replay-log - resubmit syslog data back to syslog
Use replay-log to play back Unix syslogd(8) logs at the original, increased, or random speed. Logs sent to standard output. The logger(1) utility can resubmit these logs to syslogd(8), or the output can be used to test sec.pl rules. Examples:
Replay logs from /var/logl/messages:
$ replay-log < /var/log/messages
Replay logs with three second random delay instead of actual delays present in the logs:
$ < /var/log/messages replay-log -r 3
Speed up literal playback:
$ replay-log -f 3600 < /var/log/messages
Send sshd logs to a named pipe, and read them with sec.pl:
$ mkfifo logfile $ grep sshd < /var/log/messages \ | replay-log -f 1000 -o logfile & $ sec.pl --conf=sshd.conf --input=logfile