This script analyzes EZproxy-generated "SPU" log files and spits out a CSV with aggregate data about EZproxy use. It uses Python 3.
Use this script on the command line like so:
python ezp-analysis.py [directory of SPU logs to analyze] [desired output filename.csv]
Command line output will probably look like this:
CSV with this info:
- Filename of log being analyzed
- Number of total connections
- Number of on-campus connections (as determined by IP address range, which you must edit before running the script)
- Percentage of on-campus connections out of total
- Number of off-campus connections
- Percentage of off-campus connections out of total
- Number of library connections (as determined by IP address range, which you must edit before running the script)
- Percentage of on-campus connections (out of total connections)
- Percentage of library connections (out of total connections)
- Number of student sessions off-campus
- Percentage of student sessions out of total off-campus
- Number of fac/staff sessions off-campus
- Percentage of fac/staff sessions out of total off-campus
Screenshot of an output CSV:
- IP addresses Make sure to change the IP address range specifications within the script. This is done using a regular expression.
- For instance, let's say that all of the computers in your library have IP addresses that begin with 10.1.11. In the script, you'd have this on line 67:
libip = re.search(r'10\.1\.11\.\d+?\s-', line) - Tip: You shouldn't keep patron IP addresses for a long time, in order to protect patron privacy. I first strip out the last 2 blocks in the IP address, so that I can still see whether users are on or off campus, before using this script.
- For instance, let's say that all of the computers in your library have IP addresses that begin with 10.1.11. In the script, you'd have this on line 67:
- "Sessions" are different from "connections." Sessions are when someone logs into EZproxy and does several things; a connection is a single HTTP request. Sessions can only be tracked if they're off-campus, as they rely on a session ID. On-campus EZproxy use doesn't get a session ID and so can only be tracked with connections, which are less useful. On-campus use doesn't tell us anything about student vs. faculty use, for instance.
- SPU logs: Run it over the "SPU" logs that EZproxy generates, not the full logs, as these shorter SPU logs take much less time to analyze and will give you a more useful connection count. SPU logs only count the "Starting Point URL" connections, rather than every single connection (javascript, .asp, favicon, etc.), which may not tell you much.
- This is a pretty hacky script. I make no guarantees as to its accuracy. Go over it with a fine-toothed comb and make sure your output lines up with what you see in your other data sources.
- This output is only a sketch of how EZproxy may be used on your campus.
- Please take a good look at the logs you're analyzing and familiarize yourself with them — otherwise you may get the wrong idea about this script's output!
My blog post about this script: http://robincamille.com/2014-04-22-analyzing-ezproxy-logs-python/
This script is also mentioned (briefly) in Coding for Librarians: Learning by Example by Andromeda Yelton (2015).
A more ambitious EZproxy parsing project with a nice interface: https://github.com/ezpaarse-project/ezpaarse