Events-log4j-parser: Difference between revisions
Jump to navigation
Jump to search
(→Usage) |
(→Usage) |
||
| Line 23: | Line 23: | ||
lg [''command''] [''command options''] [''[[Events-api_Concepts#Query|query]'']] <log-file1> [log-file2 ...] | lg [''command''] [''command options''] [''[[Events-api_Concepts#Query|query]'']] <log-file1> [log-file2 ...] | ||
The command is optional. When the command is missing, the implied command is " | The command is optional. | ||
When the command is missing, the implied command is "output", which works as described here: {{Internal|Events-processing output|output}} | |||
Unless output filtering options are used, the events are displayed in their raw format, which is how they appear in the original log. | |||
Commands: | Commands: | ||
| Line 29: | Line 33: | ||
* help | * help | ||
* version | * version | ||
* [[Events-processing output|output]] | |||
* [[Events-processing#describe|describe]] - displays a description of the events produced as the result of the parsing. | * [[Events-processing#describe|describe]] - displays a description of the events produced as the result of the parsing. | ||
* [[Events-processing#time-gaps|time-gaps]] - identify time gaps in the log | * [[Events-processing#time-gaps|time-gaps]] - identify time gaps in the log | ||
Revision as of 14:06, 28 October 2017
Internal
Overview
A library that produces timed events from log4j logs.
GitHub
Installation
Installs as a command line utility lg-<version>.zip.
TODO
./doc/Events log4j Parser TODO.docx.
Usage
lg [command] [command options] [query] <log-file1> [log-file2 ...]
The command is optional.
When the command is missing, the implied command is "output", which works as described here:
Unless output filtering options are used, the events are displayed in their raw format, which is how they appear in the original log.
Commands:
- help
- version
- output
- describe - displays a description of the events produced as the result of the parsing.
- time-gaps - identify time gaps in the log
- count (-c) - display the number of events that match the query.
- exclude (-x) - filter out the events that match the query, and only display those that do not match. This command is equivalent with the grep --invert-match (-v) option.
For more details about commands (procedures), see:
For more details about the query syntax, see: