SARG & squid logs.
Vyacheslav Druzhinin
dvg_lab at mail.ru
Thu Feb 3 22:17:02 PST 2005
Hello freebsd-questions,
The Sarg log analiser can't find any records when I use -d flag.
freebsd# sarg -n -d 22/01/2005-23/01/2005 -l access.log
When I run sarg as:
freebsd# sarg -n -l access.log
it works fine.
Here some printout, sorry for big size.
freebsd# sarg -d 29/01/2005-29/01/2005 -l log.100 -o \
/home/dvg/stat/log/out -z -x -m
SYSCONFDIR # sarg.conf
SYSCONFDIR #
SYSCONFDIR # TAG: language
SYSCONFDIR # Available languages:
SYSCONFDIR # Bulgarian_windows1251
SYSCONFDIR # Catalan
SYSCONFDIR # Czech
SYSCONFDIR # Dutch
SYSCONFDIR # English
SYSCONFDIR # French
SYSCONFDIR # German
SYSCONFDIR # Hungarian
SYSCONFDIR # Indonesian
SYSCONFDIR # Italian
SYSCONFDIR # Japanese
SYSCONFDIR # Latvian
SYSCONFDIR # Polish
SYSCONFDIR # Portuguese
SYSCONFDIR # Romanian
SYSCONFDIR # Russian_koi8
SYSCONFDIR # Russian_windows1251
SYSCONFDIR # Serbian
SYSCONFDIR # Spanish
SYSCONFDIR # Turkish
SYSCONFDIR #
SYSCONFDIR language English
SYSCONFDIR # Russian_windows1251
SYSCONFDIR #language English
SYSCONFDIR
SYSCONFDIR # TAG: access_log file
SYSCONFDIR # Where is the access.log file
SYSCONFDIR # sarg -l file
SYSCONFDIR #
SYSCONFDIR access_log /var/squid/logs/access.log.0
SYSCONFDIR #access_log /home/dvg/stat/log/out.log.1
SYSCONFDIR
SYSCONFDIR # TAG: graphs yes|no
SYSCONFDIR # Use graphics where is possible.
SYSCONFDIR # graph_days_bytes_bar_color blue|green|yellow|orange|brown|red
SYSCONFDIR #
SYSCONFDIR graphs yes
SYSCONFDIR graph_days_bytes_bar_color orange
SYSCONFDIR
SYSCONFDIR # TAG: title
SYSCONFDIR # Especify the title for html page.
SYSCONFDIR #
SYSCONFDIR title "TJ Collection Internet Access Reports"
SYSCONFDIR
SYSCONFDIR # TAG: font_face
SYSCONFDIR # Especify the font for html page.
SYSCONFDIR #
SYSCONFDIR #font_face Tahoma,Verdana,Arial
SYSCONFDIR
SYSCONFDIR # TAG: header_color
SYSCONFDIR # Especify the header color
SYSCONFDIR #
SYSCONFDIR #header_color darkblue
SYSCONFDIR
SYSCONFDIR # TAG: header_bgcolor
SYSCONFDIR # Especify the header bgcolor
SYSCONFDIR #
SYSCONFDIR #header_bgcolor blanchedalmond
SYSCONFDIR
SYSCONFDIR # TAG: font_size
SYSCONFDIR # Especify the text font size
SYSCONFDIR #
SYSCONFDIR #font_size 9px
SYSCONFDIR
SYSCONFDIR # TAG: header_font_size
SYSCONFDIR # Especify the header font size
SYSCONFDIR #
SYSCONFDIR #header_font_size 9px
SYSCONFDIR
SYSCONFDIR # TAG: title_font_size
SYSCONFDIR # Especify the title font size
SYSCONFDIR #
SYSCONFDIR #title_font_size 11px
SYSCONFDIR
SYSCONFDIR # TAG: background_color
SYSCONFDIR # TAG: background_color
SYSCONFDIR # Html page background color
SYSCONFDIR #
SYSCONFDIR # background_color white
SYSCONFDIR
SYSCONFDIR # TAG: text_color
SYSCONFDIR # Html page text color
SYSCONFDIR #
SYSCONFDIR #text_color #000000
SYSCONFDIR
SYSCONFDIR # TAG: text_bgcolor
SYSCONFDIR # Html page text background color
SYSCONFDIR #
SYSCONFDIR #text_bgcolor lavender
SYSCONFDIR
SYSCONFDIR # TAG: title_color
SYSCONFDIR # Html page title color
SYSCONFDIR #
SYSCONFDIR #title_color green
SYSCONFDIR
SYSCONFDIR # TAG: logo_image
SYSCONFDIR # Html page logo.
SYSCONFDIR #
SYSCONFDIR #logo_image none
SYSCONFDIR
SYSCONFDIR # TAG: logo_text
SYSCONFDIR # Html page logo text.
SYSCONFDIR #
SYSCONFDIR #logo_text ""
SYSCONFDIR
SYSCONFDIR # TAG: logo_text_color
SYSCONFDIR # Html page logo texti color.
SYSCONFDIR #
SYSCONFDIR #logo_text_color #000000
SYSCONFDIR
SYSCONFDIR # TAG: logo_image_size
SYSCONFDIR # Html page logo image size.
SYSCONFDIR # width height
SYSCONFDIR #
SYSCONFDIR #image_size 80 45
SYSCONFDIR
SYSCONFDIR # TAG: background_image
SYSCONFDIR # Html page background image
SYSCONFDIR #
SYSCONFDIR #background_image none
SYSCONFDIR
SYSCONFDIR # TAG: password
SYSCONFDIR # User password file used by authentication
SYSCONFDIR # If used here, reports will be generated only for that users.
SYSCONFDIR #
SYSCONFDIR #password none
SYSCONFDIR
SYSCONFDIR # TAG: temporary_dir
SYSCONFDIR # Temporary directory name for work files
SYSCONFDIR # sarg -w dir
SYSCONFDIR #
SYSCONFDIR temporary_dir /var/tmp
SYSCONFDIR
SYSCONFDIR # TAG: output_dir
SYSCONFDIR # The reports will be saved in that directory
SYSCONFDIR # sarg -o dir
SYSCONFDIR #
SYSCONFDIR output_dir /home/www/htdocs/sarg
SYSCONFDIR
SYSCONFDIR # TAG: output_email
SYSCONFDIR # Email address to send the reports. If you use this tag, no html reports will be generated.
SYSCONFDIR # sarg -e email
SYSCONFDIR #
SYSCONFDIR #output_email root at ns.tjc.ru
SYSCONFDIR
SYSCONFDIR # TAG: resolve_ip yes/no
SYSCONFDIR # Convert ip address to dns name
SYSCONFDIR # sarg -n
SYSCONFDIR resolve_ip yes
SYSCONFDIR
SYSCONFDIR # TAG: user_ip yes/no
SYSCONFDIR # Use Ip Address instead userid in reports.
SYSCONFDIR # sarg -p
SYSCONFDIR user_ip yes
SYSCONFDIR
SYSCONFDIR # TAG: topuser_sort_field field normal/reverse
SYSCONFDIR # Sort field for the Topuser Report.
SYSCONFDIR # Allowed fields: USER CONNECT BYTES TIME
SYSCONFDIR #
SYSCONFDIR #topuser_sort_field BYTES reverse
SYSCONFDIR
SYSCONFDIR # TAG: user_sort_field field normal/reverse
SYSCONFDIR # Sort field for the User Report.
SYSCONFDIR # Allowed fields: SITE CONNECT BYTES TIME
SYSCONFDIR #
SYSCONFDIR #user_sort_field BYTES reverse
SYSCONFDIR
SYSCONFDIR # TAG: exclude_users file
SYSCONFDIR # users within the file will be excluded from reports.
SYSCONFDIR # you can use indexonly to have only index.html file.
SYSCONFDIR #
SYSCONFDIR #exclude_users /usr/local/etc/sarg/exclude_hosts
SYSCONFDIR
SYSCONFDIR # TAG: exclude_hosts file
SYSCONFDIR # Hosts, domains or subnets will be excluded from reports.
SYSCONFDIR #
SYSCONFDIR # Eg.: 192.168.10.10 - exclude ip address only
SYSCONFDIR # 192.168.10.0 - exclude full C class
SYSCONFDIR # s1.acme.foo - exclude hostname only
SYSCONFDIR # acme.foo - exclude full domain name
SYSCONFDIR #
SYSCONFDIR #exclude_hosts /usr/local/etc/sarg/host
SYSCONFDIR
SYSCONFDIR # TAG: useragent_log file
SYSCONFDIR # Put here where is useragent.log to nable useragent report.
SYSCONFDIR #
SYSCONFDIR #useragent_log none
SYSCONFDIR
SYSCONFDIR # TAG: date_format
SYSCONFDIR # Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww)
SYSCONFDIR #
SYSCONFDIR date_format e
SYSCONFDIR
SYSCONFDIR # TAG: per_user_limit file MB
SYSCONFDIR # Saves userid on file if download exceed n MB.
SYSCONFDIR # This option allow you to disable user access if user exceed a download limit.
SYSCONFDIR #
SYSCONFDIR #per_user_limit none
SYSCONFDIR
SYSCONFDIR # TAG: lastlog n
SYSCONFDIR # How many reports files must be keept in reports directory.
SYSCONFDIR # The oldest report file will be automatically removed.
SYSCONFDIR # 0 - no limit.
SYSCONFDIR #
SYSCONFDIR #lastlog 0
SYSCONFDIR
SYSCONFDIR # TAG: remove_temp_files yes
SYSCONFDIR # Remove temporary files: geral, usuarios, top, periodo from root report directory.
SYSCONFDIR #
SYSCONFDIR #remove_temp_files yes
SYSCONFDIR
SYSCONFDIR # TAG: index yes|no|only
SYSCONFDIR # Generate the main index.html.
SYSCONFDIR # only - generate only the main index.html
SYSCONFDIR #
SYSCONFDIR #index yes
SYSCONFDIR
SYSCONFDIR # TAG: overwrite_report yes|no
SYSCONFDIR # yes - if report date already exist then will be overwrited.
SYSCONFDIR # no - if report date already exist then will be renamed to filename.n, filename.n+1
SYSCONFDIR #
SYSCONFDIR #overwrite_report yes
SYSCONFDIR
SYSCONFDIR # TAG: records_without_userid ignore|ip|everybody
SYSCONFDIR # What can I do with records without user id (no authentication) in access.log file ?
SYSCONFDIR #
SYSCONFDIR # ignore - This record will be ignored.
SYSCONFDIR # ip - Use ip address instead. (default)
SYSCONFDIR # everybody - Use "everybody" instead.
SYSCONFDIR #
SYSCONFDIR #records_without_userid ip
SYSCONFDIR
SYSCONFDIR # TAG: use_comma no|yes
SYSCONFDIR # Use comma instead point in reports.
SYSCONFDIR # Eg.: use_comma yes => 23,450,110
SYSCONFDIR # use_comma no => 23.450.110
SYSCONFDIR #
SYSCONFDIR #use_comma no
SYSCONFDIR
SYSCONFDIR # TAG: mail_utility mail|mailx
SYSCONFDIR # Mail command to use to send reports via SMTP
SYSCONFDIR #
SYSCONFDIR #mail_utility mailx
SYSCONFDIR
SYSCONFDIR # TAG: topsites_num n
SYSCONFDIR # How many sites in topsites report.
SYSCONFDIR #
SYSCONFDIR topsites_num 100
SYSCONFDIR
SYSCONFDIR # TAG: topsites_sort_order CONNECT|BYTES A|D
SYSCONFDIR # Sort for topsites report, where A=Ascendent, D=Descendent
SYSCONFDIR #
SYSCONFDIR #topsites_sort_order CONNECT D
SYSCONFDIR
SYSCONFDIR # TAG: index_sort_order A/D
SYSCONFDIR # Sort for index.html, where A=Ascendent, D=Descendent
SYSCONFDIR #
SYSCONFDIR #index_sort_order D
SYSCONFDIR
SYSCONFDIR # TAG: exclude_codes file
SYSCONFDIR # Ignore records with these codes. Eg.: NONE/400
SYSCONFDIR #
SYSCONFDIR #exclude_codes /usr/local/sarg/exclude_codes
SYSCONFDIR
SYSCONFDIR # TAG: replace_index string
SYSCONFDIR # Replace "index.html" in the main index file with this string
SYSCONFDIR # If null "index.html" is used
SYSCONFDIR #
SYSCONFDIR #replace_index <?php echo str_replace(".", "_", $REMOTE_ADDR); echo ".html"; ?>
SYSCONFDIR
SYSCONFDIR # TAG: max_elapsed milliseconds
SYSCONFDIR # If elapsed time is recorded in log is greater than max_elapsed use 0 for elapsed time.
SYSCONFDIR # Use 0 for no checking
SYSCONFDIR #
SYSCONFDIR #max_elapsed 0
SYSCONFDIR # 8 Hours
SYSCONFDIR max_elapsed 28800000
SYSCONFDIR
SYSCONFDIR # TAG: report_type type
SYSCONFDIR # What kind of reports to generate.
SYSCONFDIR # topsites - shows the site, connect and bytes
SYSCONFDIR # sites_users - shows which users were accessing a site
SYSCONFDIR # users_sites - shows sites accessed by the user
SYSCONFDIR # date_time - shows the amount of bytes used by day and hour
SYSCONFDIR # denied - shows all denied sites with full URL
SYSCONFDIR # auth_failures - shows autentication failures
SYSCONFDIR # site_user_time_date - shows sites, dates, times and bytes
SYSCONFDIR #
SYSCONFDIR # Eg.: report_type topsites denied
SYSCONFDIR #
SYSCONFDIR #report_type topsites sites_users users_sites date_time denied auth_failures site_user_time_date
SYSCONFDIR report_type topsites sites_users users_sites date_time denied auth_failures
SYSCONFDIR
SYSCONFDIR # TAG: usertab filename
SYSCONFDIR # You can change the "userid" or the "ip address" to be a real user name on the rpeorts.
SYSCONFDIR # Table syntax:
SYSCONFDIR # userid name or ip address name
SYSCONFDIR # Eg:
SYSCONFDIR # SirIsaac Isaac Newton
SYSCONFDIR # vinci Leonardo da Vinci
SYSCONFDIR # 192.168.10.1 Karol Wojtyla
SYSCONFDIR #
SYSCONFDIR # Each line must be terminated with '\n'
SYSCONFDIR #
SYSCONFDIR #usertab none
SYSCONFDIR
SYSCONFDIR # TAG: long_url yes|no
SYSCONFDIR # If yes, the full url is showed in report.
SYSCONFDIR # If no, only the site will be showed
SYSCONFDIR #
SYSCONFDIR # YES option generate very big sort files and reports.
SYSCONFDIR #
SYSCONFDIR #long_url yes
SYSCONFDIR
SYSCONFDIR # TAG: date_time_by bytes|elap
SYSCONFDIR # Date/Time reports will use bytes or elapsed time?
SYSCONFDIR #
SYSCONFDIR #date_time_by bytes
SYSCONFDIR
SYSCONFDIR # TAG: charset name
SYSCONFDIR # ISO 8859 is a full series of 10 standardized multilingual single-byte coded (8bit)
SYSCONFDIR # graphic character sets for writing in alphabetic languages
SYSCONFDIR # You can use the following charsets:
SYSCONFDIR # Latin1 - West European
SYSCONFDIR # Latin2 - East European
SYSCONFDIR # Latin3 - South European
SYSCONFDIR # Latin4 - North European
SYSCONFDIR # Cyrillic
SYSCONFDIR # Arabic
SYSCONFDIR # Greek
SYSCONFDIR # Hebrew
SYSCONFDIR # Latin5 - Turkish
SYSCONFDIR # Latin6
SYSCONFDIR # Windows-1251
SYSCONFDIR # Koi8-r
SYSCONFDIR #
SYSCONFDIR #charset Latin1
SYSCONFDIR # Windows-1251
SYSCONFDIR
SYSCONFDIR # TAG: user_invalid_char "&/"
SYSCONFDIR # Records that contain invalid characters in userid will be ignored by Sarg.
SYSCONFDIR #
SYSCONFDIR #user_invalid_char "&/"
SYSCONFDIR
SYSCONFDIR # TAG: privacy yes|no
SYSCONFDIR # privacy_string "***.***.***.***"
SYSCONFDIR # privacy_string_color blue
SYSCONFDIR # In some countries the sysadm cannot see the visited sites by a restrictive law.
SYSCONFDIR # Using privacy yes the visited url will be changes by privacy_string and the link
SYSCONFDIR # will be removed from reports.
SYSCONFDIR #
SYSCONFDIR #privacy no
SYSCONFDIR #privacy_string "***.***.***.***"
SYSCONFDIR #privacy_string_color blue
SYSCONFDIR
SYSCONFDIR # TAG: include_users "user1:user2:...:usern"
SYSCONFDIR # Reports will be generated only for listed users.
SYSCONFDIR #
SYSCONFDIR #include_users none
SYSCONFDIR
SYSCONFDIR # TAG: exclude_string "string1:string2:...:stringn"
SYSCONFDIR # Records from access.log file that contain one of listed strings will be ignored.
SYSCONFDIR #
SYSCONFDIR #exclude_string none
SYSCONFDIR
SYSCONFDIR # TAG: show_successful_message yes|no
SYSCONFDIR # Shows "Successful report generated on dir" at end of process.
SYSCONFDIR #
SYSCONFDIR #show_successful_message yes
SYSCONFDIR
SYSCONFDIR # TAG: show_read_statistics yes|no
SYSCONFDIR # Shows some reading statistics.
SYSCONFDIR #
SYSCONFDIR #show_read_statistics yes
SYSCONFDIR
SYSCONFDIR # TAG: topuser_fields
SYSCONFDIR # Which fields must be in Topuser report.
SYSCONFDIR #
SYSCONFDIR #topuser_fields NUM DATE_TIME USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
SYSCONFDIR
SYSCONFDIR # TAG: user_report_fields
SYSCONFDIR # Which fields must be in User report.
SYSCONFDIR #
SYSCONFDIR #user_report_fields CONNECT BYTES %BYTES IN-CACHE-OUT USED_TIME MILISEC %TIME TOTAL AVERAGE
SYSCONFDIR
SYSCONFDIR # TAG: topuser_num n
SYSCONFDIR # How many users in topsites report. 0 = no limit
SYSCONFDIR #
SYSCONFDIR topuser_num 100
SYSCONFDIR
SYSCONFDIR # TAG: site_user_time_date_type list|table
SYSCONFDIR # generate reports for site_user_time_date in list or table format
SYSCONFDIR #
SYSCONFDIR #site_user_time_date_type table
SYSCONFDIR
SYSCONFDIR # TAG: datafile file
SYSCONFDIR # Save the report results in a file to populate some database
SYSCONFDIR #
SYSCONFDIR #datafile none
SYSCONFDIR #datafile /tmp/p8
SYSCONFDIR
SYSCONFDIR # TAG: datafile_delimiter ";"
SYSCONFDIR # ascii character to use as a field separator in datafile
SYSCONFDIR #
SYSCONFDIR #datafile_delimiter ";"
SYSCONFDIR
SYSCONFDIR # TAG: datafile_fields all
SYSCONFDIR # Which data fields must be in datafile
SYSCONFDIR # user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
SYSCONFDIR #
SYSCONFDIR #datafile_fields user;date;time;url;connect;bytes;in_cache;out_cache;elapsed
SYSCONFDIR
SYSCONFDIR # TAG: weekdays
SYSCONFDIR # The weekdays to take account ( Sunday->0, Saturday->6 )
SYSCONFDIR # Example:
SYSCONFDIR #weekdays 1-3,5
SYSCONFDIR # Default:
SYSCONFDIR #weekdays 0-6
SYSCONFDIR
SYSCONFDIR # TAG: hours
SYSCONFDIR # The hours to take account
SYSCONFDIR # Example:
SYSCONFDIR #hours 7-12,14,16,18-20
SYSCONFDIR # Default:
SYSCONFDIR #hours 0-23
SYSCONFDIR
SYSCONFDIR # TAG: squidguard_conf file
SYSCONFDIR # path to squidGuard.conf file
SYSCONFDIR # Generate reports from SquidGuard logs.
SYSCONFDIR # Use 'none' to disable.
SYSCONFDIR # squidguard_conf /usr/local/squidGuard/squidGuard.conf
SYSCONFDIR #
SYSCONFDIR #squidguard_conf none
SYSCONFDIR
SYSCONFDIR # TAG: squidguard_log_format
SYSCONFDIR # Format string SquidGuard logs.
SYSCONFDIR # REJIK #year#-#mon#-#day# #hour# #list#:#tmp# #ip# #user# #tmp#/#tmp#/#url#/#end#
SYSCONFDIR # SQUIDGUARD #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
SYSCONFDIR #squidguard_log_format #year#-#mon#-#day# #hour# #tmp#/#list#/#tmp#/#tmp#/#url#/#tmp# #ip#/#tmp# #user# #end#
SYSCONFDIR
SYSCONFDIR # TAG: show_sarg_info yes|no
SYSCONFDIR # shows sarg information and site path on each report bottom
SYSCONFDIR #
SYSCONFDIR #show_sarg_info yes
SYSCONFDIR
SYSCONFDIR # TAG: show_sarg_logo yes|no
SYSCONFDIR # shows sarg logo
SYSCONFDIR #
SYSCONFDIR show_sarg_logo no
SYSCONFDIR
SYSCONFDIR # TAG: parsed_output_log directory
SYSCONFDIR # Saves the processed log in a sarg format after parsing the squid log file.
SYSCONFDIR # This is a way to dump all of the data structures out, after parsing from
SYSCONFDIR # the logs (presumably this data will be much smaller than the log files themselves),
SYSCONFDIR # and pull them back in for later processing and merging with data from previous logs.
SYSCONFDIR #
SYSCONFDIR parsed_output_log /var/log/sarg
SYSCONFDIR
SYSCONFDIR # TAG parsed_output_log_compress /bin/gzip|/usr/bin/bzip2|nocompress
SYSCONFDIR # sarg logs compress util
SYSCONFDIR #
SYSCONFDIR parsed_output_log_compress /usr/bin/gzip
SYSCONFDIR
SYSCONFDIR # TAG displayed_values bytes|abbreviation
SYSCONFDIR # how the values will be displayed in reports.
SYSCONFDIR # eg. bytes - 209.526
SYSCONFDIR # abbreviation - 210K
SYSCONFDIR #
SYSCONFDIR displayed_values abbreviation
SYSCONFDIR
SYSCONFDIR # Report limits
SYSCONFDIR # TAG authfail_report_limit n
SYSCONFDIR # TAG denied_report_limit n
SYSCONFDIR # TAG siteusers_report_limit n
SYSCONFDIR # TAG squidguard_report_limit n
SYSCONFDIR # TAG user_report_limit n
SYSCONFDIR # report limits (lines).
SYSCONFDIR # '0' no limit
SYSCONFDIR #
SYSCONFDIR #authfail_report_limit 10
SYSCONFDIR #denied_report_limit 10
SYSCONFDIR siteusers_report_limit 100
SYSCONFDIR #squidguard_report_limit 10
SYSCONFDIR user_report_limit 100
SYSCONFDIR
SYSCONFDIR # TAG www_document_root dir
SYSCONFDIR # Where is your Web DocumentRoot
SYSCONFDIR # Sarg will create sarg-php directory with some PHP modules:
SYSCONFDIR # - sarg-squidguard-block.php - add urls from user reports to squidGuard DB
SYSCONFDIR #
SYSCONFDIR www_document_root /usr/local/www
SYSCONFDIR
SYSCONFDIR # TAG block_it module_url
SYSCONFDIR # This tag allow you to pass urls from user reports to a cgi or php module,
SYSCONFDIR # to be blocked by some Squid acl
SYSCONFDIR #
SYSCONFDIR # Eg.: block_it /sarg-php/sarg-block-it.php
SYSCONFDIR # sarg-block-it is a php that will append a url to a flat file.
SYSCONFDIR # You must change /var/www/html/sarg-php/sarg-block-it to point to your file
SYSCONFDIR # in $filename variable, and chown to a httpd owner.
SYSCONFDIR #
SYSCONFDIR # sarg will pass http://module_url?url=url
SYSCONFDIR #
SYSCONFDIR #block_it none
SYSCONFDIR
SYSCONFDIR # TAG external_css_file path
SYSCONFDIR # This tag allow internal sarg css override.
SYSCONFDIR # Sarg use theses style classes:
SYSCONFDIR # .body body class
SYSCONFDIR # .info sarg information class, align=center
SYSCONFDIR # .title title class, align=center
SYSCONFDIR # .header header class, align:left
SYSCONFDIR # .header2 header class, align:right
SYSCONFDIR # .header3 header class, align:right
SYSCONFDIR # .text text class, align:left
SYSCONFDIR # .data table text class, align:right
SYSCONFDIR # .data2 table text class, align:right, border colors
SYSCONFDIR # .link link class
SYSCONFDIR #
SYSCONFDIR # There is a sample in /usr/local/sarg/etc/css.tpl
SYSCONFDIR #
SYSCONFDIR #external_css_file none
SYSCONFDIR
SYSCONFDIR # TAG user_authentication yes|no
SYSCONFDIR # Allow user authentication in User Reports using .htaccess
SYSCONFDIR # Parameters:
SYSCONFDIR # AuthUserFile - where the user password file is
SYSCONFDIR # AuthName - authentication realm. Eg "Members Only"
SYSCONFDIR # AuthType - authenticaion type - basic
SYSCONFDIR # Require - authorized users to see the report.
SYSCONFDIR # %u - user report
SYSCONFDIR #
SYSCONFDIR # user_authentication no
SYSCONFDIR # AuthUserFile /usr/local/sarg/passwd
SYSCONFDIR # AuthName "SARG, Restricted Access"
SYSCONFDIR # AuthType Basic
SYSCONFDIR # Require user admin %u
SYSCONFDIR
SYSCONFDIR # TAG download_suffix "suffix,suffix,...,suffix"
SYSCONFDIR # file suffix to be considered as "download" in Download report.
SYSCONFDIR # Use 'none' to disable.
SYSCONFDIR #
SYSCONFDIR #download_suffix "zip,arj,bzip,gz,ace,doc,iso,adt,bin,cab,com,dot,drv$,lha,lzh,mdb,mso,ppt,rtf,src,shs,sys,exe,dll,mp3,avi,mpg,mpeg"
Parameters:
SARG:
Hostname or IP address (-a) =
Useragent log (-b) =
Exclude file (-c) =
Date from-until (-d) = 29/01/2005-29/01/2005
Email address to send reports (-e) =
Config file (-f) = /usr/local/etc/sarg/sarg.conf
Date format (-g) = Europe (dd/mm/yyyy)
IP report (-i) = No
Input log (-l) = /var/squid/logs/access.log.0
Resolve IP Address (-n) = Yes
Output dir (-o) = /home/dvg/stat/log/out/
Use Ip Address instead of userid (-p) = Yes
Accessed site (-s) =
Time (-t) =
User (-u) =
Temporary dir (-w) = /var/tmp
Debug messages (-x) = Yes
Process messages (-z) = Yes
sarg version: 2.0.2 Nov-22-2004
Language=English
SARG: Records in file: 15, reading: 0.00%
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 339 TCP_HIT/200 0 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 371 TCP_HIT/200 11 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 3946 TCP_HIT/200 1 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 3575 TCP_HIT/200 1 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 404 TCP_HIT/200 1 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=29/01/2005 14:47:37 192_168_200_148 192.168.200.148 www.parter.ru 371 TCP_HIT/200 10 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 18:51:01 192_168_200_27 192.168.200.27 a1683.g.akamai.net 121 TCP_MISS/304 532 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 18:51:01 192_168_200_27 192.168.200.27 a1683.g.akamai.net 121 TCP_MISS/304 34 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 18:51:01 192_168_200_27 192.168.200.27 a1683.g.akamai.net 246 TCP_REFRESH_HIT/304 36 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 21:51:01 192_168_200_27 192.168.200.27 www.grisoft.cz 3805 TCP_MISS/200 363 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 21:51:02 192_168_200_27 192.168.200.27 www.grisoft.cz 764 TCP_MISS/302 346 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 21:51:02 192_168_200_27 192.168.200.27 a1683.g.akamai.net 121 TCP_MISS/304 693 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 21:51:02 192_168_200_27 192.168.200.27 a1683.g.akamai.net 121 TCP_MISS/304 65 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
BUF=30/01/2005 21:51:02 192_168_200_27 192.168.200.27 a1683.g.akamai.net 218 TCP_IMS_HIT/304 1 ""
DATE=29/01/2005-29/01/2005 IDATA=0 DFROM=20050129 DUNTIL=20050129
SARG: Records in file: 15, reading: 0.00%
SARG: Sarg log format
SARG: No record found
SARG: End
With best regards, [MCP, MCSD]
Vyacheslav mailto:dvg_lab at mail.ru
Origin: <--=<< DVG_Lab >>=-->
More information about the freebsd-questions
mailing list