56 lines
1.5 KiB
Markdown
56 lines
1.5 KiB
Markdown
|
# 按照要求编写脚本,统计日志数据
|
|||
|
|
|
|||
|
|
| ID | Creation Date | Assignee | Status |
|
|||
|
|
|----|----------------|----------|--------|
|
|||
|
|
| OSS-124 | 2020-06-04T13:35:18.000+0800 | 贾依蒙 | 完成 |
|
|||
|
|
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
注意该任务结束时间 2020-06-05上午
|
|||
|
|
|
|||
|
|
登录信息港服务器192.168.40.182,进入目录/home/wangyan,下载日志压缩包disflow.log.zip
|
|||
|
|
|
|||
|
|
解压缩后为每台处理机的日志的压缩包
|
|||
|
|
|
|||
|
|
!image-2020-06-04-13-24-18-682.png!
|
|||
|
|
|
|||
|
|
需求:
|
|||
|
|
|
|||
|
|
1、编写脚本,解压日志压缩包到指定目录(例如10.112.14.1-disflow.log.zip解压到当前目录10.112.14.1目录下)
|
|||
|
|
|
|||
|
|
2、解压缩后的日志文件disflow.log.2020-06-02替换名称为 处理机ip-disflow.log,例如10.112.14.1-disflow.log
|
|||
|
|
|
|||
|
|
3、按照如下要求统计日志,时间过滤15:30-18:00
|
|||
|
|
|
|||
|
|
!image-2020-06-04-13-02-34-283.png!
|
|||
|
|
|
|||
|
|
说明:
|
|||
|
|
|
|||
|
|
1、日志中dir字段有1,2,3三个值,其中dir=3为双向流,dir=1为CtoS流量,dir=2为StoC流量,即为单向流
|
|||
|
|
|
|||
|
|
2、四元组:源IP+源端口+目的IP+目的端口
|
|||
|
|
|
|||
|
|
3、二元组:源IP+目的IP
|
|||
|
|
|
|||
|
|
4、例如日志中line150:addr:36.37.195.226,17979,101.226.211.106,80,源IP为36.37.195.226,源端口为17979,目的IP为101.226.211.106,目的端口为80**jiayimeng** commented on *2020-06-08T16:48:59.388+0800*:
|
|||
|
|
|
|||
|
|
网研数据统计 b(2元组在在前端机的稳定性)的脚本还在运行中
|
|||
|
|
|
|||
|
|
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
|
|||
|
|
|
|||
|
|
## Attachments
|
|||
|
|
|
|||
|
|
**11644/image-2020-06-04-13-02-34-283.png**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|
|||
|
|
**11643/image-2020-06-04-13-24-18-682.png**
|
|||
|
|
|
|||
|
|
---
|
|||
|
|
|