Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: command to extract IP data from syslogs
Top Forums UNIX for Dummies Questions & Answers command to extract IP data from syslogs Post 64649 by di0de on Wednesday 2nd of March 2005 01:07:30 AM
Old 03-02-2005
thanks
how do I implement and execute this script? thanks for your help.

Quote:
Originally Posted by Ygor
This is an awk script to find IP addresses...
Code:
awk '
BEGIN{
    r = "[0-9][0-9]?[0-9]?"
    r = r "\\." r "\\." r "\\." r
}
match ($0, r){
    a[substr($0, RSTART, RLENGTH)] = 1
}
END{
    for (x in a)
        print x
}
' syslog1 syslog2 syslog3 > newlog

 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

extract data from a data matrix with filter criteria

Here is what old matrix look like, IDs X1 X2 Y1 Y2 10914061 -0.364613333 -0.362922333 0.001691 -0.450094667 10855062 0.845956333 0.860396667 0.014440333 1.483899333... (7 Replies)
Discussion started by: ssshen
7 Replies

2. Shell Programming and Scripting

how to extract the data ?

Hi, I'm trying to pick out a data field eg. from below. I need the required field as below but they are filled sometimes with weird chars like \-(. or watever. How can I accurately extract the 3rd field in shell? :confused: ID IDNO - REQUIRED FIELD ID 1447 - MAT620BR. ID 1452 -... (13 Replies)
Discussion started by: uxnoob
13 Replies

3. Shell Programming and Scripting

Extract data based on match against one column data from a long list data

My input file: data_5 Ali 422 2.00E-45 102/253 140/253 24 data_3 Abu 202 60.00E-45 12/23 140/23 28 data_1 Ahmad 256 7.00E-45 120/235 140/235 22 data_4 Aman 365 8.00E-45 15/65 140/65 20 data_10 Jones 869 9.00E-45 65/253 140/253 18... (12 Replies)
Discussion started by: patrick87
12 Replies

4. Shell Programming and Scripting

Extract specific data content from a long list of data

My input: Data name: ABC001 Data length: 1000 Detail info Data Direction Start_time End_time Length 1 forward 10 100 90 1 forward 15 200 185 2 reverse 50 500 450 Data name: XFG110 Data length: 100 Detail info Data Direction Start_time End_time Length 1 forward 50 100 50 ... (11 Replies)
Discussion started by: patrick87
11 Replies

5. Solaris

SYSLOGS - Where can I find FTP activities

Greetings to all. I need help from the experts. I have been given a FTP server script that runs all day, looking for files that are FTP'd to our machines. Its hoaky I know, but there are times that files are sent but somehow get lost. Is there a logfile I can view to see when files are received? ... (1 Reply)
Discussion started by: Harleyrci
1 Replies

6. Shell Programming and Scripting

extract the data using AWK command

In a file i have a data like INPUT: no,name,company 1,vivek,hcl 2,senthil,cts 1,narsi,hcl 4,prabhakaran,ibm OUTPUT: 1,vivek,hcl 1,narsi,hcl Using AWK command i want to display the names those having no:1 and company:hcl.Please tell me the command to display above result. (8 Replies)
Discussion started by: katakamvivek
8 Replies

7. Shell Programming and Scripting

Extracting relevant information from syslogs.

I need to analyse some syslogs and I want to print out all the lines containing SSH connections to the inside interface of the firewall and ignore lines where the originating port is 22. So basically I want to print all matches after "to inside:" that contains /22 and ignore lines where /22 occur... (2 Replies)
Discussion started by: lewk
2 Replies

8. AIX

Syslogs permission not getting changed - aix 6.1

Friends, I've tried to modify the syslogs permission by using the perm option in the syslog configuration in AIX 6.1 TL 05. But its not getting applied after the configuration. Have restarted the syslog service also. Need your help!:wall: The below are the conf details and os versions >... (1 Reply)
Discussion started by: novaothers
1 Replies

9. Shell Programming and Scripting

Extract header data from one file and combine it with data from another file

Hi, Great minds, I have some files, in fact header files, of CTD profiler, I tried a lot C programming, could not get output as I was expected, because my programming skills are very poor, finally, joined unix forum with the hope that, I may get what I want, from you people, Here I have attached... (17 Replies)
Discussion started by: nex_asp
17 Replies

10. Solaris

Configuring Centralized Solaris Server to Receive Syslogs

Hello, I am new to Solaris. However, I was able to configure the Syslog server on Solaris. I am using a windows client to send logs to my Solaris syslog server. this is working fine. however, I have 23 servers which are sending their logs to the syslog server and it is very difficult to read all... (2 Replies)
Discussion started by: ravmohun
2 Replies

LEARN ABOUT OSX

a2p

A2P(1)							 Perl Programmers Reference Guide						    A2P(1)

NAME

       a2p - Awk to Perl translator

SYNOPSIS

       a2p [options] [filename]

DESCRIPTION

       A2p takes an awk script specified on the command line (or from standard input) and produces a comparable perl script on the standard
       output.

   OPTIONS
       Options include:

       -D<number>
	    sets debugging flags.

       -F<character>
	    tells a2p that this awk script is always invoked with this -F switch.

       -n<fieldlist>
	    specifies the names of the input fields if input does not have to be split into an array.  If you were translating an awk script that
	    processes the password file, you might say:

		    a2p -7 -nlogin.password.uid.gid.gcos.shell.home

	    Any delimiter can be used to separate the field names.

       -<number>
	    causes a2p to assume that input will always have that many fields.

       -o   tells a2p to use old awk behavior.	The only current differences are:

	    o	 Old awk always has a line loop, even if there are no line actions, whereas new awk does not.

	    o	 In old awk, sprintf is extremely greedy about its arguments.  For example, given the statement

			 print sprintf(some_args), extra_args;

		 old awk considers extra_args to be arguments to "sprintf"; new awk considers them arguments to "print".

   "Considerations"
       A2p cannot do as good a job translating as a human would, but it usually does pretty well.  There are some areas where you may want to
       examine the perl script produced and tweak it some.  Here are some of them, in no particular order.

       There is an awk idiom of putting int() around a string expression to force numeric interpretation, even though the argument is always
       integer anyway.	This is generally unneeded in perl, but a2p can't tell if the argument is always going to be integer, so it leaves it in.
       You may wish to remove it.

       Perl differentiates numeric comparison from string comparison.  Awk has one operator for both that decides at run time which comparison to
       do.  A2p does not try to do a complete job of awk emulation at this point.  Instead it guesses which one you want.  It's almost always
       right, but it can be spoofed.  All such guesses are marked with the comment ""#???"".  You should go through and check them.  You might
       want to run at least once with the -w switch to perl, which will warn you if you use == where you should have used eq.

       Perl does not attempt to emulate the behavior of awk in which nonexistent array elements spring into existence simply by being referenced.
       If somehow you are relying on this mechanism to create null entries for a subsequent for...in, they won't be there in perl.

       If a2p makes a split line that assigns to a list of variables that looks like (Fld1, Fld2, Fld3...) you may want to rerun a2p using the -n
       option mentioned above.	This will let you name the fields throughout the script.  If it splits to an array instead, the script is probably
       referring to the number of fields somewhere.

       The exit statement in awk doesn't necessarily exit; it goes to the END block if there is one.  Awk scripts that do contortions within the
       END block to bypass the block under such circumstances can be simplified by removing the conditional in the END block and just exiting
       directly from the perl script.

       Perl has two kinds of array, numerically-indexed and associative.  Perl associative arrays are called "hashes".	Awk arrays are usually
       translated to hashes, but if you happen to know that the index is always going to be numeric you could change the {...} to [...].
       Iteration over a hash is done using the keys() function, but iteration over an array is NOT.  You might need to modify any loop that
       iterates over such an array.

       Awk starts by assuming OFMT has the value %.6g.	Perl starts by assuming its equivalent, $#, to have the value %.20g.  You'll want to set
       $# explicitly if you use the default value of OFMT.

       Near the top of the line loop will be the split operation that is implicit in the awk script.  There are times when you can move this down
       past some conditionals that test the entire record so that the split is not done as often.

       For aesthetic reasons you may wish to change index variables from being 1-based (awk style) to 0-based (Perl style).  Be sure to change all
       operations the variable is involved in to match.

       Cute comments that say "# Here is a workaround because awk is dumb" are passed through unmodified.

       Awk scripts are often embedded in a shell script that pipes stuff into and out of awk.  Often the shell script wrapper can be incorporated
       into the perl script, since perl can start up pipes into and out of itself, and can do other things that awk can't do by itself.

       Scripts that refer to the special variables RSTART and RLENGTH can often be simplified by referring to the variables $`, $& and $', as long
       as they are within the scope of the pattern match that sets them.

       The produced perl script may have subroutines defined to deal with awk's semantics regarding getline and print.	Since a2p usually picks
       correctness over efficiency.  it is almost always possible to rewrite such code to be more efficient by discarding the semantic sugar.

       For efficiency, you may wish to remove the keyword from any return statement that is the last statement executed in a subroutine.  A2p
       catches the most common case, but doesn't analyze embedded blocks for subtler cases.

       ARGV[0] translates to $ARGV0, but ARGV[n] translates to $ARGV[$n-1].  A loop that tries to iterate over ARGV[0] won't find it.

ENVIRONMENT

       A2p uses no environment variables.

AUTHOR

       Larry Wall <larry@wall.org>

FILES

SEE ALSO

	perl   The perl compiler/interpreter

	s2p    sed to perl translator

DIAGNOSTICS

BUGS

       It would be possible to emulate awk's behavior in selecting string versus numeric operations at run time by inspection of the operands, but
       it would be gross and inefficient.  Besides, a2p almost always guesses right.

       Storage for the awk syntax tree is currently static, and can run out.

perl v5.16.2							    2012-08-26								    A2P(1)
All times are GMT -4. The time now is 12:55 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy