ip-remove removes ipv4 and ipv6 addresses from a file. This can be useful when IP-addresses must not be stored longer than n days for data protection reasons, but you still want to keep the logs for a longer time period.
pip install git+https://github.com/theendlessriver13/ip-remove.git@masterusage: ip-remove [-h] [-V] [--log-nr LOG_NR] [--anonymize [ANONYMIZE]] [--dry-run] logfile
remove ipv4 and ipv6 addresses from a file
positional arguments:
logfile path to logfile
optional arguments:
-h, --help show this help message and exit
-V, --version show program's version number and exit
--log-nr LOG_NR number of the log to change e.g. foo.log.1
--anonymize [ANONYMIZE]
anonymize the ip address by replacing the last n octets with 0
--dry-run print what would have been done, make no changes- remove the ip from
foo.txt:ip-remove foo.txt - test with a dry run first
ip-remove foo.txt --dry-runand get the output to stdout without modifying the file - use
ip-remove foo.txt --anonymize 2to replace the last two digits of the IP address
This tool can be used as a postrotate script with logrotate.
example config:
/var/log/foo/*.log {
daily
missingok
rotate 14
copytruncate
postrotate
/home/runner/venv/bin/ip-remove $1 --log-nr 7
endscript
}- you can specify
--log-nr 7to only remove the ip addresses from the 7th rotated log (e.g. inlogrotateafter seven days when usingdaily) - the script is run on all logs the
logrotateconfig covers when rotating e.g. in this caseaccess.loganderror.logwould be processed - the operation is not atomic!