[logs] How do you cull through serial console logs?
Clayton Dukes (cdukes)
cdukes at cisco.com
Wed Apr 2 20:00:38 PDT 2008
Actually, it's been maintained the whole time (or most of it), but it
got moved around for a bit so some folks lost track of it :-)
I've not had a chance to look at the new functionality but have had
similar requests to make it available to more than just MySql.
I have big plans for "v3", but don't know if that will make it in there
just yet (I'm just one guy and the tool has gotten a bit too popular for
me to handle alone).
In recent versions, I have moved from using a pipe to direct mysql
inserts via the syslog-ng "program" option in the hopes of increasing
the rate it can handle but have not had time to truly stress test which
method is the best.
I'd like to stick it in a lab and gen 30-60k messages per second to see
which one really is better.
-----Original Message-----
From: Balazs Scheidler [mailto:bazsi at balabit.hu]
Sent: Wednesday, March 19, 2008 1:42 PM
To: Clayton Dukes (cdukes)
Cc: loganalysis at loganalysis.org
Subject: RE: [logs] How do you cull through serial console logs?
On Tue, 2008-03-18 at 14:24 -0400, Clayton Dukes (cdukes) wrote:
> Hey folks,
> I'm coming in a bit late on this (been out of town), but for an
> interface to the database (search, graph, etc), you may want to give
> php-syslog-ng a try. (note: I am the maintainer of said tool :-))
>
> http://nms.gdd.net/index.php/PHP-Syslog-NG
>
It sounds great that php-syslog-ng is ressurrected. As I knew it didn't
have an update for a long time.
What do you think about the new SQL functionality of the syslog-ng OSE
edition? Do you think you can add support for that too?
http://www.balabit.com/dl/html/syslog-ng-admin-guide_en.html/ch09s02.htm
l#reference_destination_sql
This feature allows the administrator to specify a table structure, and
syslog-ng automatically creates tables/indexes when needed.
--
Bazsi
More information about the LogAnalysis
mailing list