Hello All! I have having an issue and hope that someone might be able to point me in the right direction. No messages are coming into Graylog. I have just installed Graylog on a centos 7 system, everything appears to be healthy and I have added an input to watch for UDP syslog messages on port 5140, I have pointed multiple routers (different vendors) to send logs on UDP port 5140 to the graylog server. A packet capture directly on the server confirms that the syslog packets are making it to the server. I have disabled the firewall and do not use SELinux. I am not seeing anything come into Graylog (via gui) and see no messages in any of the log files. I have also tried setting up a raw/plain text UDP input since it is mentioned that sometimes routers/firewalls do not sends logs per the RFC.
I have verified that the port is open Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State udp6 0 0 [::]:5140 [::]:* Thank You all for any assistance you can provide! John -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/83521e0d-4bc0-49be-a89a-3e6494c35de5%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
