|
I am trying to read my webserver file with MAC and IP addresses.
The following code was offered by Luiz that really is great.
=============================
s=[[
[DHCP IP: (192.168.20.109)] to MAC address 00:16:B6:94:60:26,
Tuesday, Dec 13,2011 19:06:03 and I would like to extract the MAC address
and
[DoS attack: Smurf] attack packets in last 20 sec from ip
[178.151.111.21], Tuesday, Dec 13,2011 07:14:20 and I would like to
extract the IP address
and [LAN access from remote] from 82.228.252.76:14961 to
192.168.20.109:42765 Monday, Dec 12,2011 09:57:50 and I would like to
extract the first IP address
]]
for a in s:gmatch("DHCP.-to MAC address (.-),") do print("MAC",a) end
for a in s:gmatch("DoS.-from ip.%[(.-)%]") do print("IP1",a) end
for a in s:gmatch("LAN.-%] from (.-):.- to") do print("IP2",a) end
=============================
I admit, I am still studying it to figure out how it works - but
can someone offer recommendations on opening the single file to read all this data
and creating 3 output files to each contain MAC address, IP1 and IP2.
Sample file would be: (of course with many multiple lines of each type.
[DHCP IP: (192.168.20.109)] to MAC address 00:16:B6:94:60:26, Tuesday, Dec 13,2011 19:06:03
[DoS attack: Smurf] attack packets in last 20 sec from ip [178.151.111.21], Tuesday, Dec 13,2011 07:14:20
[LAN access from remote] from 82.228.252.76:14961 to 192.168.20.109:42765 Monday, Dec 12,2011 09:57:50