.
On Thursday, October 13, 2016 at 7:42:44 AM UTC-5, Jochen Schalanda wrote:
>
> Hi David,
>
>
> On Thursday, 13 October 2016 14:30:22 UTC+2, David Gerdeman wrote:
>>
>> Is there a way to change the query used to generate a chart after it is
>> created? For example, if I
Is there a way to change the query used to generate a chart after it is
created? For example, if I want to change the source, or add to fields to
a chart, can that be done without having to create a new chart, or combine
multiple charts?
Failing that, it used to be possible to get kibana to
Done, thank you. The github issue link is
https://github.com/Graylog2/omnibus-graylog2/issues/29.
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to
I had to wait for it to fail again. It looks like it failed on May 30th.
In the /var/log/graylog/elasticsearch folder the graylog.log. files
for May 25-29 are all about 400K. The log file for May 30th is 2.1GB and
the disk of the virtual appliance is at 100% utilization. Also, the last
Could you direct me to instructions for setting up this error log
rotation? This would be for the logs that you can see by using the "sudo
graylog-ctl tail" command, not things that are actually indexed by graylog.
--
You received this message because you are subscribed to the Google Groups
Is there any way to stop graylog error logging from filling up the disk?
>From time to time the indexer hangs up for some reason and and each failed
message writes a log entry. I've not been able to figure out what causes
this. The only messages being sent into graylog are messages from
e if that fixes the problem
> you are experiencing.
>
> I have created an issue on Github to track this, please feel free to add
> any more information into it:
> https://github.com/Graylog2/graylog2-server/issues/2243
>
> Regards,
>
> Edmundo
>
> > On 16 May 2016, a
Any ideas on this one?
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to graylog2+unsubscr...@googlegroups.com.
To view this discussion on the web visit
in? Are you simply
> reloading the already loaded search results? Are there any (caching)
> proxies or reverse proxies between you and the Graylog web interface? Or
> maybe even your web browser is caching those pages?
>
> Cheers,
> Jochen
>
> On Friday, 13 May 2016 15:31:37 UT
I might have found a bug...running graylog 2.0.0 virtual appliance recently
upgraded to 2.0.1.
On the search tab, using the "relative" search options, if I select "search
in the last 5 minutes" at 7:30Am, and then I select "search in the last 15
minutes" at 7:45Am, both will return the correct
the input appears in the list?
>
> Regards,
> Edmundo
>
> > On 28 Apr 2016, at 15:42, David Gerdeman <dave.g...@gmail.com
> > wrote:
> >
> > I'm having an issue on a fresh virtual appliance of graylog v2. When
> launching a new input (gelf udp on port
I'm having an issue on a fresh virtual appliance of graylog v2. When
launching a new input (gelf udp on port 7), I get a message saying that
adding the new input was successful, but the input never shows up on the
inputs page of the web portal, or in the list of inputs returned in the API
PI. This will be
> included in Graylog 1.2.2 and later.
>
> Cheers,
> Jochen
>
> On Wednesday, 7 October 2015 20:13:46 UTC+2, David Gerdeman wrote:
>>
>> Is there any way to have graylog send it's own internal logs to itself
>> for indexing? I see my log messages
Is there any way to have graylog send it's own internal logs to itself for
indexing? I see my log messages increasing but the only way to look at
them seems to be from the command line.
--
You received this message because you are subscribed to the Google Groups
"Graylog Users" group.
To
Thank you everyone for the replies. These look very helpful.
On Friday, July 10, 2015 at 7:20:59 AM UTC-5, David Gerdeman wrote:
Is it possible to set up an alert or notification of some kind that will
trigger when there are indexer failures? I seem to randomly have indexing
issues and I
at 2:20:59 PM UTC+2, David Gerdeman wrote:
Is it possible to set up an alert or notification of some kind that will
trigger when there are indexer failures? I seem to randomly have indexing
issues and I would like to be able to catch them faster.
--
You received this message because you
Is it possible to tell from which source is generating messages that are
causing indexer failures? I am getting absolutely slammed with indexer
failures all of the sudden and the error message just tells me that a date
parsing failed.
--
You received this message because you are subscribed
In the uri-query field of my IIS logs I have a website that generates
values for this field that is key=value pairs delimited by . Sometimes
this field might have one or two key=value pairs, and sometimes it has as
many as six or seven. I would like to extract those key=value pairs and
bring
For your file try C:\\inetpub\\logs\\LogFiles\\W3SVC1\\u_ex*. I have
been using this pattern successfully. It grabs the new logs added to the
currently used log file. The relevant parts of my conf file are below:
Enter code here...Extension w3c
Module xm_csv
Fields
I've been running the virtual appliance in hyper-v for a while now. Use
some extraction program to open the OVA file. Take the vmdk file out and
use virtualbox or some other application to convert it to a VHD. You can
either use that VHD directly with Hyper-V or you can use Hyper-V to
I have been testing beta3 and I have a few questions.
1. The blog post about the beta release shows a picture of a pie
chart...how does one add a pie chart to a dashboard?
2. When I look at the inputs page, the throughput/metrics fields never
populate. This has been an issue for me
21 matches
Mail list logo
