Hi Stephen, ports below 1024 are so called privileged ports which only the superuser (i. e. "root") is allowed to bind processes to. There are ways to allow unprivileged users to bind to those ports, e. g. using capabilities (CAP_NET_BIND_SERVICE) or using a wrapper like authbind.
The latter is available in Ubuntu Linux and you can simply use it as a command wrapper for Graylog by adding it in /etc/default/graylog-server, see https://github.com/Graylog2/fpm-recipes/blob/1.3/recipes/graylog-server/files/ubuntu/default#L10-L12 for the template. Cheers, Jochen On Tuesday, 15 March 2016 20:46:20 UTC+1, Stephen Fox wrote: > > We've been running a ova vmware VM for a few months and are moving toward > server hardware to gain greater storage and performance. > > At this point, I've installed Ubuntu 14 LTS server + graylog2. I thought > I'd copy the data from the VM to the new graylog server then change the IP > of the new server to the IP of the VM. So far so good however, I've noted > that the graylog user can not open port 514 udp for syslogs. I googled it > quite a bit and tinkered with a few options. IPTABLES rules to redirect to > 10514 works fine however I'd have to touch every log source to point to > this higher port. > > I note the OVA graylog install is running graylog-server and graylog-web > as root and using runsv. I also note the OVA has nice tools like > graylog-ctl and has nice organized paths under /opt/graylog which a manual > install of graylog does not appear to have. I'm thinking of just cloning > the existing graylog VM and imaging the new hardware and see how that works. > > Do the chef/puppet install methods of graylog handle the port privileges > like the OVA VM? Do the chef/puppet installs offer the graylog-ctl scripts? > > I'm looking for some input on this VM to hardware migration. Any > recommended methods? > > big thanks for any input > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/37f345b9-b00e-438b-a980-e1ea8d51e804%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
