-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Hello!
I am trying to write a regex filter to drop some log entries. Here is what I currently have, but it doesn't seem to work. If I change the regex to simply "192.168.1.2" that does work, but I'm trying to be very granular and would prefer a more complex regex. Any ideas on what is wrong with my syntax? :msg, regex, "warning: hostname sub.domain.tld does not resolve to address 192.168.1.2" stop :msg, regex, "connect from unknown\[11:22:33:44::55\]" stop :msg, regex, "connect from unknown\[192.168.1.2\]" stop Log entries: Jun 6 21:37:09 toaster postfix/smtpd[2855]: warning: hostname sub.domain.tld does not resolve to address 11:22:33:44::55 Jun 6 21:37:09 toaster postfix/smtpd[2855]: connect from unknown[11:22:33:44::55] tia, - -Jim P. -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEE3RmV4WutJ2KyCS2zPcxbabkKGJ8FAmR/p90ACgkQPcxbabkK GJ⫤㿸酃丏頸饟수絟េ赫똞뻧쉵檖ﱈ穜ﶛ멖䆽걐퉞 Q4Q2QXVmLV2gx2EOu/JmCT6RDbg7Ke7IEGt⽌颵叜�쒠۵畁拝樚 V2oTvsn8YjTJUrSgkPQuhsM7MlhhxYxafndNmMuwEEUk54HDNZdMFK/M3oIwy05X l2xQ8eq1/xfonKfcRhZJnHjOBsmOGIsPOWC9SzQISo0YMcaAhwmLcR5hERsHsLhB YanOKlmzbPMyS2jfYSQ8j6vrg䐢澳尃엻븺燠杊檆ḟᨛꛁ� 2OJvp0g3SCvSPTZou6kLwtTI4BUXEky31NZxt3CyXJhVfGq5hgmp8ZSIyiHvSB4b unMg9xhEjkjYE3MtkoQfiUbkkt1VjXoqvk5D2r9HqphtVpN78WAIdmidMsRKeETR WtOXtZcp3ROYGAIvpCH9u78tSSnRgXQhjeDW0qNvutcw6eDeKYdqeYU5jgpPKq8k 4Ex8yIbC/M2jyLsgW/tL1hW8JrfieM01dn/h7L6Wx7itIhlGCZo6oTp5s64bIrLi OCvkjnto6lrKakYyiYo2AqrGH25Z05pLyjDeMvXqeDFo6z9WTsXRKIpLTpEWvkEH ySioyjVRz1pMuZ1TstcocXzz0JCWdAg3Uxw6caBp7RcAqsJ4DDY= =KnsH -----END PGP SIGNATURE-----
_______________________________________________ rsyslog mailing list https://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
