RE: [leaf-user] weblet extension version 2

Tue, 03 Jun 2003 03:14:43 -0700 

No problem.

This actually got me playing around with this and I added one other thing
that I've wanted for a while: a link to whois for each IP address that gets
logged.  I changed the following section:
hitssort)
 HEAD='<tr><td
width="20%">Hits</td><td>IP-Address</td><td>Whois</td><td>Date</t
  AUS=`grep "Shorewall:" /var/log/shorewall.log |\
  sed 's/\(.\{6\}\)\(.*SRC=\)\(.*\)\( DST=.*\)/\<\/td\>\<td\>\<a
href=\"viewhits?x_\3\"\>\3\<\/a\><\/td\>\
  \<td\>\<a
href=\"http:\/\/ws.arin.net\/cgi-bin\/whois.pl\?queryinput=\3\"\>Whois-\3\<\
/a\><\/td\>\<td\>\
  \1\<\/td\>\<\/tr\>'|\
  sort  |uniq -c | sort -rn |sed 's/^/\<tr\>\<td\>/'`
  titel="Hits sorted by frequency and by ip address"
        ;;

That's a lot of "escapes". :)

Ken

> -----Original Message-----
> From: [EMAIL PROTECTED] 
> [mailto:[EMAIL PROTECTED] On Behalf Of 
> eric wolzak
> Sent: Monday, June 02, 2003 10:11 AM
> To: Ken Marshall; 'Tony'; 'Leaf-User'
> Cc: [EMAIL PROTECTED]
> Subject: Re: [leaf-user] weblet extension version 2
> 
> 
> Hi Ken.
> 
> 
> I tried this code as well and I think that you have to 
> substitute /var/log/shorewall.log for /var/log/messages in 
> the code that Eric provided. It didn't work for me until I 
> made this change.  Perhaps an older version of Bering or Dach 
> used the messages file to log packets, hence the confusion. 
> Please correct me if I'm wrong, Eric.
> 
> Thanks,
> Ken
> 
> You are of course right , the log file should be the one the 
> messages for shorewall are directed to. Bering 1.0 stable did 
> the logging still in the /var/log/messages file  ( this was 
> the version I used to debug the script.) I should make things 
> more modular again ;)
> 
> Thanks for your feedback.



-------------------------------------------------------
This SF.net email is sponsored by: eBay
Get office equipment for less on eBay!
http://adfarm.mediaplex.com/ad/ck/711-11697-6916-5
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Reply via email to