« February 2010 | Main | April 2009 »
Saturday, June 27, 2009
Friday, June 19, 2009
Log reader and parser for pf
I am working on a new parser and reporting tool for Open/FreeBSD to parse and build reports based on the following log file.
Jun 19 05:10:02 gandalf pf: Jun 19 05:09:04.736659 rule 49/(match) pass out on dc1: 71.62.139.73.17159 > 96.17.171.19.80: S 2165519495:2165519495(0) win 16384 <mss 1460,nop,nop,sackOK,nop,wscale 0,[|tcp]> (DF)
this is a pipe command right now to get the logged entries into this format, and i will soon build a OS X interface to pull the data right from the firewall. I am still thinking of wether to write it in Obj-C or Realbasic. Looking at the toolsets avail for both.