[graylog2] Re: Extractor help

.+ (http://[^/]+)/ shoud work. On Monday, August 15, 2016 at 10:46:47 PM UTC+4, Rafael Pereira Silva wrote: > > Hello, > > Trying create a extractor an log bellow. > > > > need only extract the URL of this message: > > > *1471285696.626 60020 10.110.103.9 TCP_MISS/200 593 POST >

[graylog2] Graylog collector (depricated) for graylog 2.0 connecting issues

Hi All, I installed graylog collector 0.5.0 version in client machine to send logs to my graylog server (2.0) version. When I start collector I see below errors. CAn anyone let me know where am I going wrong please.. ! 2016-08-16T00:51:04.579-0400 INFO [main] cli.commands.Run - Service

[graylog2] Re: syslog to graylog

Hi Jason, Graylog is installed in linux server. I used rpm package for installation. (graylog 2.0) . Can you let me know the possible reasons. Firewall on graylog server or client machine? Thank you On Monday, August 15, 2016 at 3:44:35 PM UTC-7, Jason Warnes wrote: > > It might be a

[graylog2] Graylog2 Mapping Multiple Geolocation Fields

Hi there. I was wondering if it's possible to add multiple geo-location fields to the same Graylog2 map widget? Right now I have two maps created based on firewall logs: one that show what locations we are blocking from connecting to our network, and another showing what locations we're

[graylog2] Re: syslog to graylog

It might be a firewall on your graylog server. Without knowing what method you used to install the graylog server it's hard to know for sure. On Monday, August 15, 2016 at 12:46:02 AM UTC-6, sam wrote: > > Hi All, > > I am trying to send syslog messages into my graylog server. I configured >

[graylog2] Apache Access Log Fields Not Being Separated

I have filebeats send my apache access logs to graylog 2 At one point the logs was being separated into separate fields, somewhere that stopped working. My filebeats config looks like this: ### Filebeat Configuration Example # # /etc/filebeat/filebeat.yml

[graylog2] Graylog rest api not positioning widgets on dashboard

Hello, I am currently trying to position dashboard widgets using Graylog 2.0 rest api with no such luck on the positions being applied to the UI dashboard. The positions of the widgets are changed inside the rest api if i use the get /dashboards/{dashboardId}

[graylog2] Re: Question about sending ALL windows event log data

Also wanted to point out you need to make sure your gpos are set to log the events and that they are logging successes and failures. On Monday, August 15, 2016 at 10:31:22 AM UTC-4, Jordan Grondin wrote: > > Hello Jamie, > > Have you managed to see all the logs of your domain controller? > > I

[graylog2] Re: Question about sending ALL windows event log data

I will take a look. That is good to know Linwood, and I appreciate the response. Jordan, I am not able to see all the logs yet. I'm getting quite a bit, but I'm not getting events relating to groups (additions, modifications, and deletions) and some other stuff. If you managed to fix

[graylog2] Extractor help

Hello, Trying create a extractor an log bellow. need only extract the URL of this message: *1471285696.626 60020 10.110.103.9 TCP_MISS/200 593 POST http://bioxxi.dasa.com.br/java-j2eedispatch/wa/sua/b927ea91c134227112782c98820a7145/1/72 - FIRST_UP_PARENT/bioxxiweb application/javascript*

[graylog2] Re: Issue with API port when using 2 network interfaces

Hmm, this does not work properly in the end. On Monday, August 15, 2016 at 6:24:19 PM UTC+2, Fred Blaise wrote: > > As a workaround, in a screen session, I am redirecting with netcat, such > as: > > while true; do nc -l 192.168.x.y 12900 | nc 213.244.x.y 12900; done > > Does the job, but well. >

[graylog2] Re: Issue with API port when using 2 network interfaces

As a workaround, in a screen session, I am redirecting with netcat, such as: while true; do nc -l 192.168.x.y 12900 | nc 213.244.x.y 12900; done Does the job, but well. Thanks, fred On Monday, August 15, 2016 at 6:09:43 PM UTC+2, Fred Blaise wrote: > > Hello, > > I am using the openstack 2.0.3

[graylog2] Issue with API port when using 2 network interfaces

Hello, I am using the openstack 2.0.3 qcow2 image on a single instance. I am having issues when specifying the rest_listen_uri to http://0.0.0.0:12900. I need to have the API port available for both the web UI and graylog-sidecar clients, which are on 2 different networks. The graylog server

[graylog2] Graylog and switch Alcatel Lucent

Hello, I doesn't see logs of my Alcatel switch to my Graylog. I have done the following on my swtich: swlog output socket Someone has already encountered the problem Regards -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe

[graylog2] Re: Question about sending ALL windows event log data

Hello Jamie, Have you managed to see all the logs of your domain controller? I faced the same problem. Regards, -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email

Re: [graylog2] Re: Graylog2 sidecar and SSL

Hi Michael, this was done here: https://github.com/Graylog2/graylog-plugin-collector/issues/13 Should be available in Graylog 2.1.0-RC1 Cheers, Marius On 12 August 2016 at 13:20, Michael Anthon wrote: > Thanks Marius, > I've just upgraded to the latest beta and

Re: [graylog2] Re: Can't Show received messages from NetFlow input

Hi everyone, anyone can help me on these? I tried to put the time range but still returns me "Nothing found" As per incoming messages I saw already reach to 4.4GB [image: Inline image 1] Is the log path for the Graylog Node is correct? Because I tried to tail -f the current log file shows

[graylog2] syslog to graylog

Hi All, I am trying to send syslog messages into my graylog server. I configured the ip address in /etc/rsyslog.conf file, I have issues in getting the logs to my graylog server. Can anyone of you help me from this please..! /etc/rsyslog.conf/ *.* @graylog.ip.address:5140 This settings