zcat mail.log.gz | pflogsumm.pl

Thanks Ralf. Just to make it clear for me (as im not a linux bod, gimme
a start menu any day:) ), I currently use:

/usr/bin/pflogsumm.pl /var/log/maillog <switches go here>

Can I just use

zcat mail.log.gz | pflogsumm.pl <switches go here>

In its place in crontab ?

-----Original Message-----
From: Ralf Hildebrandt [mailto:***@charite.de]
Sent: 29 July 2005 12:28
To: postfix-***@postfix.org
Subject: Re: Pflogsumm and gzip'd logs
everything.
zcat mail.log.gz | pflogsumm.pl

zcat /path/to/log.gz | pflogsumm

Cami

Thanks Ralf. Just to make it clear for me (as im not a linux bod, gimme
a start menu any day:) ), I currently use:

/usr/bin/pflogsumm.pl /var/log/maillog <switches go here>

Can I just use

zcat mail.log.gz | pflogsumm.pl <switches go here>

In its place in crontab ?

-----Original Message-----
From: Ralf Hildebrandt [mailto:***@charite.de]
Sent: 29 July 2005 12:28
To: postfix-***@postfix.org
Subject: Re: Pflogsumm and gzip'd logs
everything.
zcat mail.log.gz | pflogsumm.pl

I have the problem where my logs rotate (and compress) a couple times a day,
so I made a script to concatenate the 3 latest log files (or however many
that will insure you get a couple days worth of data), called it pflogsumm,
placed it in /etc/cron.daily and made it executable. I'm sure this could be
optimized a little better.

#!/bin/sh
zcat /var/log/mail.log.1.gz >/var/log/maillog1
zcat /var/log/mail.log.2.gz >/var/log/maillog2
cat /var/log/mail.log /var/log/mail.log.0 /var/log/maillog1
/var/log/maillog2 >/var/log/maillog4
/usr/sbin/pflogsumm.pl -i -d yesterday --problems_first /var/log/maillog4
2>&1 |/usr/bin/mail -s "DAILY mail summary" root
rm /var/log/maillog1
rm /var/log/maillog2
rm /var/log/maillog4

This example will wrap, see it unwrapped here:
http://www200.pair.com/mecham/spam/pflogsumm

D.J. Fan

_________________________________________________________________
Don’t just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/

No, the problem with that is this:
# zcat /var/log/mail.log
zcat: /var/log/mail.log: not in gzip format
That is the reason the script was needed.

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today - it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

Thanks Dan. Ordinarily that would be the perfect answer to my prob, but
it would just use too much disk space. I reckon that two days worth
would use up about 1.5gb of space,which is just too much at the moment.

-----Original Message-----
From: D.J. Fan [mailto:***@hotmail.com]
Sent: 29 July 2005 15:13
To: postfix-***@postfix.org
Subject: Re: Pflogsumm and gzip'd logs
I have the problem where my logs rotate (and compress) a couple times a
day, so I made a script to concatenate the 3 latest log files (or
however many that will insure you get a couple days worth of data),
called it pflogsumm, placed it in /etc/cron.daily and made it
executable. I'm sure this could be optimized a little better.

#!/bin/sh
zcat /var/log/mail.log.1.gz >/var/log/maillog1 zcat
/var/log/mail.log.2.gz >/var/log/maillog2 cat /var/log/mail.log
/var/log/mail.log.0 /var/log/maillog1
/var/log/maillog2 >/var/log/maillog4
/usr/sbin/pflogsumm.pl -i -d yesterday --problems_first
/var/log/maillog4
2>&1 |/usr/bin/mail -s "DAILY mail summary" root
rm /var/log/maillog1
rm /var/log/maillog2
rm /var/log/maillog4

This example will wrap, see it unwrapped here:
http://www200.pair.com/mecham/spam/pflogsumm

D.J. Fan

_________________________________________________________________
Don't just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/

Try adding the option -f or --force to the zcat command. That should
allow zcat to "act" like cat when faced with uncompressed files.


Jaime Bozza

Thanks Ralf and Jaime, this trims it down, and works great for me:

zcat -f /var/log/mail.log /var/log/mail.log.0 /var/log/mail.log.1.gz
/var/log/mail.log.2.gz |/usr/sbin/pflogsumm.pl -i -d yesterday
--problems_first 2>&1 |/usr/bin/mail -s "DAILY mail summary" root

I have no idea if large amounts of disk space are still temporarily used
during the unpack process.

D.J. Fan

_________________________________________________________________
Don’t just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/

Can't logrotate call a script instead of gzip that would first call
pflogsumm and then gzip and rotate logs?

Mine apparently can, it allows to specify a compress command, and that's
the hook where you haul your pflogsumm aboard.

That's great, thanks for checking that out Magnus.

It does not matter to pflogsumm, but I thought I would mention that to
maintain correct chronological order, I found the order of the files should
be reversed.

zcat -f mail.log.2.gz mail.log.1.gz mail.log.0 mail.log

_________________________________________________________________
Don’t just search. Find. Check out the new MSN Search!
http://search.msn.click-url.com/go/onm00200636ave/direct/01/