[graylog2] Re: [Graylog multi node]

Hi guys, Could someone help me on this subject please? regards. Le lundi 9 mai 2016 15:16:05 UTC+2, kaiser a écrit : > > Hello, > > Is there some documents talking about how to install graylog multi nodes, > how to install load balancer, what to replicate, > which log to put in which node, ..

[graylog2] My 1.3.x to 2.x upgrade issues

I have my "server" running on 2.x now. I found the elasticsearch upgrade info helpful, and it pretty much just worked. Graylog was another matter. It took me most of the day to get it working again, and I still have a few issues. 1) The el6 init.d script didn't work for me without replacing se

Re: [graylog2] HTTP Auth pop up window when over SSL with nginx

Turns out upgrade to 2.0.1 from 2.0.0 resolves the issue On 11 May 2016 at 19:40, Peter Horvath wrote: > Hi, > > I've setup my graylog with SSL behind nginx. > But every time i reload the login page as an un authenticated user i get a > pop HTTP auth window what i have to cancel > Note that our

[graylog2] HTTP Auth pop up window when over SSL with nginx

Hi, I've setup my graylog with SSL behind nginx. But every time i reload the login page as an un authenticated user i get a pop HTTP auth window what i have to cancel Note that our graylog setup with LDAP this pop up only accepts local graylog admin user doesn't accept LDAP user. Anybody know ho

Re: [graylog2] Re: Elasticsearch cluster unhealthy (RED) - triggered on plain clean install from official image

How can I check that? On Wed, May 11, 2016 at 6:46 PM Jochen Schalanda wrote: > Hi Joe, > > are there any error messages in the logs of your ES nodes? > > Cheers, > Jochen > > > On Wednesday, 11 May 2016 12:31:14 UTC+2, Joe K wrote: >> >> I installed 2.0.0 official EC2 AMI Image. >> Single, sanda

Re: [graylog2] Web Problems in Graylog 2

Hey Dustin, Can you share you nginx config please? I've setup nginx with ssl but i get an HTTP auth popup when i first load the web interface If i cancel it it works but i get this https://graylogmaster01.internal.test.xxx.io/api/system/sessions 401 (Unauthorized) On Monday, 9 May 2016 22:16:11

[graylog2] Re: Elasticsearch cluster unhealthy (RED) - triggered on plain clean install from official image

Hi Joe, are there any error messages in the logs of your ES nodes? Cheers, Jochen On Wednesday, 11 May 2016 12:31:14 UTC+2, Joe K wrote: > > I installed 2.0.0 official EC2 AMI Image. > Single, sandalone instance, not multiple ES instances in cluster. > > I did this two times and both times withi

[graylog2] Re: Graylog nodes unable to communicate with each other

Hi Ross, you can of course create a MongoDB replica set and connect to this with both Graylog nodes. The MongoDB Java driver should be smart enough to send write requests only to the current MongoDB primary node. Cheers, Jochen On Wednesday, 11 May 2016 13:21:49 UTC+2, Ross wrote: > > Jochen-

Re: [graylog2] [Graylog 2.0] Web interface

Hi, make sure to read http://docs.graylog.org/en/2.0/pages/configuring_webif.html properly and make the Graylog REST API accessible for your web browser (i. e. don't bind it to 127.0.0.1). Cheers, Jochen On Wednesday, 11 May 2016 11:06:45 UTC+2, kaiser wrote: > > Hello Edmundo, > > my graylog

[graylog2] Re: Graylog stream

Hi Seba, I think I now understand. The problem is that Cisco devices don't send valid syslog (at least not according to the respective RFCs) and thus the Graylog syslog parser fails to parse them correctly. You'll need to use a Raw/Plaintext input for those devices and create some extractors to

[graylog2] Re: Switching to whitespace analyzer

Thanks, Jochen! I will. Let's keep our fingers crossed:) Sincerely, Dilip M. On Wednesday, May 11, 2016 at 10:29:16 AM UTC-4, Jochen Schalanda wrote: > > Hi Dilip, > > Graylog 2.0.1 has just been released (some artifacts are still building). > Please give it a try and check if it fixes your pr

[graylog2] Re: Latest RPM still installs 1.3.4-1

Hi Jochen, I Forgot to celan the yum cache. Thanks a lot! Cheers, Eduan On Wednesday, May 11, 2016 at 4:30:13 PM UTC+2, Jochen Schalanda wrote: > > Hi Eduan, > > make sure to remove the old Graylog 1.3 repository from your system and > clear the YUM package/repository cache. > > Cheers, > Joch

[graylog2] Re: Graylog stream

Hi Jochen I cannot create exceptions alerts via email, because in the messages, that I get from the Cisco switch there is no source IP. This is a user's access to the Cisco switch: 23] at 09:20:08 CET Tue May 10 2016 *Thank you so much for your support* *Seba* On Friday, May 6, 2016 at 11:47:

[graylog2] Re: Pluggable Functions - Getting Started

Hi, those functions are currently provided by the Pipeline Message Processor Plugin (https://github.com/Graylog2/graylog-plugin-pipeline-processor). Please take a look at the source code of that plugin for now (as it's still in alpha state and no comprehensive documentation exists). Cheers, Jo

[graylog2] Re: Latest RPM still installs 1.3.4-1

Hi Eduan, make sure to remove the old Graylog 1.3 repository from your system and clear the YUM package/repository cache. Cheers, Jochen On Wednesday, 11 May 2016 14:24:55 UTC+2, Eduan Bekker wrote: > > Hi all, > > I have been trying to upgrade from 1.3.4 to 2.0 on my Centos 6 system. > Using

[graylog2] Re: Switching to whitespace analyzer

Hi Dilip, Graylog 2.0.1 has just been released (some artifacts are still building). Please give it a try and check if it fixes your problem. Cheers, Jochen On Tuesday, 10 May 2016 18:48:10 UTC+2, Dilip Muthukrishnan wrote: > > Thanks, Jochen. Any idea of when you willl release the build? > > S

[graylog2] Latest RPM still installs 1.3.4-1

Hi all, I have been trying to upgrade from 1.3.4 to 2.0 on my Centos 6 system. Using the instructions here and here when doing the follo

Re: [graylog2] how to secure graylog messages

Hej Amit, Am 11. Mai 2016 um 11:17:18, Amit Sharma (amit.sharma=40kaarya.com) schri= eb: > What is the configuration required for securing the Graylog messages =3F= > =20 > at present. i am getting logs from out side network & i need to make lo= gs > are secure while transmitting the logs. depen

[graylog2] Pluggable Functions - Getting Started

In the docs it is stated that "functions are written in Java and are pluggable, allowing extending the capabilities of Graylog in a simple manner." I am more or less experienced with plugin development for Graylog; however, I ca

[graylog2] Re: Graylog nodes unable to communicate with each other

Jochen- I misunderstood the architecture diagram and assumed the mongoDBs on each node were just for per-node support, so that's probably the problem. On that note, I have a MongoDB question: I want to take in logs on both graylog nodes. Do I point both nodes at the MongoDB on the master node?

[graylog2] Elasticsearch cluster unhealthy (RED) - triggered on plain clean install from official image

I installed 2.0.0 official EC2 AMI Image. Single, sandalone instance, not multiple ES instances in cluster. I did this two times and both times within one day from install I have notice in console: "Elasticsearch cluster unhealthy (RED). The Elasticsearch cluster state is RED which means shards

[graylog2] Re: Graylog 2.0 features not available after upgrade

Hi Jochen, Thank you. We used a non-default plugin_dir and the new plugins were installed to the default one, so we had to move the plugins to our directory and it works now. On Monday, May 9, 2016 at 8:31:56 PM UTC+2, Jochen Schalanda wrote: > > Hi Peter, > > the menu items marked in your scr

[graylog2] how to secure graylog messages

Guys, What is the configuration required for securing the Graylog messages ? at present. i am getting logs from out side network & i need to make logs are secure while transmitting the logs. thanks amit -- You received this message because you are subscribed to the Google Groups "Graylog User

Re: [graylog2] [Graylog 2.0] Web interface

Hello Edmundo, my graylog server is on a specific machine. I am trying to acces the web page from my local computer. In the previous graylog version the configuration was set to 127.0.0.1 I have tried with the network ip address instead but it doesn't work. -- You received this message becau

Re: [graylog2] [Graylog 2.0] Web interface

Hi, Is Graylog running on the same machine you use to connect to the web interface? By default Graylog only starts the web interface in 127.0.0.1, and it looks like you didn't change that. Please take a look at the relevant configuration options in the documentation: http://docs.graylog.org/en

[graylog2] Re: [Graylog 2.0] Web interface

here is my log: 2016-05-11T10:18:28.909+02:00 INFO [AbstractJerseyService] Enabling CORS for HTTP endpoint 2016-05-11T10:18:31.209+02:00 INFO [NetworkListener] Started listener bound to [127.0.0.1:9000] 2016-05-11T10:18:31.211+02:00 INFO [HttpServer] [HttpServer] Started. 2016-05-11T10:18:31.

[graylog2] [Graylog 2.0] Web interface

Hello, I have installed graylog 2.0 with elasticsearch 2.3.2 on centos 6 I started graylog-server but I canno't get any web interface Any idea? regards. -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop

Re: [graylog2] Re: not able to join Graylog with ES Clusters

Hi, please provide the full error message from your Firefox developer console. It sounds like a mixed content warning to me (e. g. when serving the web interface or the Graylog REST API via HTTPS but not both). Anyway, without the full error message and a description of the problem you're rece

[graylog2] Re: Graylog nodes unable to communicate with each other

Hi Ross, make sure that elasticsearch_network_host (see https://github.com/Graylog2/graylog2-server/blob/2.0.0/misc/graylog.conf#L187-L194 and http://docs.graylog.org/en/2.0/pages/upgrade.html#default-network-host) is set to an IP address (or host name) which the other Elasticsearch and Graylo