PHP 分析一个日志文件？-PHP Tutorial-php.cn

Home

Backend Development

PHP Tutorial

PHP 分析一个日志文件？

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jun 20, 2016 pm 12:43 PM

192.168.1.105 - - [25/Nov/2015:17:53:06 +0800] "GET /favicon.ico HTTP/1.1" 404 31 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"
192.168.1.105 - - [25/Nov/2015:17:53:06 +0800] "GET /admin/d1/cl HTTP/1.1" 200 60 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"
192.168.1.106 - - [25/Nov/2015:17:53:29 +0800] "GET /admin/d1/post_pd HTTP/1.1" 200 61 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"
192.168.1.106 - - [25/Nov/2015:17:55:53 +0800] "GET /admin/d1/post_id?pid=1&rid=1&imgname=1.jpg HTTP/1.1" 200 61 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"
192.168.1.105 - - [25/Nov/2015:17:57:39 +0800] "GET /admin/d1/post_irimg HTTP/1.1" 200 61 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"
192.168.1.105 - - [25/Nov/2015:18:03:15 +0800] "/admin/d1/get_id?pid=13333333333HTTP/1.1" 404 1333 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0"
192.168.1.105 - - [26/Nov/2015:09:53:10 +0800] "GET /admin/V1/post_id HTTP/1.1" 200 61 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.122 Safari/537.36 SE 2.X MetaSr 1.0"

请问这样一个日志文件怎么用PHP代码解析怎么实现输出有多少个ip访问（总访问量，有多少个不同的IP访问（数量）怎么实现一分钟内有多少访问量？求大神代码示例啊，实在不知从何下手写.....

回复讨论(解决方案)

假定你的这些数据存放于 log.txt 中
那么

$a = file('log.txt');foreach($a as $r) {  $t = preg_split('/[- ["]+/', $r);  $d[] = array(    'ip' => $t[0],    'date' => strtotime(preg_replace('/[\/:]/', ' ', $t[1], 3)),    'target' => $t[4],    'mode' => $t[6],    );}var_export($d);

将得到这样的数组

array (  0 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/favicon.ico',    'mode' => '404',  ),  1 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/admin/d1/cl',    'mode' => '200',  ),  2 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445209,    'target' => '/admin/d1/post_pd',    'mode' => '200',  ),  3 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445353,    'target' => '/admin/d1/post_id?pid=1&rid=1&imgname=1.jpg',    'mode' => '200',  ),  4 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445459,    'target' => '/admin/d1/post_irimg',    'mode' => '200',  ),  5 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445795,    'target' => '404',    'mode' => 'Mozilla/5.0',  ),  6 =>   array (    'ip' => '192.168.1.105',    'date' => 1448502790,    'target' => '/admin/V1/post_id',    'mode' => '200',  ),)

应该知道该怎么做了吧？
自己得动动脑子的！
实在不行再说

假定你的这些数据存放于 log.txt 中
那么

$a = file('log.txt');foreach($a as $r) {  $t = preg_split('/[- ["]+/', $r);  $d[] = array(    'ip' => $t[0],    'date' => strtotime(preg_replace('/[\/:]/', ' ', $t[1], 3)),    'target' => $t[4],    'mode' => $t[6],    );}var_export($d);

将得到这样的数组

array (  0 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/favicon.ico',    'mode' => '404',  ),  1 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/admin/d1/cl',    'mode' => '200',  ),  2 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445209,    'target' => '/admin/d1/post_pd',    'mode' => '200',  ),  3 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445353,    'target' => '/admin/d1/post_id?pid=1&rid=1&imgname=1.jpg',    'mode' => '200',  ),  4 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445459,    'target' => '/admin/d1/post_irimg',    'mode' => '200',  ),  5 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445795,    'target' => '404',    'mode' => 'Mozilla/5.0',  ),  6 =>   array (    'ip' => '192.168.1.105',    'date' => 1448502790,    'target' => '/admin/V1/post_id',    'mode' => '200',  ),)

应该知道该怎么做了吧？
自己得动动脑子的！
实在不行再说

好的好的，谢谢大神的教诲我先去研究看一下，谢谢！

可以使用工具实现，例如：LogAnalyzer
参考： http://www.cnblogs.com/cocowool/archive/2010/09/07/1820626.html

假定你的这些数据存放于 log.txt 中
那么

$a = file('log.txt');foreach($a as $r) {  $t = preg_split('/[- ["]+/', $r);  $d[] = array(    'ip' => $t[0],    'date' => strtotime(preg_replace('/[\/:]/', ' ', $t[1], 3)),    'target' => $t[4],    'mode' => $t[6],    );}var_export($d);

将得到这样的数组

array (  0 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/favicon.ico',    'mode' => '404',  ),  1 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/admin/d1/cl',    'mode' => '200',  ),  2 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445209,    'target' => '/admin/d1/post_pd',    'mode' => '200',  ),  3 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445353,    'target' => '/admin/d1/post_id?pid=1&rid=1&imgname=1.jpg',    'mode' => '200',  ),  4 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445459,    'target' => '/admin/d1/post_irimg',    'mode' => '200',  ),  5 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445795,    'target' => '404',    'mode' => 'Mozilla/5.0',  ),  6 =>   array (    'ip' => '192.168.1.105',    'date' => 1448502790,    'target' => '/admin/V1/post_id',    'mode' => '200',  ),)

应该知道该怎么做了吧？
自己得动动脑子的！
实在不行再说

大神我拿出时间date了可是不知道怎么实现每分钟有多少访问啊？

$data = array (  0 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/favicon.ico',    'mode' => '404',  ),  1 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445186,    'target' => '/admin/d1/cl',    'mode' => '200',  ),  2 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445209,    'target' => '/admin/d1/post_pd',    'mode' => '200',  ),  3 =>   array (    'ip' => '192.168.1.106',    'date' => 1448445353,    'target' => '/admin/d1/post_id?pid=1&rid=1&imgname=1.jpg',    'mode' => '200',  ),  4 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445459,    'target' => '/admin/d1/post_irimg',    'mode' => '200',  ),  5 =>   array (    'ip' => '192.168.1.105',    'date' => 1448445795,    'target' => '404',    'mode' => 'Mozilla/5.0',  ),  6 =>   array (    'ip' => '192.168.1.105',    'date' => 1448502790,    'target' => '/admin/V1/post_id',    'mode' => '200',  ),);foreach($data as $v) @$r[date('Y-m-d H:i', $v['date'])]++;print_r($r);

Array(    [2015-11-25 17:53] => 3    [2015-11-25 17:55] => 1    [2015-11-25 17:57] => 1    [2015-11-25 18:03] => 1    [2015-11-26 09:53] => 1)

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

How to make PHP applications fasterMay 12, 2025 am 12:12 AM

TomakePHPapplicationsfaster,followthesesteps:1)UseOpcodeCachinglikeOPcachetostoreprecompiledscriptbytecode.2)MinimizeDatabaseQueriesbyusingquerycachingandefficientindexing.3)LeveragePHP7 Featuresforbettercodeefficiency.4)ImplementCachingStrategiessuc

PHP Performance Optimization Checklist: Improve Speed NowMay 12, 2025 am 12:07 AM

ToimprovePHPapplicationspeed,followthesesteps:1)EnableopcodecachingwithAPCutoreducescriptexecutiontime.2)ImplementdatabasequerycachingusingPDOtominimizedatabasehits.3)UseHTTP/2tomultiplexrequestsandreduceconnectionoverhead.4)Limitsessionusagebyclosin

PHP Dependency Injection: Improve Code TestabilityMay 12, 2025 am 12:03 AM

Dependency injection (DI) significantly improves the testability of PHP code by explicitly transitive dependencies. 1) DI decoupling classes and specific implementations make testing and maintenance more flexible. 2) Among the three types, the constructor injects explicit expression dependencies to keep the state consistent. 3) Use DI containers to manage complex dependencies to improve code quality and development efficiency.

PHP Performance Optimization: Database Query OptimizationMay 12, 2025 am 12:02 AM

DatabasequeryoptimizationinPHPinvolvesseveralstrategiestoenhanceperformance.1)Selectonlynecessarycolumnstoreducedatatransfer.2)Useindexingtospeedupdataretrieval.3)Implementquerycachingtostoreresultsoffrequentqueries.4)Utilizepreparedstatementsforeffi

Simple Guide: Sending Email with PHP ScriptMay 12, 2025 am 12:02 AM

PHPisusedforsendingemailsduetoitsbuilt-inmail()functionandsupportivelibrarieslikePHPMailerandSwiftMailer.1)Usethemail()functionforbasicemails,butithaslimitations.2)EmployPHPMailerforadvancedfeatureslikeHTMLemailsandattachments.3)Improvedeliverability

PHP Performance: Identifying and Fixing BottlenecksMay 11, 2025 am 12:13 AM

PHP performance bottlenecks can be solved through the following steps: 1) Use Xdebug or Blackfire for performance analysis to find out the problem; 2) Optimize database queries and use caches, such as APCu; 3) Use efficient functions such as array_filter to optimize array operations; 4) Configure OPcache for bytecode cache; 5) Optimize the front-end, such as reducing HTTP requests and optimizing pictures; 6) Continuously monitor and optimize performance. Through these methods, the performance of PHP applications can be significantly improved.

Dependency Injection for PHP: a quick summaryMay 11, 2025 am 12:09 AM

DependencyInjection(DI)inPHPisadesignpatternthatmanagesandreducesclassdependencies,enhancingcodemodularity,testability,andmaintainability.Itallowspassingdependencieslikedatabaseconnectionstoclassesasparameters,facilitatingeasiertestingandscalability.

Increase PHP Performance: Caching Strategies & TechniquesMay 11, 2025 am 12:08 AM

CachingimprovesPHPperformancebystoringresultsofcomputationsorqueriesforquickretrieval,reducingserverloadandenhancingresponsetimes.Effectivestrategiesinclude:1)Opcodecaching,whichstorescompiledPHPscriptsinmemorytoskipcompilation;2)DatacachingusingMemc

See all articles