Graphing Logs
Different Ways to Graph Apache / HTTP Status Codes
root@jserver-VirtualBox:#
root@jserver-VirtualBox:#
root@jserver-VirtualBox:# ./logrobot localhost /var/tmp/logXray autonda /var/log/apache2/access.log 60m '.' '.' 1 2 test_tag1z -ndfoundapachen
CRITICAL: [ 133-200, 315-304 ] instance(s) found in log [ /var/log/apache2/access.log ]. Scan time = [ Sep-13-(14:49)-2014 (to) Sep-13-(15:55)-2014 ; 3996s(time) ]. Scan range = [ 2647,3095(rnge) ; -448(lnct) ]. Log Size = [ 816K ]. Tag = [ test_tag1z ]. | 200_code_patterns=133;29.69%;0;100% 304_code_patterns=315;70.31%;0;100% new_log_entries=448 time_frame=3996s total_log_entries=3095 rate_of_update=0.112/lps current_log_size=816K
root@jserver-VirtualBox:#
root@jserver-VirtualBox:#
root@jserver-VirtualBox:#
root@jserver-VirtualBox:# time ./logrobot localhost /var/tmp/logXray autonda /var/log/apache2/access.log 60m '200' '.' 1 2 test_tag1z -ndfoundapachen
CRITICAL: [ 3-200 ] instance(s) of [ 200.*. ] found in log [ /var/log/apache2/access.log ]. Scan time = [ Sep-13-(15:56)-2014 (to) Sep-13-(15:57)-2014 ; 43s(time) ]. Scan range = [ 3095,3105(rnge) ; -10(lnct) ]. Log Size = [ 816K ]. Tag = [ test_tag1z ]. | 200_code_patterns=3;30.00%;0;100% new_log_entries=10 time_frame=43s total_log_entries=3105 rate_of_update=0.233/lps current_log_size=816K
root@jserver-VirtualBox:#
root@jserver-VirtualBox:#
./logrobot localhost /var/tmp/logXray,graphite,127.0.0.1:8125 autonda /var/log/apache2/graphite-web_access.log 60m '.' '.' 1 2 apache_status_codes -ndfoundapachen
Log File Content
Scan content of log files for new occurrences (or lack thereof) of specific keywords, strings or patterns.
Log File Size
Monitor the sizes of single or multiple log files - alert if log size breaches predefined thresholds.
Log File Growth
Monitor the growth of single or multiple log files - alert when the monitored logs stop receiving new data.
Log File Timestamp
Monitor the timestamp of single or multiple logs. Alert, if logs are older than X amount of minutes or hours.