From owner-freebsd-questions@freebsd.org Sun Jul 11 14:13:59 2021 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id EE1CE6684C9 for ; Sun, 11 Jul 2021 14:13:59 +0000 (UTC) (envelope-from kkchn.in@gmail.com) Received: from mail-pj1-x102f.google.com (mail-pj1-x102f.google.com [IPv6:2607:f8b0:4864:20::102f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4GN85g24byz3PS3 for ; Sun, 11 Jul 2021 14:13:59 +0000 (UTC) (envelope-from kkchn.in@gmail.com) Received: by mail-pj1-x102f.google.com with SMTP id h1-20020a17090a3d01b0290172d33bb8bcso11130864pjc.0 for ; Sun, 11 Jul 2021 07:13:59 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=j907pEC3v5CRQtndqL+5jfyXT6KpmXMjuZVqQuJE+j8=; b=hrt6jtb5IrF9YYdUGHT1gNPr7bm3bV8WZJ/33quyOdcwkSeBNFaFbKdHFq1O21Q44C 4WZiX11HTWv0EjP0++k6fL2cD1DSFwW9UVjNAkHVaGZTSU6KgsRhPQWEcAuS5FKbRc9t jjbFByKh5afNlmnvkUA4s/k3xeVTEhVQfBTpzv1OyVNaewS/FpnHUFpcd5BnUpnZ5NPh MXMdg4smy8hYhGKJ3kbBnNf5g0SXoQhCUxdG4+UkpJtwcB8QTIyNqN+AOIUMXucpxGR2 VV+1h0roKfHsCbCdrneDnX8dOwXVm7mwusQEvQTGrfN0K+RcqLndKt1Up3ily9PfFOPS rJRA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=j907pEC3v5CRQtndqL+5jfyXT6KpmXMjuZVqQuJE+j8=; b=RBV0UQB3DTq7d3TA9eDNxaCoSEO4u9mJDf4Arkc9ZLwHjYGwiodnPYtJ5ZDKVAYiN7 k2CkPQxCM58t1iIQdFTGFbC+PKiDDQqtz6RWAtLSJrF2a51ftbHZKtnaF01NBzvnnwiV wKasevWLUJjyHEGv7/uxAV/Iyw5Cek2o/o43rZWM18/xlCCD40pUStg0PBeqbdjZ0F26 YJV3fiE1YXUUXKbl1CDtqCY635h+lrb7HR2bjCmkHcpqTpWSvMj+zoHZwgzs6kmD8YjD u8tuAF23iF4C4jXSBoo1bevZTTfKENrwmWFdLbxogQEfGExifQUe/v5+2VI/P3PEtLVi HJbA== X-Gm-Message-State: AOAM532UzBBGroM9uK4cyNA2Zqima9PoMXnd6XFYWTffIGZgL2cXciz+ 7NwWk3a8OgMqk5oSZL83BmabB0Yu4chSXpPOVZyDFlbrj2pBXg== X-Google-Smtp-Source: ABdhPJwZLtomMiFLvVEkvnSRlB5HKa21Wrw5rs/esmD0V4hWG4bCtoTcOCkSnPgnzMp+hI912IJu5YNno+d/5FAHpOk= X-Received: by 2002:a17:90a:88f:: with SMTP id v15mr3677399pjc.150.1626012837425; Sun, 11 Jul 2021 07:13:57 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: KK CHN Date: Sun, 11 Jul 2021 19:43:41 +0530 Message-ID: Subject: Re: Analyzing Log files of very large size To: Korolev Sergey Cc: freebsd-questions X-Rspamd-Queue-Id: 4GN85g24byz3PS3 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=hrt6jtb5; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of kkchnin@gmail.com designates 2607:f8b0:4864:20::102f as permitted sender) smtp.mailfrom=kkchnin@gmail.com X-Spamd-Result: default: False [-0.10 / 15.00]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RBL_DBL_DONT_QUERY_IPS(0.00)[2607:f8b0:4864:20::102f:from]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(1.00)[1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_SPAM_MEDIUM(0.90)[0.899]; SPAMHAUS_ZRD(0.00)[2607:f8b0:4864:20::102f:from:127.0.2.255]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::102f:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; MAILMAN_DEST(0.00)[freebsd-questions] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.34 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.34 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Jul 2021 14:14:00 -0000 Yes, it is. On Sun, Jul 11, 2021 at 6:02 PM Korolev Sergey wrote: > Is it a plain text file? > > On 11 Jul 2021, at 22:13, KK CHN wrote: > > List, > > I am in a requirement to analyze large log files of sonic wall firewall > around 50 GB. for a suspect attack. > > What tools and solutions need to be deployed for handling this much large > files and pls enlighten me with your expertise and reference materials if > any. > > All are tcp / ip communications, DNS UDP transports .. > > Regards, > Kris > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > > >