diff --git a/modules/journalwatch.nix b/modules/journalwatch.nix index 9d73f78..f46f679 100644 --- a/modules/journalwatch.nix +++ b/modules/journalwatch.nix @@ -223,7 +223,7 @@ in [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+ - \S* \S+ \+0000 "(GET|HEAD) /(ocm|ocs)-provider/index\.php" 200 [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+ - \S* \S+ \+0000 "(DELETE|GET|MKCOL|MOVE|PROPFIND|PUT) /public\.php" (200|201|204|207|401|403|404) # - crond: USER www-data pid [0-9]+ cmd php -f /var/www/html/cron\.php + crond: USER www-data pid\s+[0-9]+ cmd php -f /var/www/html/cron\.php ''; match = "IMAGE_NAME = /p1st/nextcloud:(25|26|27|stable)-fpm-alpine/"; } @@ -501,6 +501,7 @@ in \[\S+ \S+ \S+ \S+ \S+\] \[mpm_prefork:notice\] \[pid 1\] AH[0-9]+: caught SIGWINCH, shutting down gracefully # 127\.0\.0\.1 - - \[\S+ \S+\] "GET /health HTTP/1\.1" 200 [0-9]+ "-" "(User-Agent: )?Firefly III Health Checker/\S+" + 172\.23\.0\.3 - - \[\S+ \S+\] "GET /api/v1/cron/\S+ HTTP/1\.1" 200 [0-9]+ "-" "Wget" ''; match = "IMAGE_NAME = fireflyiii/core:latest"; } @@ -544,11 +545,19 @@ in { # yodaNas filters = '' \[\S+ \S+\] \[NOTICE\] Server with the lowest initial latency: \S+ \(rtt: [0-9]+ms\) + \[\S+ \S+\] \[NOTICE\] Sorted latencies: \[\S+ \S+\] \[NOTICE\] -\s+[0-9]+ms \S+ \[\S+ \S+\] \[NOTICE\] Anonymizing queries for \[\S+\] via \[\S+\] ''; match = "_SYSTEMD_UNIT = dnscrypt-proxy2.service"; } + { # yodaNas + filters = '' + time="[^"]+" level=error msg="\[resolver\] failed to query DNS server: 127.0.0.1:53, query: ;[a-z0-9\.]+\tIN\t A" error="read udp 127.0.0.1:[0-9]+->127.0.0.1:53: i/o timeout" + time="[^"]+" level=info msg="Attempting next endpoint for pull after error: Head "[^"]+": Get "[^"]+": net/http: request canceled while waiting for connection \(Client\.Timeout exceeded while awaiting headers\)" + ''; + match = "_SYSTEMD_UNIT = docker.service"; + } { # yodaNas filters = '' @@ -586,7 +595,6 @@ in \S+ mta connecting address=smtps://\S+ host=\S+ \S+ mta connected \S+ mta tls ciphers=TLSv1.3:TLS_AES_256_GCM_SHA384:256 - #\S+ mta cert-check result=\\"valid\\" fingerprint=\S+ \S+ mta cert-check result="valid" fingerprint="SHA256:[0-9a-f]+" \S+ mta delivery evpid=\S+ from=\S+ to=\S+ rcpt=<-> source=\S+ relay="\S+ \(\S+\)" delay=\S+ result="Ok" stat="250 2.0.0 Ok: queued as \S+" \S+ mta disconnected reason=quit messages=1 @@ -726,9 +734,11 @@ in Starting User Runtime Directory /run/user/(0|1000)\.\.\. Finished User Runtime Directory /run/user/(0|1000)\. Stopping User Runtime Directory /run/user/(0|1000)\.\.\. + Stopped User Runtime Directory /run/user/(0|1000)\. Starting User Manager for UID (0|1000)\.\.\. Started User Manager for UID (0|1000)\. Stopping User Manager for UID (0|1000)\.\.\. + Stopped User Manager for UID (0|1000)\. Started Session [0-9]+ of User (root|yoda)\. session-[0-9]+\.scope: Deactivated successfully\. # @@ -744,6 +754,9 @@ in [a-zA-Z ]+ was skipped because of an unmet condition check \([^\)]+\)\. Update is Completed was skipped because no trigger condition checks were met\. # + Starting Update and start Jinja-Compose project\.\.\. + Finished Update and start Jinja-Compose project\. + # Starting Takes BTRFS snapshots and maintains retention policies\.\.\.\. Finished Takes BTRFS snapshots and maintains retention policies\.\. # @@ -830,6 +843,7 @@ in # # Ignore. # + perf: interrupt took too long \([0-9]+ > [0-9]+\), lowering kernel\.perf_event_max_sample_rate to [0-9]+ ACPI BIOS Warning \(bug\): .* ata[0-9]: link is slow to respond, please be patient \(ready=0\) # Not sure about this.