Is something like this possible?

Jon Snow · Aug 24, 2018

With CMM, is something like filtering out the following from access/error logs possible?

Filter if ?liveupdate exists (from actual logs recorded, not when entering commands to search) :
Code:
POST /forum/index.php?liveupdate HTTP/2.0
To prevent flooding in the logs from an XF add-on.

eva2000 · Aug 24, 2018

Centmin Mod is provided as is so such configuration is left to end users to figure out.

You can possibly filter out by url using an nginx map to a variable and edit access_log to exclude that nginx map variable for logging. Similar to how i excluded certain user agent/bots from logging in custom SSL log outlined at SSL - HTTP/TLS Protocol and SSL Cipher Usage Statistics Logging
Or we can filter out some of the known non web browser user agent/bots from being logged via nginx mapping of $http_user_agent to variable $nobots
Code (Text):
map $http_user_agent $nobots {
    default 1;
    ~'Mediapartners-Google' 0;
    ~'Y!J-ASR' 0;
    ~AhrefsBot 0;
    ~Baiduspider 0;
    ~bingbot 0;
    ~DuckDuckGo-Favicons-Bot 0;
    ~Feedly 0;
    ~Googlebot-Imag 0;
    ~Googlebot 0;
    ~Google 0;
    ~GrapeshotCrawler 0;
    ~linkdexbot 0;
    ~NewRelicPinger 0;
    ~Pingdom 0;
    ~proximic 0;
    ~Qwantify 0;
    ~R6_CommentReader 0;
    ~TweetmemeBot 0;
    ~UptimeRobot 0;
    ~www.radian6.com 0;
    ~Yahoo 0;
    ~YandexBot 0;
    ~YandexImages 0;
}
so only log to /home/nginx/domains/yourdomain.com/log/sslstats-agent-nobots.log if not any of the above listed mapped bot identifiers
Code (Text):
access_log /home/nginx/domains/yourdomain.com/log/sslstats-agent-nobots.log ssl_customagent buffer=256k flush=5m if=$nobots;
Click to expand...
So for your instance, as per Module ngx_http_log_module
The if parameter (1.7.0) enables conditional logging. A request will not be logged if the condition evaluates to “0” or an empty string. In the following example, the requests with response codes 2xx and 3xx will not be logged:
Code (Text):
map $status $loggable {
    ~^[23]  0;
    default 1;
}
access_log /path/to/access.log combined if=$loggable;
Click to expand...
so something like if request matches https://yourdomain.com/forum/index.php?liveupdate assign $nolog_liveupdate variable a value of 0 otherwise all other requests assign value of 1 (default)

The nginx map
Code (Text):
map $http_host$request_uri $nolog_liveupdate {
     default                                                1;
     "~https://yourdomain.com/forum/index.php?liveupdate"  0;
}
maps go in /usr/local/nginx/conf/nginx.conf within http{} context usually after hash bucket lines i.e.
Code (Text):
http {
 map_hash_bucket_size 128;
 map_hash_max_size 4096;
 server_names_hash_bucket_size 128;
 server_names_hash_max_size 2048;
 variables_hash_max_size 2048;

map $http_host$request_uri $nolog_liveupdate {
     default                                                1;
     "~https://yourdomain.com/forum/index.php?liveupdate"  0;
}
then use if conditional logging in access_log directive for your nginx site vhost config file which says log only requests that have $nolog_liveupdate value of 1 (which is all other requests exclude the liveupdate one which has value of 0)

so you change your nginx site vhost's access_log line from
Code (Text):
access_log /home/nginx/domains/yourdomain.com/log/access.log combined buffer=256k flush=5m;
to
Code (Text):
access_log /home/nginx/domains/yourdomain.com/log/access.log combined buffer=256k flush=5m if=$nolog_liveupdate;
Haven't tested it so you will have to test and re-config the mapping if not correct

Log in / Register

Forums

Join the community today

Is something like this possible?

Jon Snow Active Member

eva2000 Administrator Staff Member

.

Log in / Register

Useful Searches

Join the community today

Is something like this possible?

Jon Snow Active Member

eva2000 Administrator Staff Member

.