Hi,
Do we need to open firewall port 5044 for logstash output log messages into
graylog server? I have configured beats plugin for input with default port
5044 but when i run below command, it does nothing -
./filebeat -e -c filebeat.yml
On Wednesday, March 2, 2016 at 11:03:42 AM UTC-8, emb3dd
>
> So We got this figured out or at least got it working.
>
The group mapping (optional) section in the LDAP settings area is not
optional for an AD setup at least
Previous versions of graylog required you to be specific in your search
base for what users you wanted to be able to log in. e
This was the best resource I have used myself :
https://stackoverflow.com/questions/19967472/elasticsearch-unassigned-shards-how-to-fix
It has several solutions which might work; Ultimately, i like Splanger's
edit of W. Andrew Loe III's script which i edited a copy to accept server &
node as p
Thanks Jochen, I have installed filebeat on my linux server from where i
want to read log files. How do i send logs to graylog which is hosted on
AWS. My AWS Graylog URL is -
http://ec2-54-153-172-32.us-west-1.compute.amazonaws.com/
On Wednesday, March 2, 2016 at 3:34:56 AM UTC-8, Jochen Schalan
Hi all,
My question is about the elasticsearch cluster. Its state is RED whith 32
shards unassigned. This happened after upgrading from 1.0.1 to 1.3.3.
As I could'nt upgrade with dpkg, I renamed the /var/opt/graylog folder,
uninstalled the old version then installed the v.1.3.3 and renamed back
I'm looking at the Graylog as possible solution for us and this was one of
my issues as well, can you share more details please. I'm a bash guy and
I'll like to understand the logic of this. (on a side note: I'm completely
green with greylog ;) )
On Tuesday, March 8, 2016 at 3:35:49 PM UTC, Mik
Ive got this all figured out. Is anyone interested in how to make a
configuration like this work? Im a windows guy so I scripted out the
moving indexes portion using powershell however someone who can parse json
in bash could replicate the same things fairly easy.
Anyways Im happy to help
Mi
It seems that graylog recorded multiple ldap entries in mongodb. Removing
all of the ldap configs and setting up a fresh one has resolved the issue
of the UI not appearing to be saving anything.
I still have the issue where I cant log in using my AD creds even though
both tests in the ldap sec
Hey All,
We have 2 independent graylog servers, each with 2 elasticsearch nodes, I
would like to query both from a single web ui, I have both nodes connected
in a master/slave configuration sharing the same mongod database.
The question is, is this a valid configuration
Left:
Logstash forwarder
