i'm using an ubuntu virtual machine on vmware workstation where i installed rsyslog and configured the rsyslog.conf file by adding *.* @@ thegraylog ip adress:5555 and i created an input on the graylog web interface (my graylog server is installed on vsphere ) ,i used tcp syslog ,the input is runing but i'm not receiving any messages (nothing in the web interface changed) and i enabled the port 5555 on my firewall ,should i configure the graylog configraation file too ? How about using collectors on a linux machine is that easier ? my wireshark shows the syslog being sent between my machine and my graylog server ;however nothing shows up on my interface ,however the source port of message from my ubuntu to graylog is 46054 ,and the destination port is 514 ( eventhough i confgiured my rsyslog.conf with port 1591 and my input too ,the prtocol is UDP eventhough i specified tcp in my input ,and added the extra @ for tcp All of this seems very messed up
as for my firewall i followed the instruction on this page https://kb.cyberoam.com/default.asp?id=1709 and nothing shows nowhere ,not even on wireshark Le mardi 24 janvier 2017 08:21:11 UTC, Jochen Schalanda a écrit : > > Hi, > > how are you sending messages to Graylog? What's your network setup? Did > you check your firewall rules and that the routing is correct? > > Did you check with Wireshark or a similar tool, if the messages actually > reached Graylog? > > Cheers, > Jochen > > On Monday, 23 January 2017 23:35:13 UTC+1, jony wrote: >> >> i tried sending syslog tcp and sending raw text tcp using a non >> privileged port, both showed the message 'Running' however messages are >> nowhere to be found ,and at the right top of the page ,i get 0 in/out >> messages ; what do you think could be the cause ? other than that i get no >> error message ,and the overview shows nothing >> > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/191a1a8f-6f1e-43a1-b280-eca5e0a8e076%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
