Dear all,
introduced with CA Spectrum R10.1 the Apache Modsecurity firewall service is available as a proxy service in front of the OC-Server/Tomcat-Service. This will allow to save the OC-Server operation and "common attacks" may not reach this service at all.
The current R10.1* and R10.2 implementation needs to be improved (and reconfigured) to re-enable the important CA Spectrum OC-Console Heartbeat(alive logic) (red-framed OC-Console in case of OC-service disconnect). This improvement will become part of CA Spectrum R10.3.
In addition the ./apache/logs/error.log is showing high number of error messages due to missing databases (IP and GLOBAL) - which will fill up the logs. Even those messages are benign, those will not come up by a reconfiguration for the Apache setup.
Find the attached document which helps to reconfigure the Apache ModSecurity service.
Kind regards, Joerg