analyze virtual machine. If memory usage consistently goes over 75%, memory capacity should be increased. Similarly, if storage usage goes over 75%, consider increasing the storage capacity. |
  | System Services Supervisor Services | Current state of the critical services on the appliance. Any failures indicated with the red icon mean the appliance is not functioning correctly and ReversingLabs Support should be notified. |
 | Scale | A critical service for processing samples through Spectra Core. Any failures indicated with the red icon mean the appliance is not functioning correctly and ReversingLabs Support should be notified. This section also allows users with the appropriate user roles to access the list of YARA rulesets with warnings. If there are any rulesets with warnings on the appliance, the YaraWarnings icon will not be green, and will show the number of warnings instead. Clicking the icon redirects to the YARA Hunting page filtered to display only rulesets with warnings. Here the offending rulesets can be edited or disabled to improve the processing speed of the appliance. |
 | External Services Connectivity | Current state of the services that the appliance interacts with externally. SMTP is the email service, typically for enabling password reset emails. NTP is the service for time server synchronization. Spectra Intelligence indicates the connectivity status for the Spectra Intelligence service. If any of the services are showing a red icon, it typically means they are not enabled or not configured properly. Check if the external services are operational, and make sure they are properly set up on the Configuration page. Dynamic analysis services supported by the appliance are also listed here with icons indicating whether they are enabled and connected. These services can be configured under Integrations. If a dynamic analysis service is enabled and configured, the current number of files queued for analysis is shown here. Otherwise, this section isn't displayed. |