[graylog2] I know Reports don't Exist in GL2

What are some of you using to pull reports from Graylog...if anything? The doc refers to calling the REST-API , so there's got to be some sort of reporting tools out there Thoughts? All insight is appreciated Thanks TP -- You received this message because you are subscribed to the Google

[graylog2] Re: Simple Stream question

Actually...I found it...Source was capitalized and in the regular search it is not. I see that this is extremely case sensitive Thanks TP On Friday, January 20, 2017 at 3:44:54 PM UTC-6, Tom Powers wrote: > > Hello Everyone!! > > Total Noob to Graylog...but I have read the docs and have

[graylog2] Simple Stream question

Hello Everyone!! Total Noob to Graylog...but I have read the docs and have scoured the net for this. Brand new Graylog2.1 from OVA. Sending data into it from windows event logs via nxlog Everything works great...I can get searches on ExventIDs, create streams and dashboards. here's the

[graylog2] log4j syslogappender and Graylog compatibility

Is it possible to directly use log4j syslogappender as a remote TCP input into Graylog? -Gary -- You received this message because you are subscribed to the Google Groups "Graylog Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to

Re: [graylog2] Re: Oracle JDK or OpenJDK ?

There is no noticeable difference, pick whatever you prefer. Cheers, Marius On 20 January 2017 at 17:53, Axen wrote: > What is the situation about this issue now? (almost 2.5 years later) > > The current documentation seems to slightly recommend OpenJDK over Oracle. > At

Re: [graylog2] Re: Oracle JDK or OpenJDK ?

What is the situation about this issue now? (almost 2.5 years later) The current documentation seems to slightly recommend OpenJDK over Oracle. At least they provide instructions by default about how to install OpenJDK:

[graylog2] Re: Graylog Processing

Hi Peter, are the versions of Graylog identical? Are you using any extractors? Are you using any processing pipeline rules? Cheers, Jochen On Friday, 20 January 2017 11:01:36 UTC+1, Peter Griggs wrote: > > Hi > > Both are identical. :-/ > > 1 GeoIP Resolver active > 2 Pipeline Processor active

[graylog2] Re: Graylog Processing

Hi Both are identical. :-/ 1 GeoIP Resolver active 2 Pipeline Processor active 3 Message Filter Chain active Cheers Pete. On Friday, 20 January 2017 09:58:44 UTC, Jochen Schalanda wrote: > > Hi Peter, > > what's the order of message processors in both Graylog instances? You can > find it on

[graylog2] Re: Graylog Processing

Hi Peter, what's the order of message processors in both Graylog instances? You can find it on the System / Configurations page in the Message Processors Configuration section. Cheers, Jochen On Friday, 20 January 2017 10:46:39 UTC+1, Peter Griggs wrote: > > Hi Jochen, > > On the working box

[graylog2] Re: Graylog Processing

Hi Jochen, On the working box the pipeline is processing and extracting the fields however on the new setup it isn't. I have the rules, piplelines and streams setup identically. I am probably missing something stupid but have spent a couple of days working on it and its starting to bug me.

Re: [graylog2] my first syslog input is failing

Hi - further, I found another error more helpful on this: An input has failed to start (triggered in 8 hours) Input 58824501d7a3bd5096cf8dc9 has failed to start on node b4803a74-6842-49dd-84b1-bc6a9a7b2504 for this reason: »Permission denied.«. This means that you are unable to receive any

Re: [graylog2] my first syslog input is failing

Hi Richard, - allow_override_date: true - bind_address: 10.10.0.64 < I also tried 0.0.0.0 and 127.0.0.l - expand_structured_data: true - force_rdns: true - override_source: ** - port: 514 - recv_buffer_size: 262144 - store_full_message:

Re: [graylog2] my first syslog input is failing

What port are you trying to use? > On Jan 20, 2017, at 6:15 PM, JayJay wrote: > > Hi, > > I have GrayLog setup on CentOS7. > I tried to setup an UDP Syslog input, and after setup, it eventually says > "failed". I searched the logs, and didn't see much. > > I do

[graylog2] my first syslog input is failing

Hi, I have GrayLog setup on CentOS7. I tried to setup an UDP Syslog input, and after setup, it eventually says "failed". I searched the logs, and didn't see much. I do see "failed" in the main log at org.jboss.netty.channel.Channels.bind(Channels.java:561) ~[graylog.jar:?]

[graylog2] Re: Manipulating pipelines via REST API by non-admin user in Graylog 2.1.2

Hello! Thank you very much. This solved my problem! -hege On Friday, 20 January 2017 10:37:16 UTC+2, Jochen Schalanda wrote: > > Hi Henri, > > On Thursday, 19 January 2017 20:30:51 UTC+1, Henri Volotinen wrote: >> >> But I wonder, what permissions do I need to grant to a non-admin system >>

Re: [graylog2] Re: Can't open web console on host IP

On Fri, Jan 20, 2017 at 4:01 PM, Jochen Schalanda wrote: > - ip addr show > - hostname > - hostname -f > - hostname -a > - hostname -i Hi Jochen, You helped me find the problem. DNS resolution was going to internet before local server, so it was resolving to an incorrect

[graylog2] Re: Manipulating pipelines via REST API by non-admin user in Graylog 2.1.2

Hi Henri, On Thursday, 19 January 2017 20:30:51 UTC+1, Henri Volotinen wrote: > > But I wonder, what permissions do I need to grant to a non-admin system > user that should only be allowed to read and write stuff related to > pipelines? > You can find the pipeline-related permissions at

Re: [graylog2] Re: Can't open web console on host IP

Hi Jason, what's the output of the following commands on that server: - ip addr show - hostname - hostname -f - hostname -a - hostname -i Cheers, Jochen On Friday, 20 January 2017 02:50:23 UTC+1, JayJay wrote: > > Hi Jochen, > > Yes, I'm sure. I'm on a standard internal