function Parseline($buffer)
{
$buffer = trim($buffer);
if ($buffer == null) {
return null;
}
if (preg_match("#GET cache_object#", $buffer)) {
return null;
}
if (preg_match('#MAC:(.+?)\\s+(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST|CONNECT)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)\\s+([A-Z_]+)#', $buffer, $re)) {
$cached = 0;
$mac = $re[1];
$ip = $re[2];
$user = $re[3];
$time = $re[4];
$uri = $re[6];
$code_error = $re[7];
$size = $re[8];
$SquidCode = $re[9];
if ($ip == "127.0.0.1") {
return;
}
if (CACHEDORNOT($SquidCode)) {
$cached = 1;
}
Builsql($ip, $user, $uri, $code_error, $size, $time, $cached, $mac);
return null;
}
if (preg_match('#(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST|CONNECT)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)\\s+([A-Z_]+)#', $buffer, $re)) {
$cached = 0;
$ip = $re[1];
$user = $re[2];
$time = $re[3];
$uri = $re[5];
$code_error = $re[6];
$size = $re[7];
$SquidCode = $re[8];
if ($ip == "127.0.0.1") {
return;
}
if (CACHEDORNOT($SquidCode)) {
$cached = 1;
}
Builsql($ip, $user, $uri, $code_error, $size, $time, $cached, null);
return null;
}
events("Not filtered: {$buffer}");
}
function Parseline($buffer)
{
$buffer = trim($buffer);
if ($buffer == null) {
return null;
}
if (strpos($buffer, "Squid Cache purged") > 0) {
return null;
}
if (preg_match("#bidirectional pipe to", $buffer)) {
return null;
}
if (preg_match('#url=(.+?)&source=(.+?)\\/.+?&virus=.+?:(.+?)\\+FOUND#', $buffer, $re)) {
$uri = $re[1];
$ipsrc = $re[2];
$virus = $re[3];
Builsql($uri, $ipsrc, $virus);
return;
}
events("Not filtered: {$buffer}");
}
function Parseline($buffer)
{
$buffer = trim($buffer);
if ($buffer == null) {
return null;
}
if (preg_match("#GET cache_object#", $buffer)) {
return null;
}
if (preg_match('#(.+?)\\s+.+?\\s+(.*?)\\s+\\[.+?:(.+?)\\s+.+?\\]\\s+"(GET|POST)\\s+(.+?)\\s+.+?"\\s+([0-9]+)\\s+([0-9]+)#', $buffer, $re)) {
$ip = $re[1];
$user = $re[2];
$time = $re[3];
$uri = $re[5];
$code_error = $re[6];
$size = $re[7];
Builsql($ip, $user, $uri, $code_error, $size, $time);
return null;
}
events("Not filtered: {$buffer}");
}
function Parseline($buffer)
{
$buffer = trim($buffer);
if ($buffer == null) {
return null;
}
if (preg_match("#\\/\\/localhost#", $buffer)) {
return null;
}
if (preg_match('#"([0-9\\.\\s:]+)","(.+?)","(.+?)","(.+?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)","(.*?)",(.*?)"#', $buffer, $re)) {
$date = $re[1];
$ip = $re[2];
$name = $re[3];
$uri = $re[4];
$raison = $re[5];
$size = $re[7];
$rule = $re[14];
Builsql($ip, $name, $uri, $rule, $raison, $size);
return null;
}
events("Not filtered: {$buffer}");
}
