Logtop – Realtime log line rate analyser
Sponsored Link
Install logtop on ubuntu
Open the terminal and run the following command
sudo apt-get install logtop
Using Logtop
Syntax
logtop [OPTIONS]
Options
-s, --size=K -- Only keep K lines in memory, instead of 10000.
-q, --quiet -- Do not display a live view of the data, only display a top at exit.
-l, --line-by-line=K -- Print result line by line, in a machine friendly format, K is the number of result to print per line.
Line by line format is : [%d %f %s\t]*\n
%d : Number of occurences
%f : Frequency of apparition
%s : String (Control chars replaced by dots.
-i, --interval=K -- Interval between graphical updates, in seconds. Defaults to 1.
Logtop Examples
Here are some logtop usage examples.
Realtime hit / miss ratio on some caching software log file.
tail -f cache.log | grep -o "HIT\|MISS" | logtop
Realtime most querying IPs on your server, as long as log lines in access.log starts with the client IP.
tail -f access.log | cut -d' ‘ -f1 | logtop -s 10000
Realtime most requested web pages in a NCSA like log file.
tail -f access.log | cut -d' ‘ -f7 | logtop -s 10000
Display a one-shot simple analyse of your auth.log.
cat auth.log | grep -v "CRON" | grep -o ": .*" | logtop -q -s 100000
