-
Notifications
You must be signed in to change notification settings - Fork 97
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #184 from whyscream/dpslavov/main
Various pattern additions
- Loading branch information
Showing
14 changed files
with
105 additions
and
14 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
pattern: ^%{POSTFIX_ANVIL}$ | ||
data: "statistics: max connection count 1 for (smtp:unknown) at Sep 7 07:14:19" | ||
results: | ||
postfix_anvil_conn_count: 1 | ||
postfix_service: smtp | ||
postfix_client_ip_unknown: unknown | ||
postfix_anvil_timestamp: Sep 7 07:14:19 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,8 @@ | ||
pattern: ^%{POSTFIX_ANVIL}$ | ||
data: "statistics: max connection rate 1/60s for (smtp:unknown) at Sep 7 07:14:19" | ||
results: | ||
postfix_anvil_conn_rate: 1 | ||
postfix_anvil_conn_period: 60s | ||
postfix_service: smtp | ||
postfix_client_ip_unknown: unknown | ||
postfix_anvil_timestamp: Sep 7 07:14:19 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,8 @@ | ||
pattern: ^%{POSTFIX_SMTP}$ | ||
data: "745137AA: lost connection with hotmail-com.olc.protection.outlook.com[104.47.55.161] while sending RCPT TO" | ||
results: | ||
postfix_queueid: 745137AA | ||
postfix_smtp_lostconn_data: lost connection | ||
postfix_smtp_lostconn_reason: sending RCPT TO | ||
postfix_relay_hostname: hotmail-com.olc.protection.outlook.com | ||
postfix_relay_ip: 104.47.55.161 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
pattern: ^%{POSTFIX_SMTP}$ | ||
data: "40197AA: host mg2.egov.bg[213.91.191.86] refused to talk to me: 450 4.3.2 try again later" | ||
results: | ||
postfix_queueid: 40197AA | ||
postfix_relay_hostname: mg2.egov.bg | ||
postfix_relay_ip: 213.91.191.86 | ||
postfix_smtp_response: 450 4.3.2 try again later |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
pattern: ^%{POSTFIX_SMTPD}$ | ||
data: "disconnect from unknown[unknown] commands=0/0" | ||
results: | ||
postfix_client_hostname: unknown | ||
postfix_client_ip_unknown: unknown | ||
postfix_command_counter_data: commands=0/0 | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
pattern: ^%{POSTFIX_SMTPD}$ | ||
data: "lost connection after BDAT from example.net[158.247.23.50]" | ||
results: | ||
postfix_smtpd_lostconn_data: lost connection | ||
postfix_smtp_stage: BDAT | ||
postfix_client_hostname: example.net | ||
postfix_client_ip: 158.247.23.50 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
pattern: ^%{POSTFIX_SMTPD}$ | ||
data: "disconnect from example.net[158.247.23.50] ehlo=2 starttls=1 mail=1 rcpt=0/1 bdat=0/1 commands=4/6" | ||
results: | ||
postfix_client_hostname: example.net | ||
postfix_client_ip: 158.247.23.50 | ||
postfix_command_counter_data: ehlo=2 starttls=1 mail=1 rcpt=0/1 bdat=0/1 commands=4/6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
pattern: ^%{POSTFIX_SMTPD}$ | ||
data: "disconnect from unknown[93.188.162.137] ehlo=2 starttls=1 mail=1 rcpt=0/1 rset=1 noop=1 quit=1 commands=7/8" | ||
results: | ||
postfix_client_hostname: unknown | ||
postfix_client_ip: 93.188.162.137 | ||
postfix_command_counter_data: ehlo=2 starttls=1 mail=1 rcpt=0/1 rset=1 noop=1 quit=1 commands=7/8 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
pattern: ^%{POSTFIX_VERIFY}$ | ||
data: "cache lmdb:/var/lib/postfix/verify_cache full cleanup: retained=724 dropped=6 entries" | ||
results: | ||
postfix_verify_cleanup_type: full | ||
postfix_verify_cache_retained: 724 | ||
postfix_verify_cache_dropped: 6 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
pattern: ^%{POSTFIX_VERIFY}$ | ||
data: "cache ??????????????????????????????????? partial cleanup: retained=1 dropped=0 entries" | ||
results: | ||
postfix_verify_cleanup_type: partial | ||
postfix_verify_cache_retained: 1 | ||
postfix_verify_cache_dropped: 0 |