i'm working on a system to discover patterns (text and time) in logs, and am looking for a monitoring/analysis syntax which supports this info. ie- some messages are highly periodic (ie- avg period with small stddev), no news there. some message sequences are time-correlated (a follows b, then c, then d..., with similar avg&stddev stats on each interval). what monitoring/analysis toolsets are available in which one can enumerate and utilize such time-characteristic info? on a more general note, what characteristics are people using and wishing to use in their loganalysis (ie- content via regexps, time-characteristics, interhost cross-correlations, etc)? what syntax does/would support all all aspects we're interested in? thx and g'dday! -- +--------------------------------------------------------------+ | Jon Stearley (505) 845-7571 (FAX 844-2067) | | Compaq Federal LLC High Performance Solutions | | Sandia National Laboratories Scalable Systems Integration | +--------------------------------------------------------------+ --------------------------------------------------------------------- To unsubscribe, e-mail: loganalysis-unsubscribeat_private For additional commands, e-mail: loganalysis-helpat_private
This archive was generated by hypermail 2b30 : Tue Apr 02 2002 - 12:41:42 PST