Log Parser for linux

linux logging logparser
Sanghyun Lee picture Sanghyun Lee · Jun 16, 2011 · Viewed 13.6k times · Source

Log Parser is great tool for parsing log files. I can parse not just IIS log files but also custom log files with it.

For example I can use SQL syntax to parse logs:

C:\>LogParser "SELECT TimeGenerated, SourceName, 
EventCategoryName, Message INTO report.txt FROM Security WHERE 
EventID = 528 AND SID LIKE '%TESTUSER%'" -resolveSIDs:ON

Is there any tool like that for linux?

Thanks.

Answer

user853433 picture user853433 · Jul 20, 2011

lnav supports SQL queries and supports most of the common Linux log formats. Look at the project's website and documentation page for more details and screenshots.

Related questions

Retrieve last 100 lines logs

I need to retrieve last 100 lines of logs from the log file. I tried the sed command sed -n -e '100,$p' logfilename Please let me know how can I change this command to specifically retrieve the last 100 lines.

Read More
Attach to a processes output for viewing

How would I 'attach' a console/terminal-view to an applications output so I can see what it may be saying? How would I detach from an applications output without killing the application? Normally if you fire up a talkative application …

Read More
Redirecting command output in docker

I want to do some simple logging for my server which is a small Flask app running in a Docker container. Here is the Dockerfile # Dockerfile FROM dreen/flask MAINTAINER dreen WORKDIR /srv # Get source RUN mkdir -p /srv COPY …

Read More