Mercurial > syslog2iptables
comparison syslog2iptables.conf @ 4:2737ab01659a
initial coding
| author | carl |
|---|---|
| date | Thu, 01 Dec 2005 17:17:37 -0800 |
| parents | 8fe310e5cd44 |
| children | 276c4edc8521 |
comparison
equal
deleted
inserted
replaced
| 3:8fe310e5cd44 | 4:2737ab01659a |
|---|---|
| 5 205.147.40.32/26; // 510sg | 5 205.147.40.32/26; // 510sg |
| 6 205.147.0.100/24; // digilink | 6 205.147.0.100/24; // digilink |
| 7 205.147.39.128/25; // ams | 7 205.147.39.128/25; // ams |
| 8 }; | 8 }; |
| 9 | 9 |
| 10 file "/var/log/cisco.log" { | 10 file "mycisco.log" { |
| 11 pattern "Internet_Firewall denied (tcp|udp) ([^(]*)" { | 11 pattern "Internet_Firewall denied (tcp|udp) ([^(]*)" { |
| 12 index 2; // zero based | 12 index 2; // zero based |
| 13 bucket 200; | 13 bucket 200; |
| 14 }; | 14 }; |
| 15 }; | 15 }; |
| 16 | 16 |
| 17 file "messages.log" { | 17 file "mymessages.log" { |
| 18 pattern "sshd.pam_unix.*authentication failure.*rhost=(.*) user=" { | 18 pattern "sshd.pam_unix.*authentication failure.*rhost=(.*) user=" { |
| 19 index 1; // zero based | 19 index 1; // zero based |
| 20 bucket 300; | 20 bucket 300; |
| 21 }; | 21 }; |
| 22 pattern "sshd.pam_unix.*authentication failure.*rhost=(.*)$" { | 22 pattern "sshd.pam_unix.*authentication failure.*rhost=(.*)$" { |