function Parseline($buffer) { $buffer = trim($buffer); if ($buffer == null) { return null; } if (preg_match("#GET cache_object#", $buffer)) { return null; } if (preg_match('#MAC:(.+?)\\s+(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST|CONNECT)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)\\s+([A-Z_]+)#', $buffer, $re)) { $cached = 0; $mac = $re[1]; $ip = $re[2]; $user = $re[3]; $time = $re[4]; $uri = $re[6]; $code_error = $re[7]; $size = $re[8]; $SquidCode = $re[9]; if ($ip == "127.0.0.1") { return; } if (CACHEDORNOT($SquidCode)) { $cached = 1; } Builsql($ip, $user, $uri, $code_error, $size, $time, $cached, $mac); return null; } if (preg_match('#(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST|CONNECT)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)\\s+([A-Z_]+)#', $buffer, $re)) { $cached = 0; $ip = $re[1]; $user = $re[2]; $time = $re[3]; $uri = $re[5]; $code_error = $re[6]; $size = $re[7]; $SquidCode = $re[8]; if ($ip == "127.0.0.1") { return; } if (CACHEDORNOT($SquidCode)) { $cached = 1; } Builsql($ip, $user, $uri, $code_error, $size, $time, $cached, null); return null; } events("Not filtered: {$buffer}"); }
function Parseline($buffer) { $buffer = trim($buffer); if ($buffer == null) { return null; } if (strpos($buffer, "Squid Cache purged") > 0) { return null; } if (preg_match("#bidirectional pipe to", $buffer)) { return null; } if (preg_match('#url=(.+?)&source=(.+?)\\/.+?&virus=.+?:(.+?)\\+FOUND#', $buffer, $re)) { $uri = $re[1]; $ipsrc = $re[2]; $virus = $re[3]; Builsql($uri, $ipsrc, $virus); return; } events("Not filtered: {$buffer}"); }
function Parseline($buffer) { $buffer = trim($buffer); if ($buffer == null) { return null; } if (preg_match("#GET cache_object#", $buffer)) { return null; } if (preg_match('#(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)#', $buffer, $re)) { $ip = $re[1]; $user = $re[2]; $time = $re[3]; $uri = $re[5]; $code_error = $re[6]; $size = $re[7]; Builsql($ip, $user, $uri, $code_error, $size, $time); return null; } events("Not filtered: {$buffer}"); }
function Parseline($buffer) { $buffer = trim($buffer); if ($buffer == null) { return null; } if (preg_match("#\\/\\/localhost#", $buffer)) { return null; } if (preg_match('#"([0-9\\.\\s:]+)","(.+?)","(.+?)","(.+?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)",(.*?)"#', $buffer, $re)) { $date = $re[1]; $ip = $re[2]; $name = $re[3]; $uri = $re[4]; $raison = $re[5]; $size = $re[7]; $rule = $re[14]; Builsql($ip, $name, $uri, $rule, $raison, $size); return null; } events("Not filtered: {$buffer}"); }