logsentry: update config files

This commit is contained in:
Jérémy Dubois 2024-11-07 10:14:19 +01:00
parent c3999fd120
commit 7d940db291
2 changed files with 24 additions and 14 deletions

View file

@ -60,24 +60,30 @@ bgpd.*: rereading config
bgpd.*: running softreconfig in
bgpd.*: SE reconfigured
bgpd.*: softreconfig in done
cannot forward src .* dst .* nxt .* rcvif .* outif
cannot forward from .* to .* nxt .* received on inteface
collectd.*: exec plugin: Failed to execute ``/usr/local/share/collectd/scripts/bgpd-prefixes.sh'': Bad address
collectd.*: exec plugin: Failed to execute ``/usr/local/share/collectd/scripts/ifq_drops.sh'': Bad address
collectd.*: network plugin: sendto failed: No buffer space available. Closing sending socket.
collectd.*: parse_value: Failed to parse string as gauge: "Active".
collectd.*: parse_value: Failed to parse string as gauge: "Connect".
collectd.*: parse_value: Failed to parse string as gauge: "Idle".
collectd.*: plugin_load: plugin "syslog" successfully loaded.
doas: _collectd ran command /bin/cat /var/log/daemon as root from /var/collectd
doas: _collectd ran command /usr/sbin/bgpctl sh as root from /var/collectd
doas: _collectd ran command /usr/sbin/bgpctl show neighbor as root from /var/collectd
doas: _collectd ran command /usr/sbin/unbound-control stats as root from /var/collectd
doas: _nrpe ran command /sbin/bioctl sd2 as root from /
doas: _nrpe ran command /sbin/bioctl sd. as root from /
doas: _nrpe ran command /usr/local/libexec/nagios
doas: .* ran command su - as root from
doas:.*ran command /usr/share/scripts/evomaintenance.sh as root from
last message repeated .* times
mownitoring.py: Alert sent through email
mownitoring.py: Already known state but still a problem for
mta server-cert-check result="failure"
newsyslog.*logfile turned over
ndp info overwritten for .* by .* on
nrpe.*: Could not read request from client, bailing out...
nrpe.*: Error: Could not complete SSL handshake.
nrpe.*: Error:( \(!log_opts\))? Could not complete SSL handshake(.|with (31.170.8.4|31.170.9.129|51.210.84.146|54.37.106.210|82.65.34.85): 1)
nrpe.*: INFO: SSL Socket Shutdown.
nrpe.*: Client request was invalid, bailing out...
nrpe.*: Error: Request packet type/version was invalid!
@ -85,31 +91,32 @@ ntpd.*: adjusting clock frequency by
ntpd.*: peer 31.170.8.123 now invalid
ntpd.*: peer 31.170.8.123 now valid
ospfd.*recv_packet: authentication error, interface
ospfd.*recv_packet: authentication error, neighbor ID 31.170.10.[0-9]+ interface
pkg_add: Added
pmap_unwire: wiring for pmap .* va .* didn't change!
smtpd.*delivery evpid=.* from=<root@.*.evolix.net> to=
smtpd.*mta cert-check result="valid" fingerprint=
smtpd.*mta connected
smtpd.*mta connecting address=smtp://
smtpd.*mta connecting address=smtp\+tls://
smtpd.*mta delivery evpid=
smtpd.*mta disconnected reason=quit messages=
smtpd.*mta server-cert-check result=
smtpd.*mta server-cert-check result="failure"
smtpd.*mta server-cert-check result="success"
smtpd.*mta tls ciphers=
smtpd.*smtp connected address=127.0.0.1 host=localhost
smtpd.*smtp connected address=local
smtpd.*smtp disconnected reason=quit
smtpd.*smtp envelope evpid=
smtpd.*smtp message msgid=
sshd.*Accepted publickey for.*from 31.170.* port
sshd.*Accepted publickey for.*from 82.65.34.85 port
sshd.*Connection closed by 127.0.0.1 port
sshd.*: Connection closed by authenticating user .* 31.170.* port
sshd.*: Connection closed by authenticating user .* 82.65.34.85 port
sshd.*Accepted publickey for.*from (31.170.*|82.65.34.85) port
sshd.*Accepted password for.*from (31.170.*|82.65.34.85) port
sshd.*: Connection closed by 127.0.0.1 port
sshd.*: Connection closed by( authenticating user .*)? (82.65.34.85|31.170.*) port
sshd.*Connection reset by 127.0.0.1 port
sshd.*Disconnected from user.*31.170.* port
sshd.*Disconnected from user.*82.65.34.85 port
sshd.*Received disconnect from 31.170.* port
sshd.*Received disconnect from 82.65.34.85 port
sshd.*Disconnected from user.*(31.170.*|82.65.34.85) port
sshd.*Received disconnect from (31.170.*|82.65.34.85) port
sudo:.*: a password is required ; TTY=.* ; PWD=/home/.* ; USER=root ; COMMAND=
sudo:.*: TTY=.* ; PWD=/home/.* ; USER=root ; COMMAND=
sudo:.*:( TTY=.* ;)? PWD=/(root|home/.*) ; USER=root ; COMMAND=
syslogd.*restart
unbound:.*info:

View file

@ -13,7 +13,10 @@ smtpd.*mta delivery evpid=
smtpd.*mta disconnected reason=quit messages=
nrpe.*: INFO: SSL Socket Shutdown.
collectd.*: exec plugin: Failed to execute
collectd.*: network plugin: sendto failed: No buffer space available. Closing sending socket.
collectd.*: parse_value: Failed to parse string as gauge: "Active".
collectd.*: parse_value: Failed to parse string as gauge: "Connect".
collectd.*: parse_value: Failed to parse string as gauge: "Idle".
mta server-cert-check result="failure"
cannot forward src .* dst .* nxt .* rcvif .* outif
sudo:.*:( TTY=.* ;)? PWD=/(root|home/.*) ; USER=root ; COMMAND=