tags:

views:

1047

answers:

14
+7  Q: 

What is the best log analysis tool that you used?

I'm starting to work on an existing project that has very verbose logging and the logs are a real pain to go through. Have you guys ever used any tools for log analysis/parsing? Can you recommend me something powerful and easy to customize and use? At first I thought I should write a tool to parse the logs, but I'm thinking maybe something like that already exists. Thank you for the help in advance.

Edit: The logs are custom - they have a set format, but I don't think they conform to any widely used standards. That's why I need a customizable log parser.

+7  A: 

Log Parser from Microsoft

http://www.microsoft.com/technet/scriptcenter/tools/logparser/default.mspx

Free, and works incredibly well.

DoniG  2008-09-30 20:44:49
+1  A: 

We use Splunk here. http://www.splunk.com/

It's very powerful, allowing multiple log sources, templating, filtering, etc. It's a little more than a "single-user" solution, but they boast a 5-minute install.

Bill James  2008-09-30 20:45:55
+2  A: 

For IIS Logs, I tend to use Microsoft Excel. Import the file as space delimited, delete the header rows and the #Fields: label and then use the AutoFilter functions to slice and dice the data as you need it...

Dave Ganger  2008-09-30 20:48:29
Yep, me too. Filtering is great. The only problem (occasionally) can be limited number of rows in a spredsheat.
gabr  2008-09-30 20:58:55
A: 

I agree - LogParser.

Joe Strazzere  2008-09-30 21:04:12
Then you might just vote up the guy who said LogParser, or just comment on his post like this.
Bill James  2008-09-30 21:10:38
You can earn a badge by deleting this answer :-)
Simon Gibbs  2009-03-16 17:49:56
+1  A: 

Analog ...its free, fast, and very easy to use.

dacracot  2008-09-30 21:12:37
A: 

If you are going to use LogParser you might find this article valuable.

Flory  2008-09-30 21:29:36
+2  A: 

Log Parser is an excellent tool for this.

You might want to check out Visual Log parser over on Codeplex, though it doesn't look like much work has been done on if for awhile.

There's a forum here that discusses Log Parser.

Also, Mike Gunderloy had an unofficial FAQ here, and here's a nice article over at Coding Horror

Gern Blandston  2008-09-30 21:30:48
A: 

You can try Octopussy (it's my project)

It is a log analysis/alerting/reporting solution made to handle any kind of logs. It's quite complicated at the beginning, but after, it's really powerful. It's fully customizable and you have a 'logs wizard' to create new parsers.

sebthebert  2008-10-03 23:49:37
someone has a fascination with octopi.. and really bad James Bond movies.. :)
Jeff Atwood  2008-10-19 15:16:42
As I said in this answer, I should choose another name for my project ! :)
sebthebert  2008-11-11 00:07:24
A: 

Currently experimenting with SED and MySQL. SED is used to solve syntax level issues and convert to CSV. The SED script took a few hours (including learning SED), but I expect the hard part to be the analysis in MySQL of course.

I just found that none of the downloadable tools were able to permanently categorise hits and consistently include/exclude the correct categories in reports.

If you are thinking of improving this custom log format of yours then log4x with the Xml layout is one to consider. Take note of the NDC and MDC output. Of course, you'd need to switch to log4x too. Your analyser in this case would be Chainsaw, but you are dealing with XML fragments so a custom solution is also possible.

Simon Gibbs  2008-10-19 15:14:32
A: 

SLCT - Simple Logfile Clustering Tool figures out recurring patterns on its own and prints a concise summary. It's good for a quick look at a log for which you don't have any parser or grammar yet.

Liudvikas Bukys  2009-01-08 18:03:40
+1  A: 

Perl

It usually takes a very short time to write a custom log parser.

Gilad Naor  2009-01-08 18:04:10
A: 

Apache's Chainsaw V2 can parse (and tail) text log files, using LogFilePatternReceiver or VFSLogFilePatternReceiver, if you need Jakarta Commons-VFS supported file systems (for example, tailing over ssh). See http://logging.apache.org/chainsaw - there is an example configuration available from the Welcome tab and a simple tutorial available from the help menu.

Scott  2010-01-21 07:01:10
A: 

XpoLog Log Analysis platform provide reports, search, monitor, statistics, trends, error detection and much more for web server and applications logs www.loganalysis.com

bobyg  2010-02-11 00:00:00
A: 

XpoLog works great for us XpoLog

bobyg  2010-06-22 17:21:35
dude, all of your comments are spam.
Eric Hill  2010-09-30 23:52:40

related questions

What FoxPro data tools can I use to find corrupted data?
Analyzing Multithreaded Programs
any good tool for makefile generation?
Actual Productivity Gains from Multiple Monitors
Generate Insert SQL statements from a csv file
Improving Productivity of my Teams
Eclipse : Class file name must end with .class exception in Java Search
Why are MSDN subscriptions less expensive in the US?
How do you manage all your projects and ideas?
Geographically Distributed Development
Best Multi-Language Documentation Generator
What code analysis tools do you use for your Java projects?
IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
What are your must-have tools?
Do you have any recommended plugins for Eclipse?
Do you have any recommended add-ons/plugins for Microsoft Visual Studio?
Setting up an Erlang development environment
Auto Generate Database Diagram MySQL
Essential Programming Tools
A good freeware ICL browser?
Monitor a specific RSS
Online Peer Code Review?
Wordpress theme development offline tools
Is there an IDE that provides code completion for Python
Continuous Integration System for a Python Codebase