[ale] Is awk the right tool for this?
Adrin
haswes at mindspring.com
Tue May 7 01:28:12 EDT 2002
>From my working with awk. As long a src= is in the same
place. It wouldn't be to hard. However, I think you could
SED it out faster. An I say that with little knowledge I
have.
-----Original Message-----
From: Kevin Krumwiede [mailto:krum at smyrnacable.net]
To: ale at ale.org
Sent: Tuesday, May 07, 2002 1:04 AM
To: ale at ale.org
Subject: [ale] Is awk the right tool for this?
I want to go through my firewall logs and extract the source
address of
dropped packets. I can't just use cut to get the right
field because of
different flags on the packets. So how do I get just the
token that
begins with "SRC="? I have a feeling awk is the tool for
the job, but I
don't really know how to use it.
grep dropped /var/log/kernel/info | ??? | sort | uniq | ...
Thanks,
Krum
---
This message has been sent through the ALE general
discussion list.
See http://www.ale.org/mailing-lists.shtml for more info.
Problems should be
sent to listmaster at ale dot org.
---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
sent to listmaster at ale dot org.
More information about the Ale
mailing list