I have below command, which i use for checking last two hours log file, but i want to check 30 minutes log and discard old log, only match current time with last 30 minutes. Command i am using. This below attach log file format is for this week, but sometime it got change in time of log, so i need to search on time base not on format base.
sed -n "/^$(date --date='2 hours ago' '+%b %d %H:')\\|^$(date --date='1 hours ago' '+%b %d %H:')/p" logfile.txt
Attached File is for review.
Sep 29 03:21:02 server1
Sep 29 03:31:02 server1
Sep 29 04:21:02 server1
Sep 29 04:31:02 server1
Sep 29 05:21:02 server1
Sep 29 05:31:02 server1
Sep 29 06:21:02 server1
Sep 29 06:31:02 server1
Sep 29 13:21:02 server1
Sep 29 13:31:02 server1
Sep 29 14:21:02 server1
Sep 29 14:31:02 server1
Sep 29 15:21:02 server1
Sep 29 15:31:02 server1
Sep 29 16:21:02 server1
Sep 29 16:31:02 server1
Sep 29 17:21:02 server1
Sep 29 17:31:02 server1
Sep 30 03:21:02 server1
Sep 30 03:31:02 server1
Sep 30 04:21:02 server1
Sep 30 04:31:02 server1
Sep 30 05:21:02 server1
Sep 30 05:31:02 server1
Sep 30 06:21:02 server1
Sep 30 06:31:02 server1
Sep 30 13:21:02 server1
Sep 30 13:31:02 server1
Sep 30 14:21:02 server1
Sep 30 14:31:02 server1
Sep 30 15:21:02 server1
Sep 30 15:31:02 server1
Sep 30 16:21:02 server1
Sep 30 16:31:02 server1
Sep 30 17:21:02 server1
Sep 30 17:31:02 server1
Oct 1 03:21:02 server1
Oct 1 03:31:02 server1
Oct 1 04:21:02 server1
Oct 1 04:31:02 server1
Oct 1 05:21:02 server1
Oct 1 05:31:02 server1
Oct 1 06:21:02 server1
Oct 1 06:31:02 server1
Oct 1 13:21:02 server1
Oct 1 13:31:02 server1
Oct 1 14:21:02 server1
Oct 1 14:31:02 server1
Oct 1 15:21:02 server1
Oct 1 15:31:02 server1
Oct 1 16:21:02 server1
Oct 1 16:31:02 server1
Oct 1 17:21:02 server1
Oct 1 17:31:02 server1