[syslog-ng] Problems with custom patterndb
Clements, Frank
fclements at corp.ptd.net
Mon Nov 28 22:51:08 CET 2011
Hello Everyone!
I've been trying to get some custom patterns put together to do some log
correlation and I'm having one hell of a time getting a working
pattern. I think I need a second, third, forth set of eyes on this ...
Any help is appreciated!
Message: Nov 25 12:02:27 GENERATED NAT-UDP-C: 192.168.107.132:12260 ->
207.44.101.104:12260 to 48.70.67.223:940
Pattern: @IPvANY:.dict.insideAddr@:@NUMBER:.dict.insidePort@ ->
@IPvANY:.dict.outsideAddr@:@NUMBER:.dict.outsidePort@ to
@IPvANY:.dict.destAddr@:@NUMBER:.dict.destPort@
I've looked at a few examples from the community patterns, but nothing
in this stands out as being "wrong".
Thanks
-
Frank W Clements
More information about the syslog-ng
mailing list