1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
|
{
"$schema": "https://lnav.org/schemas/format-v1.schema.json",
"pcap_log": {
"json": true,
"title": "Packet Capture",
"description": "Internal format for pcap files",
"mime-types": [
"application/vnd.tcpdump.pcap"
],
"multiline": false,
"convert-to-local-time": true,
"line-format": [
{
"field": "time"
},
" ",
{
"field": "source",
"min-width": 15,
"align": "right"
},
" → ",
{
"field": "destination",
"min-width": 15,
"align": "left"
},
" ",
{
"field": "protocol",
"min-width": 7,
"align": "left"
},
" ",
{
"field": "length",
"min-width": 4,
"align": "right"
},
" ",
{
"field": "info"
}
],
"level": {
"warning": "^6291456$",
"error": "^8388608$"
},
"timestamp-field": "time",
"level-pointer": "/_ws_expert__ws_expert_severity$",
"body-field": "info",
"hide-extra": true,
"value": {
"source": {
"kind": "string",
"foreign-key": true,
"collate": "ipaddress",
"identifier": true
},
"destination": {
"kind": "string",
"foreign-key": true,
"collate": "ipaddress",
"identifier": true
},
"protocol": {
"kind": "string",
"identifier": true
},
"length": {
"kind": "integer"
},
"info": {
"kind": "string"
},
"layers": {
"kind": "json",
"hidden": true
}
}
}
}
|
