nanog mailing list archives

Re: log parsing tool?

From: gordon b slater <gordslater () ieee org>
Date: Tue, 23 Feb 2010 06:12:37 +0000

On Mon, 2010-02-22 at 18:14 -0600, Dale W. Carder wrote:

Take a look at SLCT, also by Risto Vaarandi:

http://ristov.users.sourceforge.net/slct/

SLCT can parse huge amounts of logs very fast.  We use it to
crunch firewall logs and also to find ports that are flapping
excessively.


+1, SLCT definitely finds the needles in haystacks of huge syslog files


Gord

--
best viewed in mailx

Current thread:

log parsing tool? fedora fedora (Feb 22)
- Re: log parsing tool? Steven J. Hutchison (Feb 22)
- Re: log parsing tool? Darren Bolding (Feb 22)
- Re: log parsing tool? Jeff Rooney (Feb 22)
  - Re: log parsing tool? fedora fedora (Feb 22)
    - Re: log parsing tool? Dale W. Carder (Feb 22)
    - Re: log parsing tool? gordon b slater (Feb 22)
- Re: log parsing tool? Matthew Palmer (Feb 23)