Introduction to logpecker

Summary

logpecker is an analysis tool for Unix syslog messages, written for sysadmins. It will find the interesting messages in your pile, like that this disk has SCSI failures, some RAID is now using the spare disk, an NFS server is not responding anymore.

It can notify your tech support people immediately, create summaries for not so important things or directly mail out reminders into your ticketing system, and all this highly configurable.

logpecker is heavily tested on SuSE Linux, but should work well on any POSIX complying Unix-like system that supports Python 2.0 or higher.

Current Status

There is a first downloadable release (v0.1.1). This release has only very limited documentation. While the overall processing will stay similar, usage has shown that the syntax of rule definitions and main configuration will have to change drastically, so consider this as a pre-view. Nonetheless, the code has at least beta quality, I actually use it in our production systems at work without trouble.

This documentation actually describes the next release. I expect to have a beta by the end of October or earlier. Actually, the changes mostly affect how the configuration is parsed.

Features

I know, there are other tools on the market, and a lot can be achieved by grep and awk, but only logpecker has these unique features:

What it's not:

Details

Please continue with the Also available, but hard food if you haven't read the Quick Tour (in recommended order of reading): If you want to compare, here's a link page to other logfile analysis tools.

You probably already know: logpecker is hosted by SourceForge"