thr3ads.net - Logcheck devel - [Logcheck-devel] [PATCH] Added files to ignore non-anomalous vtund log lines [Apr 2014]

If this information is useful, please help other people find it:
Share via:

Harrison Metzger

2014-Apr-11 22:07 UTC

[Logcheck-devel] [PATCH] Added files to ignore non-anomalous vtund log lines

Signed-off-by: Harrison Metzger <harrisonmetz at gmail.com>
---
 rulefiles/linux/ignore.d.server/vtund | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 rulefiles/linux/ignore.d.server/vtund

diff --git a/rulefiles/linux/ignore.d.server/vtund
b/rulefiles/linux/ignore.d.server/vtund
new file mode 100644
index 0000000..b1fa0c4
--- /dev/null
+++ b/rulefiles/linux/ignore.d.server/vtund
@@ -0,0 +1,4 @@
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ vtund\[[[:digit:]]+\]: Use SSL-aware
challenge/response$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ vtund\[[[:digit:]]+\]: Session
[_[:alnum:]]+\[[[:digit:]]+(.[[:digit:]]+){3}:[[:digit:]]{1,5}\] opened$
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ vtund\[[[:digit:]]+\]: Connection reset by
peer \([[:digit:]]+\)
+^\w{3} [ :0-9]{11} [._[:alnum:]-]+ vtund\[[[:digit:]]+\]: Session [_[:alnum:]]+
closed$
-- 
1.9.1

Logcheck devel - Apr 2014 - [PATCH] Added files to ignore non-anomalous vtund log lines

[Logcheck-devel] [PATCH] Added files to ignore non-anomalous vtund log lines