Re: [graylog2] Timezone best practice?

Thanks! On Friday, September 25, 2015 at 2:41:01 AM UTC-7, Edmundo Alvarez wrote: > > Hi Peter, > > Under the hood, Graylog server uses UTC to work with timezones, and the > web interface uses the user timezone to adjust some messages timestamps. > Usually you set all components to the same

[graylog2] Graylog2 setup, how to send data now?

I follow this guide: http://www.itzgeek.com/how-tos/linux/centos-how-tos/how-to-install-graylog2-on-centos-7-rhel-7.html I have graylog up and running, but how do I send my cisco ASA data to it to start logging? How do I create a syslog listener? -- You received this message because you are

[graylog2] rotation_strategy configuration

Hi, If i make any changes to rotation_strategy, elasticsearch_max_size_per_index,elasticsearch_max_time_per_index = 1h or elasticsearch_max_number_of_indices = 10 in the graylog.conf file, they all go back to default once i run graylog-ctl reconfigure. I have tried different combinations

[graylog2] Index contains messages up to 46 years ago

In indicies i see that it contains Messages up to 46 years ago. It happened after change version of Graylog and user from which it run. Previous it been root, now it grylog. Anyone can help me? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group.

[graylog2] How run graylog from root?

Installed from bin packages on ubuntu server 12.04/ Change "setuid" in /etc/init/graylog-server does not work. -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to

Re: [graylog2] Syslog Logs from Linksys Accesspoint with DD-WRT not shown

That is not valid syslog. Try sending the messages to a raw/plaintext input instead and see if they appear. On Thu, Sep 24, 2015 at 9:31 PM, wrote: > I figured out that the DD-WRT syslog sends logs in UTC, despite setting the > timezone. > > However, the logs should still

Re: [graylog2] Graylog inputs stopped yet still receiving syslogs

Could it be that you have a message journal that is full of messages that Graylog keeps processing? You can see the journal size in the nodes overview and node details pages. It should be at 0. On Thu, Sep 24, 2015 at 7:41 PM, Mark Estridge wrote: > Graylog 1.2.1 setup

[graylog2] Re: Send apache log to Graylog Syslog Input

Thnak you very much!) четверг, 24 сентября 2015 г., 23:17:30 UTC+2 пользователь Jochen Schalanda написал: > > Hi, > > Apache httpd supports sending error logs into the local syslog (see > https://httpd.apache.org/docs/2.4/mod/core.html#errorlog) but not the > access logs ( >

[graylog2] Intermittent Stream Throughput Display Errors

Hi, Unsure if this is the right place to mention this but we`ve been using Graylog since pre 1.0 and are now on version 1.2.1 as supplied recently. The thing is something started to occur to our Graylog instance in our Production environment (Our Test instance is fine on the same version) a

Re: [graylog2] Timezone best practice?

Hi Peter, Under the hood, Graylog server uses UTC to work with timezones, and the web interface uses the user timezone to adjust some messages timestamps. Usually you set all components to the same timezone (to avoid problems, the one where you are or your other computers use), and then each