API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 23rd, 2018
90
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
YAML 2.44 KB | None | 0 0
raw download clone embed print report
  1. formats:
  2.     - name: myformat
  3.       format: '%<cqtq>'
  4.     - name: mysummaryformat
  5.       format: '%<LAST(cqtq)> %<COUNT(*)>'
  6.       interval: 30
  7.     - name: summaryfmt
  8.       format: '%<LAST(cqts)> : %<COUNT(*)> : %<SUM(psql)>'
  9.       interval: 10
  10.     - name: welf
  11.       format: |-
  12.           id=firewall time="%<cqtd> %<cqtt>" fw=%<phn> pri=6 proto=%<cqus> duration=%<ttmsf> sent=%<psql> rcvd=%<cqhl> src=%<chi> dst=%<shi> dstname=%<shn> user=%<caun> op=%<cqhm> arg="%<cqup>" result=%<pssc> ref="%<{Referer}cqh>" agent="%<{user-agent}cqh>" cache=%<crc>
  13.     # Squid Log Format with seconds resolution timestamp.
  14.     # The following is the squid format but with a seconds-only timestamp
  15.     # (cqts) instead of a seconds and milliseconds timestamp (cqtq).
  16.     - name: squid_seconds_only_timestamp
  17.       format: '%<cqts> %<ttms> %<chi> %<crc>/%<pssc> %<psql> %<cqhm> %<cquc> %<caun> %<phr>/%<pqsn> %<psct>'
  18.  
  19.     # Squid Log Format.
  20.     - name: squid
  21.       format: '%<cqtq> %<ttms> %<chi> %<crc>/%<pssc> %<psql> %<cqhm> %<cquc> %<caun> %<phr>/%<pqsn> %<psct>'
  22.  
  23.     # Common Log Format.
  24.     - name: common
  25.       format: '%<chi> - %<caun> [%<cqtn>] "%<cqtx>" %<pssc> %<pscl>'
  26.  
  27.     # Extended Log Format.
  28.     - name: 'extended'
  29.       format: |-
  30.           %<chi> - %<caun> [%<cqtn>] "%<cqtx>" %<pssc> %<pscl> %<sssc> %<sscl> %<cqcl> %<pqcl> %<cqhl> %<pshl> %<pqhl> %<sshl> %<tts>
  31.  
  32.      # Extended2 Log Formats
  33.     - name: "extended2"
  34.       format: '%<chi> - %<caun> [%<cqtn>] "%<cqtx>" %<pssc> %<pscl> %<sssc> %<sscl> %<cqcl> %<pqcl> %<cqhl> %<pshl> %<pqhl> %<sshl> %<tts> %<phr> %<cfsc> %<pfsc> %<crc>'
  35.  
  36. filters:
  37.     - name: refreshhitfilter
  38.       action: accept
  39.       condition: 'pssc MATCH REFRESH_HIT'
  40.     - name: passwdfilter
  41.       action: wipe
  42.       condition: passwd
  43.  
  44. logs:
  45.     - name: minimal
  46.       mode: ascii
  47.       format: minimalfmt
  48.     - name: refreshhit_summary
  49.       mode: ascii
  50.       format: summaryfmt
  51.       filters: [ refreshhitfilter ]
  52.     - name: squid
  53.       mode: binary
  54.     - name: complex
  55.       mode: ascii
  56.       format: welf
  57.       header: headername
  58.       rolling_enabled: true
  59.       rolling_interval_sec: 60
  60.       rolling_offset_hr: 2
  61.       rolling_size_mb: 25
  62.       filters: [ refreshhitfilter, passwdfilter ]
  63.       collation_hosts:
  64.         - host: logs-1.example.com:4567
  65.           failover: [failhostA:5000, failhostB:5000]
  66.         - host: logs-2.example.com:4567
  67.           failover: [failhostA:5000, failhostB:5000]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!