Hi ,
I am working under Linux OS. I have firewall log file .In the analog
configuration file “analog.cfg” ,
I defined 2 LOGFORMATs in the config file as follows :
LOGFORMAT="(%j,%d%M%Y,%h:%n:%j,%j,%j,%j,%j,%j,%j,%j,%j,%s,%u,%j,%j,%r,%j)"
LOGFORMAT="(%j,%d%M%Y,%h:%n:%j,%j,%j,%j,%j,%j,%j,%j,%j,%s,%u,%j,%j,%j,%j,%j,
%j,%r,%j)"
Analog tries to analyze each line in the firewall log file using the first
logformat ,
However analog doesn’t tries to analyze each line using the second
logformat .
Could you please tell me how to analyze each line using 2 logformats ?
Thanks and Best Regards
Okada
+------------------------------------------------------------------------
| TO UNSUBSCRIBE from this list:
| http://lists.meer.net/mailman/listinfo/analog-help
|
| Usenet version: news://news.gmane.org/gmane.comp.web.analog.general
| List archives: http://www.analog.cx/docs/mailing.html#listarchives
+------------------------------------------------------------------------
