subject:"\[graylog2\] Re\: Redirect logs from \/varlog\/messages to a Graylog server"

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-20 Thread Benbrahim Anass

problem Solved, of course it's SElinux
Thank you NSA, FUCK!
Jochen cheers dude

Le jeudi 20 octobre 2016 12:09:04 UTC+2, Jochen Schalanda a écrit :
>
> Hi,
>
> On Thursday, 20 October 2016 11:55:56 UTC+2, Benbrahim Anass wrote:
>>
>> and when i try to configure the input on graylog with the port 514 it 
>> says that i dont have root permission . i dont want to start with root or 
>> chmod graylog, i just want to configure another port but it's not working
>>
>
> While that sounds like a firewall issue in general, you can simply use 
> authbind  (see 
> https://debian-administration.org/article/386/Running_network_services_as_a_non-root_user.
>  
> and 
> https://github.com/Graylog2/fpm-recipes/blob/2.0/recipes/graylog-server/files/environment#L10-L12)
>  
> to allow the Java process running Graylog to bind to a privileged port.
>
> Cheers,
> Jochen
>

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/dfeb715e-90a4-4aab-9d54-408faca70045%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-20 Thread Jochen Schalanda

Hi,

On Thursday, 20 October 2016 11:55:56 UTC+2, Benbrahim Anass wrote:
>
> and when i try to configure the input on graylog with the port 514 it says 
> that i dont have root permission . i dont want to start with root or chmod 
> graylog, i just want to configure another port but it's not working
>

While that sounds like a firewall issue in general, you can simply use 
authbind  (see 
https://debian-administration.org/article/386/Running_network_services_as_a_non-root_user.
 
and 
https://github.com/Graylog2/fpm-recipes/blob/2.0/recipes/graylog-server/files/environment#L10-L12)
 
to allow the Java process running Graylog to bind to a privileged port.

Cheers,
Jochen

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/c2c48dc8-d673-4b9f-a295-59b2b61b3615%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-20 Thread Benbrahim Anass

i've tested the log forwarding from the syslog server to another server and 
it's only working on port 514, when i trie with any other port it doesnt 
pass. i've already configured the two servers the right way and opened 
ports on the firewall, i've even disabled it but nothing working. and when 
i try to configure the input on graylog with the port 514 it says that i 
dont have root permission . i dont want to start with root or chmod 
graylog, i just want to configure another port but it's not working
the exemple you gave me is so basic i already know how to work with 
syslogs, i may missconfigured something, i'll keep searching but if you 
have any suggestions of where the probleme could be comming from please 
tell me
thank you so much
cheers

Le jeudi 20 octobre 2016 10:29:40 UTC+2, Jochen Schalanda a écrit :
>
> Hi Benbrahim,
>
> On Thursday, 20 October 2016 10:05:32 UTC+2, Benbrahim Anass wrote:
>>
>> Graylog is not recieving anything, i did exactly as the guide . maybe i 
>> did something wrong when adding syslog tcp inpute. can you give me an 
>> exemple please
>>
>
> Examples are already given in the guide I've linked to.
>
> How exactly did you configure your syslog daemon and how did you configure 
> the Syslog UDP or TCP input in Graylog?
>
> Cheers,
> Jochen
>

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/f3457d8c-9c40-428a-92bb-e14171f485eb%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-20 Thread Jochen Schalanda

Hi Benbrahim,

On Thursday, 20 October 2016 10:05:32 UTC+2, Benbrahim Anass wrote:
>
> Graylog is not recieving anything, i did exactly as the guide . maybe i 
> did something wrong when adding syslog tcp inpute. can you give me an 
> exemple please
>

Examples are already given in the guide I've linked to.

How exactly did you configure your syslog daemon and how did you configure 
the Syslog UDP or TCP input in Graylog?

Cheers,
Jochen

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/b74f7d66-b3b3-431b-a2a4-ab51df227dd4%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-20 Thread Benbrahim Anass

Graylog is not recieving anything, i did exactly as the guide . maybe i did 
something wrong when adding syslog tcp inpute. can you give me an exemple 
please
Thank you Dude.


Le mercredi 19 octobre 2016 16:24:52 UTC+2, Jochen Schalanda a écrit :
>
> Hi Benbrahim,
>
> see https://github.com/Graylog2/graylog-guide-syslog-linux#readme for 
> instructions how to configure rsyslog or syslog-ng to forward logs to 
> Graylog.
>
> Cheers,
> Jochen
>
> On Wednesday, 19 October 2016 15:30:06 UTC+2, Benbrahim Anass wrote:
>>
>> Hello
>> i'm wondering if it is possible to redirect all /var/log/message of a 
>> syslog server to a distant graylog server
>> Thanks alot
>>
>>

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/bb63719b-5edd-47fd-8c7e-0a20f8198ba8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

2016-10-19 Thread Jochen Schalanda

Hi Benbrahim,

see https://github.com/Graylog2/graylog-guide-syslog-linux#readme for 
instructions how to configure rsyslog or syslog-ng to forward logs to 
Graylog.

Cheers,
Jochen

On Wednesday, 19 October 2016 15:30:06 UTC+2, Benbrahim Anass wrote:
>
> Hello
> i'm wondering if it is possible to redirect all /var/log/message of a 
> syslog server to a distant graylog server
> Thanks alot
>
>

-- 
You received this message because you are subscribed to the Google Groups 
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit 
https://groups.google.com/d/msgid/graylog2/b3c57ce6-2139-4566-8de4-c573c9a401ba%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

[graylog2] Re: Redirect logs from /varlog/messages to a Graylog server

6 matches

Site Navigation

Mail list logo

Footer information