[122883] in North American Network Operators' Group
Re: log parsing tool?
daemon@ATHENA.MIT.EDU (Dale W. Carder)
Mon Feb 22 19:15:21 2010
Date: Mon, 22 Feb 2010 18:14:41 -0600
From: "Dale W. Carder" <dwcarder@wisc.edu>
In-reply-to: <f8bb772a1002221449o1255834focc4f6dd50cc8800e@mail.gmail.com>
To: fedora fedora <fedorafans@gmail.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Feb 22, 2010, at 4:49 PM, fedora fedora wrote:
> ah, never heard of SEC before and it really looks interesting,
Take a look at SLCT, also by Risto Vaarandi:
http://ristov.users.sourceforge.net/slct/
SLCT can parse huge amounts of logs very fast. We use it to
crunch firewall logs and also to find ports that are flapping
excessively.
Dale
