脚本的主要功能便是完成了,关于一个设备的日志文件信息过滤,抓取需求的字段,然后刺进数据库,用perl言语完成起来很是便利,合作crontab运用,更是强壮!!
文件一条记载:Jun 4 05:08:46 194.168.0.8 61: %SYS-5-CONFIG_I: Configured from console by vty0 (194.168.0.444)
正则:(S+s+d+s+S+)s+(d+.d+.d+.d+)sS+:s+%(S+):s+(.*)
脚本源码
:
#!/usr/bin/perl
use DBI;
my $log_record;
my @log_arry;
my $log_path;
my $date;
my $ip;
my $type;
my $desc;
my $line;
$log_path=/var/log/sourcep.log;
`/etc/init.d/sysklogd stop`;
`mv /var/log/source.log /var/log/sourcep.logtouch /var/log/source.log`;
`/etc/init.d/sysklogd start`;
my $db=dbi:mysql:dbname=xxxx;
my $dbh= DBI->connect($db,root,xxxx,{\’RaiseError\’=>1,\’AutoCommit\’=>0}) or die Can\’t connect to DB:.DBI->errstr;
my $sql=$dbh->prepare(q{INSERT INTO tbl_device(date,ip,type,descon) VALUES (?,?,?,?)});
my ($date,$ip,$type,$desc);
if (open(log_1,$log_path)){
eval{
while($line=
foreach($line){
/(S+s+d+s+S+)s+(d+.d+.d+.d+)sS+:s+%(S+):s+(.*)/ and do{
$date= $1;
$ip = $2;
$type= $3;
$desc= $4;
};# end do
$sql->execute($date,$ip,$type,$desc);
print ($datet.$ipt.$typet.$descn);
} # end for
} # end while
$dbh->commit();
} # end eval
} # end if
if($EVAL_ERROR){
print Transaction aborted: ,$EVAL_ERROR,n;
$dbh->rollback();
} # end local if
$dbh->disconnect();
`rm /var/log/sourcep.log`;
