Hey!
The static fields are not added by the input, even though the UI makes you
believe they are. In fact they are added during the filter chain execution,
which I from your description runs after the pipeline in your system.
The reason for adding the field later is that at the input level the
Okay I found the solution.
For some reason, the space after "Nom du compte is a non breaking space. So
I used alt 0160 to put a non-breaking space here. It works now.
Thanks a lot anyway Kaiser, greatly appreciated ^^
On Tuesday, July 5, 2016 at 8:28:21 AM UTC+4, Zoizo wrote:
>
> Hello,
>
>
Hello,
Even with the (?mi) addition, it's not working. I wonder if some characters
are wrong in the log, like maybe some spaces are not spaces in reality
(though it would be weird that they are spaces when c/ced).
Because, for example (Nom du compte) returns Nom du compte, but (Nom du
compte
Hi there
I'm trying to get my first pipeline working - without any luck
I have checked and "pipeline processor" is #1 in "Message Processors
Configuration", and consists of one pipeline, with one stage which contains
one rule. The rule is
rule "My little pony"
when
Hello All,
I'm running the following on CentOS and am having issues with nxlog.
collector-sidecar-0.0.8-1.x86_64 (Centos 6.5)
nxlog-ce-2.9.1504-1.x86_64 (Centos 6.5)
graylog-server-2.0.3-1.noarch (CentOS 7.2)
When it start up it seems to work fine, then I get the error below. After
this it
Thank you Marius, I implemented the suggestions listed under:
http://docs.graylog.org/en/2.0/pages/configuration/graylog_ctl.html#production-readiness
apart
from: "Seperate the box network-wise from the outside, otherwise
Elasticsearch can be reached by anyone".
I'd like to limit access to
Hi Jan,
First and foremost, that statement was not meant as a knock on Graylog
documentation, in fact I'm impressed how fast and frequent the docs are
updated and kept current.
Given all the configuration / distribution varieties, it is a
understandably impossible to have flawless
I'm on 2.0.x, not sure about the full version, I will check tomorrow, but
it should be the last since I did everything (install, architecture etc)
last week, with latest rpm.
Input is syslog tcp.
I will try again tomorrow, thanks again.
On Mon, Jul 4, 2016 at 7:03 PM, kaiser
My test was done on my graylog test server.
Which graylog version do you have?
Which kind of input did you use? Gelf (in that case maybe the (?mi) could
solve the issue) ?
I have made the test with graylog 2.0.3
If it still doesn't work you should try the grok pattern
--
You received
Thank you for your time mate.
Hmm well it might have worked in a tester (it that's where you tested it)
but in the graylog interface it didn't for me.
Nevertheless,I will try again with your version tomorrow at work and keep
the thread updated.
Thanks.
On Monday, July 4, 2016 at 6:33:01 PM
Your regex is ok.
Worked for me.
You can otherwise try:
(?mi)Nom du compte : ([a-zA-Z0-9.-]{1,50})
And for the second one you just need to capture Compte cible :D:
(?mi)Compte cible : .*Nom du compte : ([a-zA-Z0-9.-]{1,50})
@peluche
Le lundi 4 juillet 2016 11:52:03 UTC+2, Zoizo a écrit
Hi,
Thanks.
i was looking for something like that along with the graylog server part
but i couldn't find any.
Le lundi 4 juillet 2016 11:41:32 UTC+2, Jan Doberstein a écrit :
>
> Hej,
>
>
> On 4. Juli 2016 at 11:27:29, sangh (sanheg...@gmail.com )
> wrote:
> > i have 2 graylog server and i
Hello,
I am looking for a solution to my problem since several hours in vain, so
I'm posting here in hope you could help me.
I have some logs who follow this scheme (it's in french) :
domain.name.com MSWinEventLog 1 Security 665240 Thu Jun 30 14:35:38 2016
4724
Hej,
On 4. Juli 2016 at 11:27:29, sangh (sanhegi.ma...@gmail.com) wrote:
> i have 2 graylog server and i want to deploy a cluster of three
> elasticsearch so the 2 server can use it. Most article explain how to set
> up graylong server along with elastic search on the same machine. Like
> this
Hi,
i have 2 graylog server and i want to deploy a cluster of three
elasticsearch so the 2 server can use it. Most article explain how to set
up graylong server along with elastic search on the same machine. Like
this one
hi,
i have 2 graylog server and i w
Le lundi 4 juillet 2016 10:45:21 UTC+2, Jan Doberstein a écrit :
>
> Hej
>
> On 4. Juli 2016 at 09:31:03, sangh (sanheg...@gmail.com )
> wrote:
> > for those who deployed bigger production setup for several graylog node.
> > Can they show how did they
Hello Jaime,
I just followed
this
http://docs.graylog.org/en/2.0/pages/configuration/graylog_ctl.html#extend-disk-space
tutorial and it worked fine (a cluster with two ova images).
So now I have 100G separate disk space for /var/opt/graylog/data
Regards,
Dietmar
On Friday, July 1, 2016 at
Hej
On 4. Juli 2016 at 09:31:03, sangh (sanhegi.ma...@gmail.com) wrote:
> for those who deployed bigger production setup for several graylog node.
> Can they show how did they install elasticsearch cluster
what is your question exactly? that most people use the Distribution
Package is not what
Hej Jamie,
On 1. Juli 2016 at 21:38:45, Jamie P (jamiecpar...@gmail.com) wrote:
> I have been researching on how to expand the hard drive in the OVA. I am
> needing to extend it to 100G from the 20G minimum, and I keep running into
> brick walls trying to do this. Some of the links that I keep
Hi,
for those who deployed bigger production setup for several graylog node.
Can they show how did they install elasticsearch cluster
Thanks
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving
20 matches
Mail list logo