[FR]: SoftEtherVPN stable edition #3670
Comments
|
Don't understand why you need this new issue or why the discussion cannot continue further in #3669, but OK.
I though that I detailed wrote about the necessity and sense of this work.
I already wrote before: The reason is - if one follows this strategy, in few years we'd have thousand filters (and jails) and nobody has overall control over it,
I don't like the naming too, because what is stable today becomes obsolete tomorrow. As for parametrized filter, something like that could work (here [INCLUDES]
before = common.conf
[Definition]
failregex = <<logformat>/failregex>
logformat = singleline
[singleline]
failregex = ^<__prefix_line>(?:(?:\([\d\-]+ [\d:.]+\) )?<SECURITY_LOG>: )?Connection "[^"]+": User authentication failed. The user name that has been provided was "<F-USER>(?:[^"]+|.+)</F-USER>", from <ADDR>\.$
[multiline]
failregex = ^\s*The <F-NOFAIL>connection</F-NOFAIL> "<F-MLFID>CID-\d+</F-MLFID>" \(IP address: <ADDR>,
^\s*Connection "<F-MLFID>CID-\d+</F-MLFID>": User authentication failed\. The user name that has been provided was "<F-USER>[^"]+</F-USER>" |
I would like to discuss an issue related to the investigation carried out during Pull Request 3369 in collaboration with @sebres
The SoftEtherVPN project has two repositories:
Development Edition
Stable Edition
The current version of the filter only supports the development edition. This version is based on the following log.
I believe it's necessary to add support for the stable edition. I am prepared to create a pull request but would appreciate guidance on the correct approach.
As far as I understand, for the stable edition, we need to add new logs for testing and corresponding filters. I propose creating a new file for the log:
and a corresponding filter:
Here, '_se' indicates the Stable edition.
What are your thoughts on this? Is there any guidance available?
The text was updated successfully, but these errors were encountered: