0

我正在寻找 RHEL 5 的系统日志事件/日志生成器。你知道吗?它将用于安全模拟。我有一个程序,它让我可以监控来自远程客户端的事件,这个生成器可以帮助我很多。

提前致谢,

马尔钦

4

1 回答 1

4

LogZilla 项目有一个免费提供(供个人使用)。您可以在https://subversion.assembla.com/svn/logzilla/scripts/contrib/sysloggen从 Subversion 服务器获取它

要在 Linux 中检查它:

svn co https://subversion.assembla.com/svn/logzilla/scripts/contrib/sysloggen

要获得帮助,请键入“./sysloggen -h”:

LogZilla(tm) Syslog Generation Tool v1.0
This tool is free for personal (home) use only.
Please contact sales@logzilla.pro for permission to use elsewhere.

Usage: sysloggen --dest <target1[:port]> [-d <target2[:port]>, ... ] --file <raw_messages_file> [Options]

Options:
  -d <ip/unix_socket>, --dest <ip/unix_socket>
     IP address or Unix Domain socket name (when used together with the --unix option)
  -f <raw_messages_file>, --file <raw_messages_file>
      File name, file should contain preformatted syslog messages
  -s, --file_source <ip>   Spoof file_source IP address using UDP transport  -i, --inet   Use the TCP (by default) or UDP (when used together with the --dgram option)
  -u, --unix   Use a UNIX domain socket to send the messages to the target
  -S, --stream Use a stream socket (TCP or unix-stream) to send the messages to the target
  -D, --dgram  Use datagram socket (UDP or unix-dgram) to send the messages to the target
  -r, <messages/second>, --rate <messages/second>
      The number of messages generated per second, otherwise - max possible
  -n <messages>, --number <messages>
      Limit the number of messages to be sent
  -l, --loop   Read the file specified in --file options in loop
  -m <size>, --max-msg-size <size> Messages will be truncated if bigger then <size>
  -h, --help   Print this message and exit
  -v, --verbose    Make verbose output

Example:
Send 1 Million syslog events (loaded from the file "sample_cisco_ios.syslog") to 192.168.1.1 on TCP Port 514 at a rate of 20k events/sec
./sysloggen -d 192.168.1.1:514 -f sample_cisco_ios.syslog -n 1000000 -r 20000 -l
于 2013-08-14T18:53:43.027 回答