Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - Log Parsing Sample
  FAQ FAQ  Forum Search   Register Register  Login Login

Log Parsing Sample

 Post Reply Post Reply
Author
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Topic: Log Parsing Sample
    Posted: 01 June 2005 at 3:22pm
All,
 
For those of you that want to see what Sawmill can do to parse your logs, I provided them with a log file to use as a sample.  If you go to their home page, http://www.sawmill.net and go to "Product Info" and under that menu, click on "Samples", You will see a link to SpamFilter ISP. 
 
Regards,
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
bpogue99 View Drop Down
Guest Group
Guest Group
Post Options Post Options   Thanks (0) Thanks(0)   Quote bpogue99 Quote  Post ReplyReply Direct Link To This Post Posted: 01 June 2005 at 3:49pm

Awesome Dan. I have a customer who uses it for their IIS logs, but now I'm interested in using it for parsing my customers Spam Filter logs

 

Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 01 June 2005 at 3:55pm

After looking at it, I also see they are not using my very latest filter so the "real" version is even more accurate.  I spent MANY hours on the format plug-in for SpamFilterISP.  I am working on improving the SendmailNT parsing now  ... if I ever get some "Free" time. (ha ha)

BTW ... It works quite well with the Kiwi SysLog files ... assuming that the logging devices are set up to give up enough information.  Took me a while but I am getting some very good "emergency" graphing from my PIX which is logging to Kiwi.

One issue to keep in mind ... parding logs can take a heavy toll on the server doing the parsing so I really recomend running it on a machine that is not performing any other CPU intensive service ... at lease that is my MS Windows experience.

Regards,



Edited by Desperado
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.063 seconds.