Re: [graylog2] Graylog stopped working

236M 121M 103M 55% /boot > > We don't mind loosing all the history, we just want the server up and > running. If the space available can be extended even better (keep in mind > this is OVA). Any suggestions? > > On Wednesday, December 28, 2016 at 9:18:24 AM UTC

Re: [graylog2] Grok patterns list is empty

Good to read you solved the issue :-) We ship some common patterns as part of the base installation, I am not sure why they were not present in your case. How did you install Graylog? Also, was it an upgrade from a previous version? This information will allow us to further investigate if this

Re: [graylog2] Grok patterns list is empty

Hi David, I would start by checking if the grok patterns got stored in the database. Could you please check if there are some documents in the "grok_patterns" collection inside the MongoDB database you use for Graylog? Additionally, which Graylog version are you using? A link to the grok

Re: [graylog2] Graylog stopped working

Hello, I would start by looking into your logs in /var/log/graylog, specially those in the "server" folder, which may give you some errors to start debugging the issue. Hope that helps. Regards, Edmundo > On 27 Dec 2016, at 20:55, cypher...@gmail.com wrote: > > We've been using Graylog OVA

[graylog2] [ANNOUNCE] Graylog v2.1.1 has been released

Hi everyone, we just released the final version of Graylog v2.1.1. You can find all required information, download links, new features and changelog here: * https://www.graylog.org/blog/69-announcing-graylog-v2-1-1 Thanks, Edmundo -- You received this message because you are subscribed to the

Re: [graylog2] Web interface flashes logon page in every reload

Hi, This is a known presentation issue, please check this Github issue for more information: https://github.com/Graylog2/graylog2-server/issues/2770 Regards, Edmundo > On 07 Sep 2016, at 17:25, Karjic Ioannis wrote: > > Hi all, > having the same problem > > Regards > >

Re: [graylog2] Pipeline Rule Regex not working

Hello James, There were quite a few changes on the pipelines for 2.1.0, so I was trying to reproduce this issue in 2.1.0-beta.3 but I couldn't. Could you please take a look and see if you still have the same problem in the latest beta? Here is the link if you want to take a look:

Re: [graylog2] regex in pipeline

Hi Avdhoot, Regular expressions in pipeline rules use the Java syntax, so you need to double escape backslashes. If you need more information about regexes in Java, please take a look at the documentation: https://docs.oracle.com/javase/8/docs/api/java/util/regex/Pattern.html Hope that helps.

Re: [graylog2] Full list of Permissions?

Hi Pete, Here are the permissions available in 2.0: https://github.com/Graylog2/graylog2-server/blob/2.0/graylog2-server/src/main/java/org/graylog2/shared/security/RestPermissions.java#L37-L128 Some plugins may also add additional permissions that you would need to check in the plugin code if

Re: [graylog2] Quick Values Pie graph behavior - percentage values

Hi Casey, That doesn't look right, would you be so kind as to create an issue in our Github repository? Here's the link: https://github.com/Graylog2/graylog2-server Thank you! Edmundo > On 08 Aug 2016, at 21:38, Casey Russell wrote: > > Group, > > I'm using Graylog

Re: [graylog2] debugging pipelines is... difficult

I added this Github issue so you can track the issue I mentioned in point number 2: https://github.com/Graylog2/graylog-plugin-pipeline-processor/issues/46 Cheers, Edmundo > On 18 Jul 2016, at 10:51, Edmundo Alvarez <edmu...@graylog.com> wrote: > > I spent some time debugging t

Re: [graylog2] debugging pipelines is... difficult

I spent some time debugging the issue, and I found two of them: 1. The when expression should be wrapped in a "to_bool" function, otherwise the parser gets confused about it and replaces it with "false":

Re: [graylog2] debugging pipelines is... difficult

Hi Jason, It's hard to tell what is wrong from here, since we can't exactly see how your messages look like. Could you share a couple of messages with us? Please be aware that at the moment, the "regex" function needs to match the whole string:

Re: [graylog2] Dasboard time range problem

Hi Marcus, I was trying to reproduce the issue you are describing and I could, so I opened an issue for it: https://github.com/Graylog2/graylog2-server/issues/2428 Feel free to add any details you think are missing. Thank you! Edmundo > On 28 Jun 2016, at 17:04, Marcus Franke

Re: [graylog2] regex.groups in Pipeline rule function

Hi John, Looking at this example [1], I think you can access the groups returned by the regex function by using `location["lat"]` and `location["long"]`. 1:

Re: [graylog2] Graylog web interface

Hi Yiannis, Yes, you can set a stream search or a dashboard as a start page. To do so, click in "More actions" for the stream or dashboard you want to use, and then "Set as startpage". Regards, Edmundo > On 18 Jun 2016, at 20:53, k...@stoiximan.gr wrote: > > Hi all, > Is there a way to

Re: [graylog2] Slow web interface in 2.0.2

Hi Marko, Did you try any previous 2.0.x releases? I'm wondering if this may be an issue specific to 2.0.2 or not. I think the first thing to see is where the performance issue is. Since 2.0, the Graylog web interface runs entirely in your browser, so you should check if loading the assets is

Re: [graylog2] Could not create extractor (404)

Hi Dietmar, Would you be so kind as to tell us which Graylog version and browser you use? Additionally, do you see any errors in your browser's developer console when the error occurs? This is how you can open the developer console in Chrome, it's similar in other browsers:

Re: [graylog2] how to remove field (e.g. "message") from extracted message (used json extractor)

"message"); > end > > 2. rule linked with new pipeline (stage 0) and the pipeline linked with > "Incoming messages stream". > Is that OK? > > I suppose no graylog restart is needed. How can I make troubleshooting (check > correct work) of this s

Re: [graylog2] how to remove field (e.g. "message") from extracted message (used json extractor)

Hi, I know it's not what you asked for, but I think using the new pipeline processor can help you with that. You can find it in Graylog 2.0, if you want to try it. Here's some documentation: http://docs.graylog.org/en/2.0/pages/pipelines.html Regards, Edmundo > On 10 Jun 2016, at 10:41,

Re: [graylog2] My buffers are showing Nan in the node status screen

Hi Steve, That is a known issue and will be fixed in the next Graylog release: https://github.com/Graylog2/graylog2-server/issues/2299 Regards, Edmundo > On 06 Jun 2016, at 22:09, Steve Kuntz wrote: > > Hi, > > I've setup a graylog 2.0.2 stand alone server server

Re: [graylog2] SLES11: graylog-2.0.2 + collector sidecar + nxlog

Hi Joshua, Not sure if you did it already, but you should start by reading at this documentation page: http://docs.graylog.org/en/latest/pages/collector_sidecar.html Hope that helps. Regards, Edmundo > On 06 Jun 2016, at 11:05, 'Joshua Humpich' via Graylog Users >

Re: [graylog2] Healthy Elastisearch not connecting

Your Graylog web interface tries to contact a server in http://172.25.7.41:12900/, but looking at your server configuration, it is not listening there. That's why you get a timeout. Are you using a proxy or load balancer in front of your Graylog server? If so, please ensure you read

Re: [graylog2] Healthy Elastisearch not connecting

Hi Scott, That is most likely due to some misconfiguration. Would you be so kind as to share any errors in your server logs and your browser's developer console (https://developers.google.com/web/tools/chrome-devtools/)? Regards, Edmundo > On 03 Jun 2016, at 17:00, Scott John

Re: [graylog2] After 2.0.2 update Web console page footer says "2.0.1"

> Cheers, > Jochen > > On Monday, 30 May 2016 21:49:07 UTC+2, Joe K wrote: > Of course it was refreshed. cleared browser cache and everything. "2.0.1" > comes form the server. > > On Monday, May 30, 2016 at 6:19:15 PM UTC+3, Edmundo Alvarez wrote: > Hi Joe,

Re: [graylog2] After 2.0.2 update Web console page footer says "2.0.1"

Hi Joe, Please also remember to refresh the Graylog web interface tab after upgrading, as the whole web interface lives in your browser now. Regards, Edmundo > On 30 May 2016, at 17:06, Jochen Schalanda wrote: > > Hi Joe, > > Graylog 2.0.2 should show the following

Re: [graylog2] Relative search queries are not updating

t; > Thanks Edmundo, I appreciate your help; the steps you outlined correct the > issue while the dev tools are up. > > On Tuesday, May 17, 2016 at 5:16:05 AM UTC-5, Edmundo Alvarez wrote: > Hi David, > > I was able to reproduce this issue, and it seems to be a caching problem

Re: [graylog2] Relative search queries are not updating

Hi David, I was able to reproduce this issue, and it seems to be a caching problem in IE and Edge. Could you see if the problem still occurs when you (temporary) disable caching? For doing that, open the developer tools, and click the "Always refresh from server" button inside the network tab.

Re: [graylog2] [Graylog 2.0] Web interface

Hi, Is Graylog running on the same machine you use to connect to the web interface? By default Graylog only starts the web interface in 127.0.0.1, and it looks like you didn't change that. Please take a look at the relevant configuration options in the documentation:

Re: [graylog2] Issue with new graylog 2.0 virtual appliance

hen I went back to the > webpage to check for JS errors and the like, every input I created was in the > list, with most of them in the failed state because the port was taken by the > first instance to start. Looks like it fixed itself. > > Thanks > > On Thursday, April 28, 2016 at 8:5

Re: [graylog2] Issue with new graylog 2.0 virtual appliance

Hi David, The issue sounds quite odd. Were there errors in your Graylog server logs or browser's JS console when creating the input? Also, did you try restarting your Graylog server to see if the input appears in the list? Regards, Edmundo > On 28 Apr 2016, at 15:42, David Gerdeman

Re: [graylog2] Searching broke, no idea what to do (dashboard still works)

;streamid":"","interpolation":"bundle","renderer":"area","valuetype":"total","query":"_exists_:fx_qtyshp","rangetype":"relative","range":{"relative":604800},"createdAt

Re: [graylog2] Searching broke, no idea what to do (dashboard still works)

Hi Ryan, First of all, which Graylog version do you use? I'm afraid that you were right in your first guess: the chart that you were trying to generate is still in your browser localStorage and it's breaking the search. Would you be so kind as to share with us the graphs that are in your

Re: [graylog2] Geo-Location Processor only resolves msg source address ?

only resolves the sender Address, hmrpf > > Am Freitag, 1. April 2016 13:10:19 UTC+2 schrieb Edmundo Alvarez: > Hi Michael, > > The Geo-location resolver looks for IPs in all fields that _only_ contain an > IP address. That means, you need to extract the IP to it's ow

Re: [graylog2] Geo-Location Processor only resolves msg source address ?

Hi Michael, The Geo-location resolver looks for IPs in all fields that _only_ contain an IP address. That means, you need to extract the IP to it's own field (using an extractor or sending logs with something like GELF), to make the geo-location work. The description text is unfortunately

Re: [graylog2] Regex match not working

e whole message not the > extracted field? > > On Wednesday, 30 March 2016 10:16:48 UTC+1, Edmundo Alvarez wrote: > Hi Daniel, > > The regex condition you use will always try to extract the 4th split element, > if there is a number in the whole message field, as it's the one you us

Re: [graylog2] Export As CSV error message

Hi Paul, We should investigate that issue a bit further. Would you be so kind as to create a ticket in our Github repository? https://github.com/Graylog2/graylog2-server/issues/ Thank you, Edmundo > On 28 Mar 2016, at 14:46, Paul Pompetti wrote: > > I've just setup

Re: [graylog2] Gralog OVA Konfiguroieren

Hi Hendrik, Please keep the discussion in English in the mailing list. This is a public place where other people may look for answers for the same questions you are posting, and the more people that can understand those answers, the better. Thank you, Edmundo > On 16 Mar 2016, at 12:01,

Re: [graylog2] Update Graylog 1.2 -> 1.3 ?

> Package matching graylog-server-1.2.2-1.noarch already installed. Checking > for update. > Package matching graylog-web-1.2.2-1.noarch already installed. Checking for > update. > Nothing to do > > > > > > > > > > On Thursday, February 18, 2016 at

Re: [graylog2] Update Graylog 1.2 -> 1.3 ?

Hi Domenik, I am not sure which of the emails you are following, but I would recommend installing the rpm packages from our repository, in that way you will receive new updates for Graylog 1.3 automatically:

Re: [graylog2] Importing content pack fails

16:31, thePretender <the.pretende...@gmail.com> wrote: > > Thanks for your input, the problem was that extractor_type has changed to > type, apparently. (sorry for hijacking the thread) > > On Wednesday, February 17, 2016 at 3:29:43 PM UTC+1, Edmundo Alvarez wrote: > H

Re: [graylog2] Importing content pack fails

Hi thePretender, Thank you for testing the alphas! If you are referring to the extractor's import/export pages, that is a different issue I'm afraid. Could you please use alpha 2 and try again? It would also be extremely helpful if you could try with your browser's Javascript console open,

Re: [graylog2] Importing content pack fails

Hi Eino, Thank you for testing the alphas! Which browser are you using with Graylog? When you say "there are no errors", you mean appearing on the screen or also on the logs? Would you be so kind and try to do it once again, this time with your browser's JS console open? Please share any

Re: [graylog2] Graylog 2.0.0 alpha - can't log into web-gui

Hi, Thank you for your feedback! There are many changes in 2.0, and one of them is that you need access to the Graylog server from your browser. Could you please execute "appConfig.gl2ServerUrl" in your JS console and verify that it is returning the right URI to connect to the Graylog server?

Re: [graylog2] Graylog 2.0.0 alpha - can't log into web-gui

Hi, Thank you for testing version 2.0! We need more information to see where the problem is: - Do you use an OVA? - Is Graylog behind a firewall or proxy? - Are you using HTTPS? Please also attach any errors you see in your browser's console and/or Graylog server logs. Regards, Edmundo > On

Re: [Internet] [graylog2] Cannot generate chart

Hi Jean-Luc, Which Graylog version are you running? Please share with us any errors appearing in your Graylog server logs, Graylog web interface logs and in your browser's console while trying to add the graph, otherwise we can't know what is wrong. You could also check the Elasticsearch

Re: [graylog2] updatet to 1.2.2, still issues with the recalculation of the Indices

Hi Torsten, There is something missing in the url, it should look like this: $ curl -u admin:${PASSWORD} -X POST http://127.0.0.1:12900/system/indices/ranges/rebuild Hope that helps. Regards, Edmundo > On 12 Nov 2015, at 10:55, Torsten Schlicht wrote: > > Hello

Re: [graylog2] grok pattern not working

Hi Zsolt, That is only one part of it, you first need to create Grok patterns in System -> Grok patterns. You can create them by hand or import a file including the most common ones. Regards, Edmundo > On 21 Oct 2015, at 12:57, Osztrovszky Zsolt wrote: > > Yes. >

Re: [graylog2] Graylog Web Interface Internal Server Error

Hi Michel, Could you please look into your ES and Graylog logs and share any errors that you see while loading the data? Regards, Edmundo > On 20 Oct 2015, at 10:49, Michel Laporte > wrote: > > Hi There, > > On the Graylog Web Interface, after a day or

Re: [graylog2] Delete Saved Queries With No Results

Hi, This is a known issue in Graylog. Please track this issue for updates and more information: https://github.com/Graylog2/graylog2-web-interface/issues/1639 Regards Edmundo > On 13 Oct 2015, at 15:37, kaiser wrote: > > Hello, > > someone knows how to delete a saved

Re: [graylog2] DASHBOARD N/A

Hi Anderson, Can you please check your Elasticsearch and Graylog server logs for any errors or timeouts when opening your dashboard? The most likely scenario is that the Elasticsearch queries are taking up too much time and they do not return the widget results in time. If that is the case,

Re: [graylog2] DASHBOARD N/A

ndo > On 12 Oct 2015, at 14:48, Edmundo Alvarez <edmu...@graylog.com> wrote: > > Hi Anderson, > > Can you please check your Elasticsearch and Graylog server logs for any > errors or timeouts when opening your dashboard? The most likely scenario is > that the Elasti

Re: [graylog2] Timezone best practice?

Hi Peter, Under the hood, Graylog server uses UTC to work with timezones, and the web interface uses the user timezone to adjust some messages timestamps. Usually you set all components to the same timezone (to avoid problems, the one where you are or your other computers use), and then each

Re: [graylog2] graylog2-web-interface - build_release.sh fails today

Hi Jesse, The npm team released version 3 these days and that is breaking our build_release.sh script at the moment. Please stick with npm 2 or use a newer version of the build_release.sh script that fixes the installed version to the latest npm 2 available. Regards, Edmundo > On 18 Sep

Re: [graylog2] Trends presentation in dashboard

trust me :) > > > Best, > Stan > > > > 2015-09-18 16:06 GMT+02:00 Edmundo Alvarez <edmu...@graylog.com>: >> To be honest I'm not sure if it is an actual error or some misunderstanding >> of how it works, as it is tricky. I will explain i

Re: [graylog2] Trends presentation in dashboard

Hi Stanislav, The "lower is better" option changes the used colour for arrows indicating the trend. With that option enabled, arrows pointing down will be in green, and arrows pointing up in red. I am not aware of any issues with that feature, at least seems to be working in 1.2.0. Could you

Re: [graylog2] Trends presentation in dashboard

m/a/l0t02, the widget shows count of specific errors > every 5 minutes (so less is better). here is "4", 5 minutes before it > was "1", so if I understood correctly the arrow should be red > (pointing up). > > Best, > Stan > > 2015-09-18

Re: [graylog2] Encoding problem in email alert callback.

Hi Alexander, Could you please open an issue in Github https://github.com/Graylog2/graylog2-server/issues? Please include an example log message, so we can test it more easily. Thank you, Edmundo > On 17 Sep 2015, at 18:33, Alexander Ivanes wrote: > > Hello! > > We

Re: [graylog2] Graylog 1.2 LDAP Integration Error.

Hi, Could you please also include any errors that you may see in the Graylog server log? Maybe those were give us a hint. Thank you, Edmundo > On 18 Sep 2015, at 15:34, ivan morozov wrote: > > Hi @All, > > i'm trying to integrate LDAP into my Graylog. I'm using

Re: [graylog2] Problem with streeam alerts after updating to graylog1.2

isplayed. We also get the error message log: > ERROR [AnyExceptionClassMapper] Unhandled exception in REST resource > com.mongodb.MongoException$Network: Read operation to server localhost:27017 > failed on database graylog2 > > Regards. > > El jueves, 17 de septiembre de 2015, 7:55:27 (UTC+1

Re: [graylog2] Re: Problem with streeam alerts after updating to graylog1.2

Hi Arie, >From which version did you upgrade to 1.2? It would also be helpful to know if >that was a clean installation or an upgrade from an even earlier version. Regards, Edmundo > On 16 Sep 2015, at 11:10, Arie wrote: > > I'dd had an error on producing the clone,

Re: [graylog2] Problem with streeam alerts after updating to graylog1.2

ion is not present there, and may be missing in my present stream > configs. > > Arie > > Op woensdag 16 september 2015 11:45:55 UTC+2 schreef Edmundo Alvarez: > That previous 1.1 version, was it an upgrade from 1.0 by any chance? > > Edmundo >

Re: [graylog2] Graylog shows no menu after login

Hi Anant, By the way you described the problem, there must be some error loading Javascript. Could you please take a look at the Javascript console in your browser and share any errors that you might see there? It would also be helpful knowing the browser and OS you use. Please also ensure

Re: [graylog2] Grok apache filter not working ?!

Hi, most likely the log message is not matching the pattern you try to use. We can't help you much more if you don't share the Grok pattern you are using, please share the contents of the "COMBINEDAPACHELOG" pattern as you see in the System -> Grok patterns page. Please also be aware that the

Re: [graylog2] Re: [ANNOUNCE] Graylog v1.1.4 has been released

Hi Sreenath, Yes, you can, there were no configuration changes since 1.1.0. Regards, Edmundo On 01 Jul 2015, at 02:26, Sreenath V srinath...@gmail.com wrote: Can we upgrade from 1.1.2 to 1.1.4 and copy over the configurations as-is ? On Tuesday, June 30, 2015 at 5:13:29 PM UTC-7, lennart

Re: [graylog2] Upload logs to analyze in GrayLog

Hi Allan, You can only upload logs to Graylog by sending them through a network interface, but you can do that from a different computer than the one generating the logs. I would place the log file you want to analyse in a computer that can access Graylog, then create a raw TCP input in

Re: [graylog2] Edit Extractor - Load Message no working?

Hi Pete, I created this issue to track the progress: https://github.com/Graylog2/graylog2-web-interface/issues/1488 The fix for it will be in the upcoming 1.1.3 release. Regards, Edmundo On 15 Jun 2015, at 21:03, Pete GS starpoin...@gmail.com wrote: Hi Jochen, At work I'm on Windows

Re: [graylog2] Generate chart throws an error

Hi Denis, It looks like the numeric converter was not added to the extractor. When you create or edit the extractor, ensure you select the numeric converter in the select field and click on the add button right next to it, and also verify that the checkbox that will appear showing the

Re: [graylog2] Graphs in dashboard

Hi, That is not possible at the moment, sorry. Regards, Edmundo On 04 Jun 2015, at 22:25, Denis Fateyev de...@fateyev.com wrote: Hello there, Is there a way to show charts on a dashboard exactly as they seen preliminary in search results? In other words, I have this graph in search

Re: [graylog2] [ANN] Graylog 1.0.1 has been released

Hi Mark, Please check your Graylog server and web interface logs for more information. If you need help with it, we will need to know the error that is logged there when you access the nodes page, and please open a new thread for it :). Regards, Edmundo -- Developer Tel.: +49 (0)40 609 452

Re: [graylog2] Maximum Widget columns in Dashboard

for more than two columns offered On Friday, March 20, 2015 at 6:48:26 AM UTC-4, Edmundo Alvarez wrote: Hi Phil, There is no limitation on the number of columns, only the screen resolution and the widget size. There was an issue reported for that a few days ago, maybe it can help you

Re: [graylog2] Timezone issues for User Admin Default JDK/JRE

Hi, You can change the admin's timezone by setting the root_timezone configuration parameter in your Graylog server configuration file. Regarding the default JDK/JRE timezone, it looks like the JVM is not getting the right settings from your operating system. The solution for that depends on

Re: [graylog2] Message stay in disk journal and are not sent to elasticsearch

Hi Benjamin, You can enable the debug logs passing --debug to the server command. If you upgraded from an old Graylog version, please also double check the contents of your Graylog server configuration file. Regards, Edmundo -- Developer Tel.: +49 (0)40 609 452 077 Fax.: +49 (0)40 609 452 078

Re: [graylog2] search wildcard in quotes

to me reasons behind this behaviour. On Wednesday, January 28, 2015 at 12:59:31 PM UTC+1, Edmundo Alvarez wrote: Hello, As far as I know, it is not possible to use an exact phrase (a search term enclosed in quotation marks) with wildcards inside in Elasticsearch. The wildcard

Re: [graylog2] search wildcard in quotes

Hello, As far as I know, it is not possible to use an exact phrase (a search term enclosed in quotation marks) with wildcards inside in Elasticsearch. The wildcard will be simply ignored. If you only want to check that your query matches both Missing assetId and Missing assetIds, this is what

Re: [graylog2] GRAYLOG2 0.92.4 : error 500 on dashboard page after upgrade

Hello Jean-Luc, This seems to be the same issue as this one: https://github.com/Graylog2/graylog2-server/issues/884 Could you please check if you have any widgets with absolute time range? Regards, Edmundo Developer Tel.: +49 (0)40 609 452 077 Mobile: +49 (0)171 27 22 181 Mobile (US): +1

Re: [graylog2] Searching Last Hour returns no results

Hello Zach, I would start taking a look at the time configuration, specially timezones. Could you verify the time settings in the machines sending logs, and that both your Graylog user's timezone and the messages' timezones are correct? I hope that helps. Regards, Edmundo -- Developer Tel.:

Re: [graylog2] How to search by date range?

Hi Alexander, You can use an absolute time range for that. I attached a screenshot on how to get there and will update the documentation on this matter[1] as well. Regards, [1] https://www.graylog2.org/resources/documentation/general/searchandanalysis Edmundo -- Developer Tel.: +49 (0)40

Re: [graylog2] Timezone in Graylog2

Hello, We have released Graylog2 0.90.3 and 0.91.3 that should fix some issues with timezones and DST in the web interface. Could you please try with one of those versions and let us know if that helped? Regards, Edmundo -- Developer Tel.: +49 (0)40 609 452 077 Mobile: +49 (0)171 27 22 181

Re: [graylog2] Timezone in Graylog2

wrote: Hi Edmundo, I'm already on 0.91.3, but it doesn't help. -- Sincerely, Arkadiy Shinkarev e-mail: kewa...@gmail.com Cell.: +7 (926) 147-51-87 2014-11-05 16:10 GMT+03:00 Edmundo Alvarez edmu...@torch.sh: Hello, We have released Graylog2 0.90.3 and 0.91.3 that should fix some

Re: [graylog2] Deleted user and dashboards

Hi Johan, Thank you for reporting this issue! I have created a Github issue to further investigate this problem, please feel free to add anything else you think might help: https://github.com/Graylog2/graylog2-web-interface/issues/930 Regards, Edmundo -- Developer Tel.: +49 (0)40 609 452 077

Re: [graylog2] Message not displayed correctly on right side bar

Hi Marty, Thank you for reporting this. Could you please add an issue on the Graylog2 web interface project [1] and attach a screenshot where we can see the problem? That would be really helpful :) 1: https://github.com/Graylog2/graylog2-web-interface/issues Regards, Edmundo -- Developer

Re: [graylog2] Cannot connect to Elasticsearch

Hi Daniel, Are you using multicast by any chance? If so, please try to use unicast like it's described here under Discovery mode: http://graylog2.org/resources/documentation/setup/elasticsearch In any other case, please include your Graylog2 server and Elasticsearch configuration files. I

Re: [graylog2] trying to get GL2 to talk to EL

-for-graylog2-v0200 I hope that helps! Regards, Edmundo Alvarez Developer Tel.: +49 (0)40 609 452 077 Fax.: +49 (0)40 609 452 078 TORCH GmbH Steckelhörn 11 20457 Hamburg Germany https://www.torch.sh/ Commercial Reg. (Registergericht): Amtsgericht Hamburg, HRB 125175 Geschäftsführer: Lennart Koopmann (CEO

Re: [graylog2] Regex extractor

calugaruadr...@gmail.com wrote: Thank you Edmundo, that worked perfectly. Do all the regex extractors needs to be in enclosed parenthesis ? Best, Adrian On Friday, August 1, 2014 2:46:07 PM UTC+3, Edmundo Alvarez wrote: Hi Adrian, When you create a regular expression extractor, please

Re: [graylog2] ElasticSearchIllegalStateException: node is not configured to store local location

v0.20.1 but that is kind of old, so I would go with the current version (v0.20.6) unless there is a good reason for not doing so. I hope that helps! Regards, Edmundo Alvarez Developer Tel.: +49 (0)40 609 452 077 Fax.: +49 (0)40 609 452 078 TORCH GmbH Steckelhörn 11 20457 Hamburg Germany https

Re: [graylog2] Regex extractor

Hi Adrian, When you create a regular expression extractor, please ensure that the part of the regular expression you want to extract is enclosed in parenthesis. In your case, an extractor with the regular expression (Tunnel\d{1,3}) should get the right value. Regards, Edmundo Alvarez

Re: [graylog2] Searching in previously closed indices

. Please feel free to open an issue including logs from Graylog2 web interface, server, and Elasticsearch if that doesn't work either, so we can investigate the issue further. Regards, Edmundo Alvarez Developer Tel.: +49 (0)40 609 452 077 Fax.: +49 (0)40 609 452 078 TORCH GmbH Steckelhörn 11 20457

Re: [graylog2] Graylog not deleting old indexes upon restart

, once the number of opened indices reaches the value set on elasticsearch_max_number_of_indices. I hope that helps! Regards, Edmundo Alvarez Developer Tel.: +49 (0)40 609 452 077 Fax.: +49 (0)40 609 452 078 TORCH GmbH Steckelhörn 11 20457 Hamburg Germany https://www.torch.sh/ Commercial Reg

Re: [graylog2] [ANNOUNCE] Graylog2 v0.20.0-rc.1-1 has been released

Hi Torch team, I couldn’t try out rc.1, but the jump from preview-8 to rc.1-1 is huge, great work! After playing around with this version, I have seen some small problems affecting mainly the web interface: - The form to change and reset user permissions is somehow confusing, specially needing