[graylog2] Re: Replace hostname in logging

Nevermind, i spoofed the hostname using an rsyslog template for this particular host. If anyone is interested let me know. On Thursday, June 16, 2016 at 9:41:50 PM UTC-4, John Babio wrote: > > I have an hp switch logging as host 1.1.1.1-1. How can I replace this with > a hostname of my liking

[graylog2] Replace hostname in logging

I have an hp switch logging as host 1.1.1.1-1. How can I replace this with a hostname of my liking as its being logged? -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an

[graylog2] ApiError "HTTP 404 Not Found" when curling graylog-server:12900

I'm new to Graylog and launched the service using Docker, docker-compose.yml file provided by the official website. some-mongo: image: "mongo:3" volumes: - /graylog/data/mongo:/data/dbsome-elasticsearch: image: "elasticsearch:2" command: "elasticsearch -Des.cluster.name='graylog'"

[graylog2] Input Failed to Start

Greetings All, I am very new to linux/graylog and am trying to get my server to run. I've set it up, " #service graylog-server status" command says its running. My problem comes when I try to add an input on the web interface. I keep receiving this error: An input has failed to

[graylog2] Re: Journal utilization is too high and uncommited messages

On Tuesday, April 14, 2015 at 10:23:32 AM UTC-7, roberto...@gmail.com wrote: > > Dear, I've installed the current versions of Graylog and Elasticsearch: > > graylog-server 1.0.1-1 / graylog-web 1.0.1-1 / graylog2-stream-dashboard > 0.90.0-1 /elasticsearch 1.5.1 > > My server is Debian Wheezy,

[graylog2] Re: Slave nodes

On Thursday, June 16, 2016 at 2:57:10 PM UTC-4, Shon Nixon wrote: > > I have built three Graylog 2.0 servers using CentOS 7. After > configuration, all three work as an ES cluster, but I cannot get the > servers to join the master a slave nodes. I have is_master set correctly > with one true

[graylog2] Slave nodes

I have built three Graylog 2.0 servers using CentOS 7. After configuration, all three work as an ES cluster, but I cannot get the servers to join the master a slave nodes. I have is_master set correctly with one true and the other two false. They do not show up in the web gui as additional

Re: [graylog2] Slow web interface in 2.0.2

I didn't try any previous 2.0.x releases. I use Chrome and Firefox on Linux. The result is the same. I will try to dig up some old releases on AWS tomorrow and send the results here. I know about developer tools. I checked that also. Didn't get any info except big loading times that I already

Re: [graylog2] Slow web interface in 2.0.2

Hi Marko, Did you try any previous 2.0.x releases? I'm wondering if this may be an issue specific to 2.0.2 or not. I think the first thing to see is where the performance issue is. Since 2.0, the Graylog web interface runs entirely in your browser, so you should check if loading the assets is

[graylog2] How to filter/group existing messages?

Hi, I'm really new to Graylog and trying to find a way to group/filter duplicates. We are using Graylog to filter Apache messages and as you know there is often the same message during a peroid. There is no need to filter while streaming. I need a way to filter existing messages e.g. to filter

[graylog2] Slow web interface in 2.0.2

Hi guys. I installed few 2.0.2 versions and the web interface is really slow. How to reproduce the problem: Go to any page and then click refresh. The page reloads 6-12 seconds. Searches also. I thought that maybe I did something wrong in network/dns setup so I tried to change few things

Re: [graylog2] Could not create extractor (404)

Hello Edmundo, this is Graylog 2.0.2 in a cluster of two VM appliances running under VMware. The behaviour was the same on IE11 (Windows) and Chromium (from a Linux system). If I edit the same Extractor definition I don't get this error Regards, Dietmar Schurr On Wednesday, June 15,

Re: [graylog2] How to configure mail alert

Hi Sangh, please take a look here for persisting email configuration on the appliances: http://docs.graylog.org/en/2.0/pages/configuration/graylog_ctl.html#graylog-ctl The sub-command you need is `set-email-config`. Cheers, Marius On 16 June 2016 at 11:03, sangh wrote:

[graylog2] How to configure mail alert

Hi, i am trying to configure mail alert no success. My graylog config file is in /opt/graylog i modified Email Transport section. but when i run graylog-ctl reconfigure my file goes back to its first configuration i am using graylog OVA 2.0.2 -- You received this message because you are

[graylog2] Re: timezone weirdness

Hi John, do you receive any messages at all from the syslog server after changing its configuration? Also take a look at https://github.com/Graylog2/graylog-guide-syslog-linux/blob/master/README.md for instructions how to configure rsyslog to work with Graylog. Cheers, Jochen On Thursday,

[graylog2] Re: Cardinality field of Statistics

Hi Steve, it's just a SWAG , but field statistics only work for numeric fields, so maybe there are non-numeric values for that field in one or more of the indices covering the 8 hours time span but not in the indices covering the 1-2

[graylog2] Re: does graylog support multi-value queries?

Hi Jason, from working with Logstash, I know you can add tags to the field "tags". However, I just realised that it is just a text field with its values being separated by commas. This means that indeed you have to do a wildcard lookup when searching those fields. Maybe this should be added as