红帽全球峰会第 8 章 使用命令行获取目录服务器访问日志
logconv.pl 命令分析目录服务器访问日志,提取用量统计,并计算在命令行中指定的重大事件。logconv.pl 命令显示一组操作、连接总数、每个操作类型计数、计算一些扩展操作,如持久性搜索和绑定信息。
logconv.pl 命令的语法如下:
logconv.pl/path/to/accesslog要分析多个访问日志文件,您可以使用以下格式和一个星号 packagemanifests:
logconv.pl /var/log/dirsrv/slapd-instance_name/access*
logconv.pl 命令生成以下三个类型的统计数据,它们可用于监控目录服务器和优化目录服务器配置:
- 事件计数,如总数以及执行的总搜索。
-
LDAP 请求中最频繁发生的参数的列表。例如,
logconv.pl命令生成前十个绑定 DN、基本 DN、过滤器字符串和属性的列表。 -
错误代码发生次数,如
ldap.h中定义的错误代码数量。
8.1. 使用命令行分析目录服务器访问日志
复制链接链接已复制到粘贴板!
logconv.pl 命令分析目录服务器访问日志,并提取用量统计并计算发生大量事件。
logconv.pl 使用以下选项:
-
-s: 指定开始日志文件分析的时间。 -
-e: 指定停止日志文件分析的时间。 -
-bc: 根据用于连接到服务器的 DN 数量以及服务器返回的总连接代码生成报告。 -
-m:将每秒输出数据(-m)生成到指定的 CSV 输出文件。 -
-m: 生成每分钟带有计数(-M)的输出数据到指定的 CSV 输出文件。
流程
要生成简单的访问日志概述,请运行以下命令:
# logconv.pl /var/log/dirsrv/slapd-instance_name/access Access Log Analyzer 8.2 Command: logconv.pl /var/log/dirsrv/slapd-instance_name/access Processing 1 Access Log(s)... [001] /var/log/dirsrv/slapd-instance_name/access size(bytes):77532 Total Log Lines Analysed: 527 Start of Logs: 14/Oct/2017:16:15:22.452909568 End of Logs: 14/Oct/2017:16:39:50.157790196 Processed Log Time: 0 Hours, 24 Minutes, 27.704877056 Seconds Restarts: 10 Secure Protocol Versions: - TLS1.2 client bound as uid=user_name,ou=people,o=example.com (11 connections) - TLS1.2 128-bit AES; client CN=CA Subsystem,O=example.com; issuer CN=Certificate Authority,O=example.com (11 connections) - TLS1.2 128-bit AES-GCM (2 connections) - TLS1.2 128-bit AES (3 connections) Peak Concurrent Connections: 38 Total Operations: 4771 Total Results: 4653 Overall Performance: 97.5% Total Connections: 249 (0.17/sec) (10.18/min) - LDAP Connections: 107 (0.07/sec) (4.37/min) - LDAPI Connections: 128 (0.09/sec) (5.23/min) - LDAPS Connections: 14 (0.01/sec) (0.57/min) - StartTLS Extended Ops: 2 (0.00/sec) (0.08/min) Searches: 2963 (2.02/sec) (121.13/min) Modifications: 649 (0.44/sec) (26.53/min) Adds: 785 (0.53/sec) (32.09/min) Deletes: 10 (0.01/sec) (0.41/min) Mod RDNs: 6 (0.00/sec) (0.25/min) Compares: 0 (0.00/sec) (0.00/min) Binds: 324 (0.22/sec) (13.25/min) Proxied Auth Operations: 0 Persistent Searches: 17 Internal Operations: 0 Entry Operations: 0 Extended Operations: 4 Abandoned Requests: 0 Smart Referrals Received: 0 VLV Operations: 30 VLV Unindexed Searches: 0 VLV Unindexed Components: 20 SORT Operations: 22 Entire Search Base Queries: 12 Paged Searches: 2 Unindexed Searches: 0 Unindexed Components: 149 FDs Taken: 249 FDs Returned: 212 Highest FD Taken: 107 Broken Pipes: 0 Connections Reset By Peer: 0 Resource Unavailable: 0 Max BER Size Exceeded: 0 Binds: 324 Unbinds: 155 --------------------------------- - LDAP v2 Binds: 41 - LDAP v3 Binds: 180 - AUTOBINDs(LDAPI): 103 - SSL Client Binds: 0 - Failed SSL Client Binds: 0 - SASL Binds: 134 - EXTERNAL: 114 - GSSAPI: 20 - Directory Manager Binds: 10 - Anonymous Binds: 1 Cleaning up temp files... Done.logconv.pl脚本显示操作总数、连接总数、每个操作类型计数、对一些扩展操作(如持久搜索和绑定信息)计数。可选: 如果必须启用作为单个选项传递的额外连接摘要,如用于连接到服务器的 DN 数量(
b)以及服务器返回的总连接代码(c),指定-bc选项,如下所示:# lotgconv.pl -bc /var/log/dirsrv/slapd-instance_name/access ----- Total Connection Codes ----- U1 3 Cleanly Closed Connections B1 1 Bad Ber Tag Encountered ----- Top 20 Bind DN's ----- Number of Unique Bind DN's: 212 1801 cn=Directory Manager 1297 Anonymous Binds 311 uid=jsmith,ou=people... 87 uid=bjensen,ou=peopl... 85 uid=mreynolds,ou=peo... 69 uid=jrockford,ou=peo... 55 uid=sspencer,ou=peop...可选: 如果必须为某个启动(
-S)和结束时间(-E)或特定范围内的数据输出启用数据输出,请运行以下命令# logconv.pl -S "[01/Jul/2022:16:11:47.000000000 -0400]" -E "[01/Jul/2022:17:23:08.999999999 -0400]" /var/log/dirsrv/slapd-instance_name/access ... ----------- Access Log Output ------------ Start of Logs: 01/Jul/2022:16:11:47 End of Logs: 01/Jul/2022:17:23:08当设置 start 和 end times 时,
logconv.pl命令首先打印给定的时间范围,然后显示该周期的摘要。可选: 如果必须启用每分钟数的数据输出(
-M)或每秒数(-m),请运行以下命令:# logconv.pl -m|-M outputFile accessLogFile
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}