[Logcheck-commits] Hannes von Haugwitz: i.d.s/bind: match bind's new syslog line format
Martin F. Krafft
madduck at alioth.debian.org
Fri Jun 11 11:38:13 UTC 2010
Module: logcheck
Branch: lenny-backports
Commit: b3b4e87737404ad8b102b533ebd0632711fe7efd
URL: http://git.debian.org/?p=logcheck/logcheck.git;a=commit;h=b3b4e87737404ad8b102b533ebd0632711fe7efd
Author: Hannes von Haugwitz <hannes at vonhaugwitz.com>
Date: Fri May 21 08:50:00 2010 +0200
i.d.s/bind: match bind's new syslog line format
Signed-off-by: Hannes von Haugwitz <hannes at vonhaugwitz.com>
---
debian/changelog | 2 ++
rulefiles/linux/ignore.d.server/bind | 2 ++
2 files changed, 4 insertions(+), 0 deletions(-)
diff --git a/debian/changelog b/debian/changelog
index 1dfad49..338cb16 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -9,6 +9,8 @@ logcheck (1.3.9) UNRELEASED; urgency=low
- added DM-Upload-Allowed field
* ignore.d.workstation/wpasupplicant:
- match more frequencies in 'Trying to associate' message
+ * ignore.d.server/bind:
+ - added rules to match bind's new syslog line format
[ Hanspeter Kunz ]
* ignore.d.server/dovecot:
diff --git a/rulefiles/linux/ignore.d.server/bind b/rulefiles/linux/ignore.d.server/bind
index 1ce2a17..8c53f96 100644
--- a/rulefiles/linux/ignore.d.server/bind
+++ b/rulefiles/linux/ignore.d.server/bind
@@ -10,3 +10,5 @@
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: client [.:[:xdigit:]]+#[[:digit:]]+: received notify for zone '[-._[:alnum:]]+': TSIG '[-_[:alnum:]]+'$
^\w{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: zone [-._[:alnum:]]+/IN: notify from [.:[:xdigit:]]+#[[:digit:]]+: zone is up to date$
^[[:alpha:]]{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[0-9]+\]: success resolving '[^[:space:]]+' \(in '[.[:alnum:]-]+'\?\) after (disabling EDNS|reducing the advertised EDNS UDP packet size to 512 octets)$
+^[[:alpha:]]{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: error \((FORMERR|connection refused|unexpected RCODE (REFUSED|SERVFAIL)|host unreachable)\) resolving '[^[:space:]]+': [.:[:xdigit:]]+#[[:digit:]]+$
+^[[:alpha:]]{3} [ :[:digit:]]{11} [._[:alnum:]-]+ named\[[[:digit:]]+\]: DNS format error from [.:[:xdigit:]]+#[[:digit:]]+ resolving [^[:space:]]+( for client [.:[:xdigit:]]+#[[:digit:]]+)?: (invalid response|sideways referral)$
More information about the Logcheck-commits
mailing list