I have launched a new plaintext input on Graylog 1.3. I can verify with
tcpdump that the packets are arriving at the interface and that my
server.log reports:
2016-02-24T12:07:40.141-05:00 TRACE [56cdb323a78e6e9257161f5b] Recv network
data: 1969 bytes via input 'Raw/Plaintext TCP' <56cdb323a78e6e9257161f5b>
from remote address /10.1.4.72:6433
Also, in the gui, I see the byte count incremented. When I click "Show
received input" and set the time range to ALL messages, there is nothing
returned. The raw messages are in JSON format as such:
{"MFSOURCETYPE":"SYSLOG","DATETIME":"2016-02-24 11:51:49.54
-0500","SYSLOGSYSTEMNAME":"SAND1","RESPONSE_JOBID":"STC00124","MSGREQTYPE":"C","COMMAND_JOBNAME":"SYSVUSER","SYSPLEX":"SANDPLX","COMMAND_CONSOLE":"INTERNAL","ACTION":"INFORMATIONAL","COMMAND":"F
SDFLOG,STATUS"}
Any ideas why these messages don't appear in the search output?
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/9a6dbf26-94b4-49a5-997b-f87556ec3f4f%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
