Anomaly detection Engine for Linux Logs (ADE)

How the ADE output is organization - Directory Structure

The output created by the ADE command analyze is stored in the file system. ADE uses directory name and file name to organized the output. The directory name and file name are created to help you navigate to the appropriate file.

Files created by analyze

If you are using the defaults shipped with ADE, the following directories and files are created

directory name (system name )
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name (interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
directory name (system_name )
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))
- directory name (date in YearMonthDay format)
  - index.xml (summary of intervals within the period)
  - directory name interval (details for each interval)
    - interval_nnn.xml ( details of messages issued during this interval)
    - interval_nnn_debug.xml.gz ( information to debug problems with scorers (gzipped))

ADE

Anomaly Detection Engine for Linux Logs

Anomaly detection Engine for Linux Logs (ADE)

How the ADE output is organization - Directory Structure

Files created by analyze