[graylog2] Re: Is syslog RFC 5424 output possible with sysklogd (contains syslogd 1.4.1)

Hi Richard, the $template directive is a feature of rsyslog ( http://www.rsyslog.com/doc/v8-stable/configuration/templates.html). It seems like you're using a relatively old version of the original BSD syslogd, which doesn't support changing it's output format. Is there any chance for you to

Re: [graylog2] grok pattern not working

Hi Zsolt, that's no valid grok pattern on your screenshot. You can for example import the standard grok patterns from Logstash ( https://raw.githubusercontent.com/logstash-plugins/logstash-patterns-core/master/patterns/grok-patterns) into Graylog. Cheers, Jochen On Wednesday, 21 October 2015

[graylog2] Google pub/sub input.

Before we spend the time - has anyone written, or starting writing an input to read from Google pub/sub queues? P. -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an

[graylog2] Extractor, expected numeric but string

We've configured an extractor to get a numeric value from the message, in fact we use the Numeric conversor on the extractor configuration We want to generate charts from it, but Graylog always shows "Fields graphs are only available for numeric fields" when we clic Generate Chart. We've tried

[graylog2] Remove a server from etcd

When running graylog-ctl reconfigure, it seems to query etcd to get the list of known servers. How can I manage this list and remove servers that no longer exist? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group

[graylog2] Is syslog RFC 5424 output possible with sysklogd (contains syslogd 1.4.1)

Hi Has anyone managed to get the syslogd utility in 'sysklogd' to send RFC 5424 compliant syslog messages to Graylog? We use this package for syslog output in Oracle Linux x86_64 I have tried both of the following in /etc/syslog.conf and whilst it doesn't error when syslogd is restarted, no

Re: [graylog2] grok pattern not working

Hi Zsolt, That is only one part of it, you first need to create Grok patterns in System -> Grok patterns. You can create them by hand or import a file including the most common ones. Regards, Edmundo > On 21 Oct 2015, at 12:57, Osztrovszky Zsolt wrote: > > Yes. >

RE: [graylog2] grok pattern not working

Hi, I did it, it is on the second picture. I’ve attached the picture. Cheers, Zsolt -Original Message- From: graylog2@googlegroups.com [mailto:graylog2@googlegroups.com] On Behalf Of Edmundo Alvarez Sent: Wednesday, October 21, 2015 2:23 PM To: graylog2@googlegroups.com Subject:

RE: [graylog2] Re: grok pattern not working

Yes. Like this: [cid:image001.png@01D10C00.10723AF0] [cid:image002.png@01D10C00.10723AF0] Cheers, Zsolt From: graylog2@googlegroups.com [mailto:graylog2@googlegroups.com] On Behalf Of Jochen Schalanda Sent: Tuesday, October 20, 2015 4:03 PM To: Graylog Users Subject:

[graylog2] Best practice for extractors/inputs.

Hi all, We have just stood up a Proof-of-Concept Graylog cluster and we are ingesting log data from around 50 nodes. The Graylog cluster itself is working fine and is stable ingesting at something like 8000 msgs/sec. Now it's time to try to do something useful with that data. And herein