Hi Marvin, This is a pain for many. We did spend some time trying to find a solution, see the following writeup: https://nxlog.co/disappearing-windows-dns-debug-log
Regards, Botond On Mon, 15 Aug 2016 10:32:21 +0000 Marvin Nipper <marvin.nip...@westernunion.com> wrote: > Sorry... couldn't let this slip by without a warning... > > It seems that the DNS Server puts an exclusive lock on the DNS Debug file, > when it "rolls it over" (i.e. when it reaches the maximum size, and it resets > to the beginning of the file). If that activity collides with nxlog reading > the file, the exclusive lock will fail, and DNS Server does not handle that > in any graceful fashion. Put simply, it just "shuts down the entire > debugging activity", whose logging can only be restarted, by restarting the > DNS Server service. > > That debug functionality was never (apparently) coded with the expectation > that it needed to "play well with others", so if you are really "counting on" > the data that you extract from that log monitoring activity, you will need to > figure out a way to deal with that "exclusivity issue" (and the undesirable > results). As the problem rely lies in the MS-coded behavior, I never really > solved that problem, and bailed out on my previous plans to use those logs > (for what I wanted to use them for). If you come up with a clever solution, > you might let us all know what you did. > > Again, all just FYI. > > -----Original Message----- > From: Botond Botyanszki [mailto:b...@nxlog.org] > Sent: Monday, August 15, 2016 2:49 AM > To: nxlog-ce-users@lists.sourceforge.net > Subject: Re: [nxlog-ce-users] parsedate not working on Microsoft DNS > debugging log file > > Hi, > > On Mon, 15 Aug 2016 13:34:18 +1200 > Jason Haar <jason_h...@trimble.com> wrote: > > > I end up with $origDate="15/08/2016 10:26:18 AM", but no $xxtimestamp - so > > strptime doesn't like the 'ampm' meethinks? > > > > Is there any way to do this is a locale-friendly manner? I guess I could go > > do some grotty math like "if $ampm=~/^p then add 12 to $hour" and skip that > > 'ampm' variable, but I'm still not sure how to take the timezone into > > account (without hard-wiring it which I don't want to as I'd like one > > config for several DNS servers in different countries) > > > > Any ideas? Thanks > > strptime() supports the %p modifier: > > %p The locale's equivalent of AM or PM. (Note: there may be none.) > > Regards, > Botond > > ------------------------------------------------------------------------------ > What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic > patterns at an interface-level. Reveals which users, apps, and protocols are > consuming the most bandwidth. Provides multi-vendor support for NetFlow, > J-Flow, sFlow and other flows. Make informed decisions using capacity > planning reports. > https://urldefense.proofpoint.com/v2/url?u=http-3A__sdm.link_zohodev2dev&d=DQICAg&c=r8e_2craKrV6D47TmKYPXpXJg_yAmgbggEcE6TnkxiU&r=ocBc3YQnMpj9wHOA9UhuNPihSGl3S2pysEGJEvDo1JA&m=uOxnn51s_S-cRWR2tgTL7b1wHFz9seMzWWJaG95UWxo&s=-TaPr_cPCONec70rLLcNaclfD5n8lpcKwtScpHqWGRU&e= > _______________________________________________ > nxlog-ce-users mailing list > nxlog-ce-users@lists.sourceforge.net > https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.sourceforge.net_lists_listinfo_nxlog-2Dce-2Dusers&d=DQICAg&c=r8e_2craKrV6D47TmKYPXpXJg_yAmgbggEcE6TnkxiU&r=ocBc3YQnMpj9wHOA9UhuNPihSGl3S2pysEGJEvDo1JA&m=uOxnn51s_S-cRWR2tgTL7b1wHFz9seMzWWJaG95UWxo&s=-TKNAF_zitpE8CSofrW5vMhw9K1D0f7MyLI95Z2cHWI&e= > The information transmitted, including any content in this communication is > confidential, is intended only for the use of the intended recipient and is > the property of the Western Union Company or its affiliates and subsidiaries. > If you are not the intended recipient, you are hereby notified that any use > of the information contained in or transmitted with the communication or > dissemination, distribution, or copying of this communication is strictly > prohibited. If you have received this communication in error, please notify > the Western Union sender immediately by replying to this message and delete > the original message ------------------------------------------------------------------------------ What NetFlow Analyzer can do for you? Monitors network bandwidth and traffic patterns at an interface-level. Reveals which users, apps, and protocols are consuming the most bandwidth. Provides multi-vendor support for NetFlow, J-Flow, sFlow and other flows. Make informed decisions using capacity planning reports. http://sdm.link/zohodev2dev _______________________________________________ nxlog-ce-users mailing list nxlog-ce-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/nxlog-ce-users
