Difference between revisions of "Multitail"
Jump to navigation
Jump to search
(woops -- add 'error' line for ntsyslog multitail scheme) |
(another woops -- hostnames can have digits, too.) |
||
| Line 20: | Line 20: | ||
colorscheme:ntsyslog:Windows NTsyslog | colorscheme:ntsyslog:Windows NTsyslog | ||
cs_re:cyan:^[A-Z][a-z][a-z]\ [0-9][0-9]\ [0-9][0-9]:[0-9][0-9]:[0-9][0-9]\ | cs_re:cyan:^[A-Z][a-z][a-z]\ [0-9][0-9]\ [0-9][0-9]:[0-9][0-9]:[0-9][0-9]\ | ||
| − | cs_re_s:magenta:...:[0-9][0-9]\ ([A-Za- | + | cs_re_s:magenta:...:[0-9][0-9]\ ([A-Za-z0-9]+) |
cs_re_s:green:...\[(info)\] | cs_re_s:green:...\[(info)\] | ||
cs_re_s:yellow:...\[(warning)\] | cs_re_s:yellow:...\[(warning)\] | ||
cs_re_s:red:...\[(failure)\] | cs_re_s:red:...\[(failure)\] | ||
cs_re_s:red:...\[(error)\] | cs_re_s:red:...\[(error)\] | ||
Revision as of 23:42, 18 January 2007
Multitail Color Schemes
pflog
# multitail -cS pflog -l 'tcpdump -n -s0 -i pflog0' colorscheme:pflog:pflog cs_re:cyan:^[0-9][0-9]:[0-9][0-9]:[0-9][0-9]\.[0-9]+\ cs_re:green:[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+ cs_re_s:yellow:....(\.[0-9]+):\ cs_re_s:yellow:....(\.[0-9]+\ ) cs_re_s:magenta::\ (.*),\ cs_re:red:\ [SRPF]\ cs_re_s:red:length\: (.*)$
ntsyslog
# # Windows (NTsyslog) colorscheme:ntsyslog:Windows NTsyslog cs_re:cyan:^[A-Z][a-z][a-z]\ [0-9][0-9]\ [0-9][0-9]:[0-9][0-9]:[0-9][0-9]\ cs_re_s:magenta:...:[0-9][0-9]\ ([A-Za-z0-9]+) cs_re_s:green:...\[(info)\] cs_re_s:yellow:...\[(warning)\] cs_re_s:red:...\[(failure)\] cs_re_s:red:...\[(error)\]