beta_msieser_smtp = { # The name of the log format log.format.format_label = "msieser SMTP Log Format (BETA)" log.miscellaneous.log_data_type = "mail_server" log.miscellaneous.log_format_type = "mail_server" # Ignore the CSV header even if this is a .csv file log.format.ignore_format_lines = "true" # log.format.parse_only_with_filters = "true" # The log is in this format if any of the first ten lines match this regular expression log.format.autodetect_regular_expression = '^[^@]*@[^,]*,[^@]*@.*,[^@]*@.*,[^,]*,[0-9]+/[0-9]+/[0-9]+ [0-9]+:[0-9]+,[0-9]+,[0-9]+$' log.format.field_separator = "," # Log fields log.fields = { from.index = 1 to.index = 2 cc.index = 3 subject.index = 4 combined_date_time.index = 5 size.index = 6 attachments.index = 7 date = "" time = "" messages = "" } # log.fields log.parsing_filters.parse = ` if (matches_regular_expression(combined_date_time, '^([0-9/]*) ([0-9:]*)$')) then ( date = $1; time = $2 . ":00"; ); messages = 1; #if (matches_regular_expression(current_log_line(), '^([^@]*@[^,]*),(.*),(.*),([^,]*),([0-9]+/[0-9]+/[0-9]+) ([0-9]+:[0-9]+),([0-9]+),([0-9]+)$')) then ( # from = $1; # to = $2; # cc = $3; # subject = $4; # date = $5; # time = $6 . ":00"; # size = $7; # attachments = $8; # messages = 1; #) ` # Database fields database.fields = { date_time = "" day_of_week = "" hour_of_day = "" from = "" to = "" cc = "" subject = "" } # database.fields database.numerical_fields = { messages = { default = true entries_field = true } # messages attachments = "" size = { log_field = "size" type = "float" display_format_type = "bandwidth" } # size } # database.numerical_fields create_profile_wizard_options = { # How the reports should be grouped in the report menu report_groups = { date_time_group = "" from = true to = true cc = true subject = true } # report_groups } # create_profile_wizard_options } # beta_msieser_smtp