[graylog2] Re: "Loading throughput" never finishes
Forgot to mention, this is on "graylog-web-interface v1.3.3 (0fda9dc) (Oracle Corporation 1.8.0_72 / Linux 2.6.32-44-pve) on graylog" and rebooting the server seemed to have fixed it. On Wednesday, June 8, 2016 at 2:20:51 PM UTC+8, Eric Rosel wrote: > > Hi, > > I'm also new to Graylog. > I'm having the same issue. > "Loading throughput" never finishes. > > This is on Ubuntu 14.04.2 LTS with: > . 4GB RAM - only around 50% is used > . 1 CPU core @2.4GHz - 97% idle > . 100GB HDD > . running in an openvz container > > Were you (or anyone else out there) able to fix this? > > If it's any help, I got this in the Google Chrome Console: > > = > *** SockJS CDN is being retired on Dec 1st *** Please transition to a > public CDN. See https://github.com/sockjs/sockjs-client/issues/198 for > more information. > app.6522837….js:28 Uncaught TypeError: Cannot read property > 'contentWindow' of null > cdn.sockjs.org/sockjs-0.3.min.js:27 *** SockJS CDN is being retired on > Dec 1st *** Please transition to a public CDN. See > https://github.com/sockjs/sockjs-client/issues/198 for more information. > app.6522837….js:28 Uncaught TypeError: Cannot read property > 'contentWindow' of null > cdn.sockjs.org/sockjs-0.3.min.js:27 *** SockJS CDN is being retired on > Dec 1st *** Please transition to a public CDN. See > https://github.com/sockjs/sockjs-client/issues/198 for more information. > app.6522837….js:28 Uncaught TypeError: Cannot read property > 'contentWindow' of null > = > > Thanks > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/356edc24-63d8-456b-b1ea-c3deb9918623%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: "Loading throughput" never finishes
Hi, I'm also new to Graylog. I'm having the same issue. "Loading throughput" never finishes. This is on Ubuntu 14.04.2 LTS with: . 4GB RAM - only around 50% is used . 1 CPU core @2.4GHz - 97% idle . 100GB HDD . running in an openvz container Were you (or anyone else out there) able to fix this? If it's any help, I got this in the Google Chrome Console: = *** SockJS CDN is being retired on Dec 1st *** Please transition to a public CDN. See https://github.com/sockjs/sockjs-client/issues/198 for more information. app.6522837….js:28 Uncaught TypeError: Cannot read property 'contentWindow' of null cdn.sockjs.org/sockjs-0.3.min.js:27 *** SockJS CDN is being retired on Dec 1st *** Please transition to a public CDN. See https://github.com/sockjs/sockjs-client/issues/198 for more information. app.6522837….js:28 Uncaught TypeError: Cannot read property 'contentWindow' of null cdn.sockjs.org/sockjs-0.3.min.js:27 *** SockJS CDN is being retired on Dec 1st *** Please transition to a public CDN. See https://github.com/sockjs/sockjs-client/issues/198 for more information. app.6522837….js:28 Uncaught TypeError: Cannot read property 'contentWindow' of null = Thanks -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/996d9244-d967-472a-890f-cdda50776ed1%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: graylog2 extractor set source as incoming IP
Hi Adi spivak, Graylog supports the log format such as GELF[Graylog extended log format]. you could use the host attribute of GELF to specify the device id as well as the your application context. -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/9f8a6cdf-f940-4e66-b2e6-98cf0503f3d7%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] recommendations for image/graphing for graylog?
Hi there I'm wanting to scrape some reports out of graylog as tables/images for viewing by a wider range of internal staff - who definitely don't need access via the web interface I have no idea where to start. I assume I'll need to do some ES calls to pull out the raw data and then throw through some kind of graphing package - any recommendations from the group how to do this? Thanks! -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/CAFChrgJ6rJ2ikQEhN08tikcJKtTdH6yHPoCsHyBmMhbaabDdZQ%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: graylog-collector-sidecar
/etc/graylog/collector-sidecar/generated/nxlog.conf So this file does not exist? I had a similar problem in Windows. Just put an empty file there with that name and it won't fail the file check. After it gets beyond that, it should write the config to the conf file. On Tuesday, 7 June 2016 02:02:24 UTC-7, Joshua Humpich wrote: > > Hi folks, > I'm trying to get these collector-sidecar running on my linux. > Did the installation of nxlog and the collector-sidecar.rpm file. > My graylog server is running on another machine. > First of all the error message when runnning the collector-sidecar binary > with the conf file > > graylog-collector-sidecar -c > /etc/graylog/collector-sidecar/collector_sidecar.yml > > INFO[] Using collector-id: 72a5ed2b-f5ae-46dc-88e9-a1029f57c545 > INFO[] Fetching configurations tagged by: [daisy] > INFO[] Starting collector supervisor > INFO[] [nxlog] Starting > ERRO[] [nxlog] Collector exits immediately, this should not happen! > Please check your collector configuration! > ERRO[0019] [UpdateRegistration] Failed to report collector status to > server: invalid character '<' looking for beginning of value > ERRO[0039] [RequestConfiguration] Bad response status from Graylog server: > 504 Gateway Time-out > > > Now the conf file (pls notice the server_url section there is a normal ip > address and no <> stuff considering the error message ;-)) > > server_url: http://:12900 > tls_skip_verify: true > node_id: graylog-collector-sidecar > collector_id: file:/etc/graylog/collector-sidecar/collector-id > tags: > - test > log_path: /var/log/graylog/collector-sidecar > update_interval: 10 > backends: > - name: nxlog > enabled: true > binary_path: /usr/bin/nxlog > configuration_path: > /etc/graylog/collector-sidecar/generated/nxlog.conf > > > The collector-sidecar did not fetch any config from the graylog server so > the generated dir is empty. > > Does anybody faces the same problem? > > > Regards, > Josh > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/f145b94b-4ba2-4332-9595-ae4441a22cf8%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: how to export logs as csv
Hi, are there any error messages in the logs of your Graylog node? You can check this by logging into the virtual machine and checking the /var/log/graylog directory. Cheers, Jochen On Tuesday, 7 June 2016 17:50:57 UTC+2, Mohammad Amin Khodamoradi wrote: > > Hi > I want to export logs as csv but when I click more actions and then > export as CSV , one empty CSV file will download !!! > please help me. I use graylog 2.0 on virtual machine. > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/48a9daba-2927-4fea-bc7c-85d1d77da349%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: large searches kill ES - can graylog stop this?
*I agree with Jason!* Due to (normal) user activities it shouldn't be possible to crash any part of the graylog infrastructure. Bad response times (or even timeouts) for the end user are worse, but more acceptable than a crash. In the past we have also seen ES out of memory because of excessive use of fielddata. Since we raised the ES heap to 31 GB, this type of problem is nearly gone. Newer ES versions may also help. Holger -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/38cd57e5-b686-45be-b846-80fef41a1dd6%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] how to export logs as csv
Hi I want to export logs as csv but when I click more actions and then export as CSV , one empty CSV file will download !!! please help me. I use graylog 2.0 on virtual machine. -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/318fc0f9-2606-4944-aa95-9537808988da%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [graylog2] Re: drop logs based on rules
Hi Rajeev,
except for the missing "end" statement, that rule looks valid.
Cheers,
Jochen
On Tuesday, 7 June 2016 12:26:41 UTC+2, Rajeev Verma wrote:
>
> Thanks Jochen,
>
> That helps I will try to do the same and will come back if there are any
> questions. However if I want to drop a msg is this how we do it?
>
> rule "function howto"
> when
> has_field("transaction_date")
> thendrop_message()
>
>
> On Tue, Jun 7, 2016 at 1:35 PM, Jochen Schalanda wrote:
>
>> Hi Rajeev,
>>
>> you can use the message processing pipeline to drop unwanted messages,
>> see http://docs.graylog.org/en/2.0/pages/pipelines.html for details.
>>
>> Cheers,
>> Jochen
>>
>> On Tuesday, 7 June 2016 06:22:42 UTC+2, Rajeev Verma wrote:
>>>
>>> Hello,
>>>
>>> I would like to understand if there is a possible way to drop logs and
>>> do not index them so that it can save some space.
>>>
>>> For example: I don't want logs for reserved IP traffic (Internal
>>> traffic) so rather than storing them / indexing them I would like to drop
>>> them and keep the rest of the logs.
>>>
>>> This will save a lot of space once we have multiple devices. Could
>>> someone please help me on that.
>>>
>>> Regards
>>> RV
>>>
>>
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/09a8ce27-e6d5-400b-8a41-ea06150c98ee%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: Elasticsearch as a dependable datastore
Hi Jona, a well maintained Elasticsearch cluster is a good enough and resilient data store. Are there any specific reasons leading to your conclusion that this was a problem? Cheers, Jochen On Tuesday, 7 June 2016 14:40:47 UTC+2, Jona Thon wrote: > > Am I wrong in understanding that Elasticsearch, while being a great > search/index system, isn't a particularly dependable datastore? I ask > because I'm considering making GreyLog my primary store for log data and > the reports of lost writes worry me. I know the Elassandra project has > built a Cassandra backend for ES to help address this risk. . Has there > ever been discussion on this topic? > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/e6aecdbd-d5a1-430a-9553-ab6de43e0899%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Elasticsearch as a dependable datastore
Am I wrong in understanding that Elasticsearch, while being a great search/index system, isn't a particularly dependable datastore? I ask because I'm considering making GreyLog my primary store for log data and the reports of lost writes worry me. I know the Elassandra project has built a Cassandra backend for ES to help address this risk. . Has there ever been discussion on this topic? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/5538449f-7169-4653-8a6b-53c6ebbb0006%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [graylog2] My buffers are showing Nan in the node status screen
Thanks Edmundo On Tuesday, June 7, 2016 at 5:00:41 AM UTC-4, Edmundo Alvarez wrote: > > Hi Steve, > > That is a known issue and will be fixed in the next Graylog release: > https://github.com/Graylog2/graylog2-server/issues/2299 > > Regards, > Edmundo > > > On 06 Jun 2016, at 22:09, Steve Kuntz > > wrote: > > > > Hi, > > > > I've setup a graylog 2.0.2 stand alone server server with 2 separate > elastic search nodes. My logs are being processed however on the detailed > status screen for my graylog node my buffers are showing NaN and I'm not > sure why. Any idea's would be appreciated. > > > > Thanks > > > > > > > > -- > > You received this message because you are subscribed to the Google > Groups "Graylog Users" group. > > To unsubscribe from this group and stop receiving emails from it, send > an email to graylog2+u...@googlegroups.com . > > To view this discussion on the web visit > https://groups.google.com/d/msgid/graylog2/0e0c260b-b3d9-4d68-be4d-69aa789f8db2%40googlegroups.com. > > > > For more options, visit https://groups.google.com/d/optout. > > > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/f445e16d-e8f3-4c73-86f0-47ab8ae2e44e%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [graylog2] Re: drop logs based on rules
Thanks Jochen,
That helps I will try to do the same and will come back if there are any
questions. However if I want to drop a msg is this how we do it?
rule "function howto"
when
has_field("transaction_date")
thendrop_message()
On Tue, Jun 7, 2016 at 1:35 PM, Jochen Schalanda wrote:
> Hi Rajeev,
>
> you can use the message processing pipeline to drop unwanted messages, see
> http://docs.graylog.org/en/2.0/pages/pipelines.html for details.
>
> Cheers,
> Jochen
>
> On Tuesday, 7 June 2016 06:22:42 UTC+2, Rajeev Verma wrote:
>>
>> Hello,
>>
>> I would like to understand if there is a possible way to drop logs and do
>> not index them so that it can save some space.
>>
>> For example: I don't want logs for reserved IP traffic (Internal traffic)
>> so rather than storing them / indexing them I would like to drop them and
>> keep the rest of the logs.
>>
>> This will save a lot of space once we have multiple devices. Could
>> someone please help me on that.
>>
>> Regards
>> RV
>>
> --
> You received this message because you are subscribed to a topic in the
> Google Groups "Graylog Users" group.
> To unsubscribe from this topic, visit
> https://groups.google.com/d/topic/graylog2/lw-ckwGhM34/unsubscribe.
> To unsubscribe from this group and all its topics, send an email to
> graylog2+unsubscr...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/graylog2/82caa9bd-9c34-44a4-849d-3a048c33c5e2%40googlegroups.com
>
> .
> For more options, visit https://groups.google.com/d/optout.
>
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/graylog2/CAEA7yDzutaj2hMED-r%3DeditHy6CoJ%3DqZwx_bbAQRVNHVcAfERg%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: graylog2 extractor set source as incoming IP
i think i need to use Override source. i cannot find a link to the options i am allowed to use here. can someone help please? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/0c351f40-e274-4a28-9dd1-f3ead7a8b8cf%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] graylog2 extractor set source as incoming IP
hi. my received logs does not contain device ID. i need to create an extractor that will assign the source as the incoming IP address (for example device 192.168.1.2 send log : Login successful, i can take the Login successful as message, but i have nothing to set as source, so i would like to set it as gl2_remote_ip) how would i do this? thank you -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/00e86d3f-f15d-48a1-b657-d620809da894%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] graylog-collector-sidecar
Hi folks, I'm trying to get these collector-sidecar running on my linux. Did the installation of nxlog and the collector-sidecar.rpm file. My graylog server is running on another machine. First of all the error message when runnning the collector-sidecar binary with the conf file graylog-collector-sidecar -c /etc/graylog/collector-sidecar/collector_sidecar.yml INFO[] Using collector-id: 72a5ed2b-f5ae-46dc-88e9-a1029f57c545 INFO[] Fetching configurations tagged by: [daisy] INFO[] Starting collector supervisor INFO[] [nxlog] Starting ERRO[] [nxlog] Collector exits immediately, this should not happen! Please check your collector configuration! ERRO[0019] [UpdateRegistration] Failed to report collector status to server: invalid character '<' looking for beginning of value ERRO[0039] [RequestConfiguration] Bad response status from Graylog server: 504 Gateway Time-out Now the conf file (pls notice the server_url section there is a normal ip address and no <> stuff considering the error message ;-)) server_url: http://:12900 tls_skip_verify: true node_id: graylog-collector-sidecar collector_id: file:/etc/graylog/collector-sidecar/collector-id tags: - test log_path: /var/log/graylog/collector-sidecar update_interval: 10 backends: - name: nxlog enabled: true binary_path: /usr/bin/nxlog configuration_path: /etc/graylog/collector-sidecar/generated/nxlog.conf The collector-sidecar did not fetch any config from the graylog server so the generated dir is empty. Does anybody faces the same problem? Regards, Josh -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/68785c0a-6a7a-4cbd-96c6-5d97eb41b1df%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
Re: [graylog2] My buffers are showing Nan in the node status screen
Hi Steve, That is a known issue and will be fixed in the next Graylog release: https://github.com/Graylog2/graylog2-server/issues/2299 Regards, Edmundo > On 06 Jun 2016, at 22:09, Steve Kuntz wrote: > > Hi, > > I've setup a graylog 2.0.2 stand alone server server with 2 separate elastic > search nodes. My logs are being processed however on the detailed status > screen for my graylog node my buffers are showing NaN and I'm not sure why. > Any idea's would be appreciated. > > Thanks > > > > -- > You received this message because you are subscribed to the Google Groups > "Graylog Users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to graylog2+unsubscr...@googlegroups.com. > To view this discussion on the web visit > https://groups.google.com/d/msgid/graylog2/0e0c260b-b3d9-4d68-be4d-69aa789f8db2%40googlegroups.com. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/D49A9968-90AC-417F-A259-5C86C589C10C%40graylog.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: How to setup tls security?
If you access graylog with ip you will have to add exception each time You have to access to graylog with https://.:9000 or https://.:12900 because you created the certificate with the hostname not the ip address You have to set the https link with hostname in your config server file. Cheers Le mardi 7 juin 2016 10:35:15 UTC+2, Earest a écrit : > > It work, thank for the help! But I don't understand why i need to add an > exception in my browser for the cert at port 9000 and 12900. (I had it to > the trusted cert for java :s). Maybe 'cause it's a selfed signed one and my > browser don't know he have to trust him ^^ > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/283c2196-d14d-42c6-90be-f2505f914af2%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: How to setup tls security?
It work, thank for the help! But I don't understand why i need to add an exception in my browser for the cert at port 9000 and 12900. (I had it to the trusted cert for java :s). Maybe 'cause it's a selfed signed one and my browser don't know he have to trust him ^^ -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/cefe49b1-4b08-46c0-b715-d14cad7fb9be%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: when graylog is not available do we loose nxlog log's??
Hi, you could probably use the pm_buffer module (see https://nxlog.co/docs/nxlog-ce/nxlog-reference-manual.html#pm_buffer) to buffer messages in the nxlog agent if the remote host isn't available. This obviously will only work with stateful connections (i. e. TCP) because nxlog wouldn't know if the remote host is down with UDP. Cheers, Jochen On Tuesday, 7 June 2016 10:03:25 UTC+2, sangh wrote: > > Hello > > if graylog is not available. what happens to the log is nxlog programmed > to store them and then resend them to graylog or are the log lost ??? > > > thanks > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/9df33473-412f-4990-8845-8401ee116294%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: DataDomain Source Name is DDSH - How can i change this
Hi Uwe, this sounds like the syslog daemon isn't sending syslog messages in a valid format (according to RFC 3164 or RFC 5424). You can use a Raw/Plaintext input instead and apply some extractors to get some structure into those messages, see http://docs.graylog.org/en/2.0/pages/extractors.html for details. Cheers, Jochen On Tuesday, 7 June 2016 08:57:36 UTC+2, Uwe Meyer wrote: > > Hi, > > > I configured on my Data Domain the SYSLOG daemon . > In Graylog this now appears , however, the source name " -DDSH " . I then > configured another Data Domain and this is also in the same source " -DDSH > " appears. How can I change the source name ? Is that possible? > > Thanks for help. > > Regards > Uwe > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/70fe6c54-a229-4b71-8f31-4b4bee68c3ca%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: My buffers are showing Nan in the node status screen
Hi Steve, are there any error messages in the Developer Console ( https://developers.google.com/web/tools/chrome-devtools/debug/console/) of your web browser? Cheers, Jochen On Monday, 6 June 2016 22:09:00 UTC+2, Steve Kuntz wrote: > > Hi, > > I've setup a graylog 2.0.2 stand alone server server with 2 separate > elastic search nodes. My logs are being processed however on the detailed > status screen for my graylog node my buffers are showing NaN and I'm not > sure why. Any idea's would be appreciated. > > Thanks > > > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/0f53920c-875e-42d0-81e5-d004a8d08d29%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: drop logs based on rules
Hi Rajeev, you can use the message processing pipeline to drop unwanted messages, see http://docs.graylog.org/en/2.0/pages/pipelines.html for details. Cheers, Jochen On Tuesday, 7 June 2016 06:22:42 UTC+2, Rajeev Verma wrote: > > Hello, > > I would like to understand if there is a possible way to drop logs and do > not index them so that it can save some space. > > For example: I don't want logs for reserved IP traffic (Internal traffic) > so rather than storing them / indexing them I would like to drop them and > keep the rest of the logs. > > This will save a lot of space once we have multiple devices. Could someone > please help me on that. > > Regards > RV > -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/82caa9bd-9c34-44a4-849d-3a048c33c5e2%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] when graylog is not available do we loose nxlog log's??
Hello if graylog is not available. what happens to the log is nxlog programmed to store them and then resend them to graylog or are the log lost ??? thanks -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/ddb0cde5-9be0-40a6-9aa6-8b67c9885b53%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[graylog2] Re: How to setup tls security?
keytool -genkey -alias buildforge -keyalg RSA -keysize 2048 -validity 5475 -dname "CN=.domain>" -keystore buildForgeKeyStore.p12 -storepass PASS -storetype pkcs12 -alias graylog2 keytool -importkeystore -deststorepass "***PASS***" -destkeypass "***PASS***" -destkeystore graylog.keystore -srckeystore /tmp/buildForgeKeyStore.p12 -srcstoretype PKCS12 -srcstorepass "***PASS***" -alias graylog2 openssl req -x509 -days 365 -nodes -newkey rsa:2048 -keyout pkcs5-plain.pem -out cert.pem openssl pkcs8 -in pkcs5-plain.pem -topk8 -nocrypt -out pkcs8-plain.pem openssl pkcs8 -in pkcs5-plain.pem -topk8 -v2 des3 -out pkcs8-encrypted.pem -passout pass:secret keytool -list -v -keystore graylog.keystore -alias graylog2 keytool -importkeystore -srckeystore graylog.keystore -destkeystore keystore.p12 -deststoretype PKCS12 openssl pkcs12 -in keystore.p12 -nokeys -out graylog-certificate.pem openssl pkcs12 -in keystore.p12 -nocerts -out graylog-pkcs5.pem openssl pkcs8 -in graylog-pkcs5.pem -topk8 -out graylog-key.pem head graylog-key.pem graylog-certificate.pem If you have some error with proxiedresource, maybe you should ask for certificate wildcard from your company and do the following: keytool -import -trustcacerts -file company-certificate.cer -alias company -keystore $JAVA_HOME/jre/lib/security/cacerts -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to graylog2+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/graylog2/4bcca715-e0ce-435c-9f61-aface28528ae%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
