10-20-2011
Quote:
My experience is that zabbix is more flexible than logzilla... and neither is really what I would call 'great' for analysis.
Remember, collecting, aggregating and filtering "events" is not really "analysis"; and neither is simple "event triggering" based on simple pattern matching rules.
When I look at logzilla (as in zabbix), I don't see any analysis capabilities; only aggregation, filtering, and simple rule based pattern matching. This is really not "analysis" in my view.
For example, "analysis" would be a software process that can detect, from Apache2 log files, when an IP address is a "bot" (web spider) without looking at the user agent (UA). This is not easy in the general case and requires some pretty sophisticated analysis over time.
Yeah, I`m using zabbix too. But I can`t get it work well with log files. I only use it for specified process, event, etc.. I wrote bash scripts and then use zabbix trapper. Zabbix is good for system monitoring, but not for log files I think.
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
I have a syslog server running Solaris 5.9 that is used exclusively to receive log messages from several thousand Cisco devices. The syslog server is and has been running fine for several months..
I would like to take all messages logged from the Cisco devices on this server and forward them... (2 Replies)
Discussion started by: getwithrob
2 Replies
2. UNIX for Dummies Questions & Answers
Does it exist centralized tools on unix for managing users of all servers (like windows AD) ? (1 Reply)
Discussion started by: astjen
1 Replies
3. UNIX for Dummies Questions & Answers
hi,
i am beginner i am using small lan setup all machine fc 6 and fc7 8 and fedora 9 also i want to know how to configure centralized log server on fedora 9 step by step any one help me
Thanks (0 Replies)
Discussion started by: poswer
0 Replies
4. HP-UX
Hi everybody
I need to analyze syslog file in HP UX
Is there any log analayzer for this file?
Regards (3 Replies)
Discussion started by: m_arab
3 Replies
5. UNIX for Advanced & Expert Users
Hello All,
I am working on SuSe Linux Platform. Some times ago i got an issue with an application for which i had to update that in all desktops (SLED == SuSe Linux Desktop).
Since this time number of desktops were less then it was possible to go and update package manually. But in... (1 Reply)
Discussion started by: shirsha
1 Replies
6. IP Networking
Hello all,
i want to view my iptables log on web interface, with chart (in option, and this is not my priority).
What is the best program for this?
I have Ubuntu server.
Thanks !
:) (0 Replies)
Discussion started by: Pacifiste95
0 Replies
7. AIX
I have a following requirement in production
system 1 : LINUX
User: abcd
system 2: AIX (it is hosting a production DB)
Requirement
user abcd from system 1 should have read access on archive log files created by DB on system 2. The log files are created with permissions 540 by user ora ,... (2 Replies)
Discussion started by: amitnm1106
2 Replies
8. Programming
Hi all
What is the qualification required by Linux/Solaris System Administrator to become a Linux/Solaris System Programmer as to gain complete knowledge on computers.
Thanks (1 Reply)
Discussion started by: Tlogine
1 Replies
9. Shell Programming and Scripting
Hello!
I have a small shell project that is due next week, that I'd appreciate some help with.
task: Write a shell program that can analyze at least 2 types of log files and print them in an easily readable way. Make it so that you can switch between log file types. The two file types should be... (1 Reply)
Discussion started by: malfiory
1 Replies
10. Homework & Coursework Questions
Hello! I'd like some help with this assignment.
1. The problem statement, all variables and given/known data:
1)Write a shell script that can uses two types of files as inputs, apache.log and apache.error.log
2)Make it so that you can switch between the two file types
3)Make it so that the... (5 Replies)
Discussion started by: malfiory
5 Replies
LEARN ABOUT DEBIAN
vusb-analyzer
VUSB-ANALYZER(1) Virtual USB Analyzer VUSB-ANALYZER(1)
NAME
vusb-analyzer - tool for visualizing logs of USB packets
SYNOPSIS
vusb-analyzer [OPTIONS] LOGFILE [LOGFILE...]
DESCRIPTION
The Virtual USB Analyzer is tool for visualizing logs of USB packets, from hardware or software USB sniffer tools. It's the world's first
tool to provide a graphical visualization along with raw hex dumps and high-level protocol analysis.
The Virtual USB Analyzer is not itself a USB sniffer tool. It is just a user interface for visualizing logs. It currently supports two log
formats, but it's designed to be easily extensible. With a couple hundred lines of Python code, you can add support for your favorite log
format.
The Virtual USB Analyzer was developed at VMware as an efficient way to debug their own USB virtualization stack. They wanted a tool that
made it easy to see problems at a glance, and they wanted a way to solve both correctness and performance bugs. As a result, they ended up
with what they think is a fairly unique tool. They're excited to have the opportunity to release this tool as open source software.
Supported Log Formats
* Logged USB traffic from debug builds of VMware Fusion, Workstation, or Player. See the tutorial for information on capturing such a log.
* XML logs from the Ellisys USB Explorer 200, a hardware USB 2.0 analyzer.
Features
* Unique graphical timeline view.
* Side-by-side diff mode: visually compare two log files.
* Pluggable log format modules: VMware, Ellisys.
* Pluggable protocol decoders: USB Chapter 9, Bluetooth, Storage, Cypress FX2.
* Packet metrics and filtering tools.
* Whole-bus analysis: analyze multiple devices concurrently.
* Written in Python, with a GTK+ user interface.
* Automatic "tail -f" mode: follow log files as they grow.
* Loads large log files in the background. You can start browsing before the whole file is loaded into memory.
* Automatic decompression of gzipped log files.
OPTIONS
-t Tail mode, start from the end of a growing log file.
HOMEPAGE
More information about vusb-analyzer, including a tutorial and sample logs, can be found at <http://vusb-analyzer.sourceforge.net/>.
AUTHOR
vusb-analyzer Micah Dowty <micah@vmware.com>.
This manual page was written by Daniel Baumann <daniel@debian.org>, for the Debian project (but may be used by others).
1.0 2009-05-17 VUSB-ANALYZER(1)