Questions tagged [gelf]

The Graylog Extended Log Format (GELF) is a log format.

The graylog Extended Log Format (GELF) is a log format that avoids the shortcomings of classic plain syslog:

Limited to length of 1024 bytes – Not much space for payloads like backtraces
No data types in structured syslog. You don’t know what is a number and what is a string.
The RFCs are strict enough but there are so many syslog dialects out there that you cannot possibly parse all of them.
No compression

There are a number of software libraries that can be used to produce logs in GELF, e.g. log4j2.

Links:

Documentation and specification

87 questions

votes

1 answer

Unable to Log Python List Objects as Message in Graylog

I am trying to send Python List as Log Message to Graylog. The approach that i am using is "Sending GELF messages via HTTP using curl" mentioned in http://docs.graylog.org/en/2.4/pages/gelf.html But when i send data as below: curl -X POST -H…

graylog2 graylog gelf graylog3

asked Apr 24 '19 at 07:45

ankit

1,499
5
29
46

votes

1 answer

Output graylog logs to another graylog

I'm trying to output all the logs from a Graylog server to another one. I would like to make this from multiple servers to the same one (categorizing them to keep a track on which log come from which server) Does somebody have an idea on how I could…

logging graylog2 graylog gelf

asked Feb 27 '19 at 09:23

Simon Rouvel

votes

1 answer

Logstash and nested JSON from Monlog; Why arrays are converted to JSON string?

I am using PHP with Monolog. I am outputting logs to JSON file and using Gelf to Logstash which then sends logs to ElasticSearch. The problem I have is that I am missing the extra object in Kibana and the tags field gets interpreted as string…

logstash kibana elastic-stack monolog gelf

asked Aug 30 '18 at 08:12

Tom Raganowicz

2,169
5
27
41

votes

1 answer

Thorntail (wldfly swarm) logging to Greylog

How can I enable wildfly swarm logging to greylog - or put in other words: do logging in gelf format? Has anyone done this already? It seems there are only framworkes on the graylog marketplace that work together with log4j (gelfj) or logback but…

logging graylog2 wildfly-swarm gelf

asked Jun 18 '18 at 08:21

Lasrik

votes

1 answer

Send existing log file to graylog?

Is there any way that I can send a bunch of existing log files (json content) to graylog? I found few posts googling, but all deal with sending live data to graylog, and unable to find any instructions on how to send existing log file

graylog gelf

asked Jan 16 '18 at 03:56

zeroweb

2,612
4
22
34

votes

0 answers

Logstash tcp input of '\0' null delimited messages (no \n)

I want to use logstash to parse gelf logs over tcp with the config from below. My stream of messages is null byte delimited and never contains \n. Unfortunately logstash doesn't accept \0 as delimiter even after setting config.support_escapes: true…

docker logstash docker-swarm logstash-configuration gelf

asked Jan 09 '18 at 14:37

herm

14,613
7
41
62

votes

1 answer

Logstash aggregate docker logs (to fix multiline issues)

I have logentries coming into logstash from different containers. Each logentry contains a field ContainerID and a field Message. Any messages with the same ContainerID I assume are ordered properly. I want to merge the contents of messages of…

docker logstash docker-swarm logstash-configuration gelf

asked Jan 04 '18 at 11:04

herm

14,613
7
41
62

votes

1 answer

Not able ot fetch the indices related data in kibana

I am able to create the indices using logstash.conf. My input type is gelf. I am sending the logstash logs to kibana. Here is my logstash.conf input { gelf { } } output { stdout { codec => rubydebug } elasticsearch { hosts => …

docker elasticsearch logstash kibana gelf

asked Oct 11 '17 at 15:31

Bala

votes

2 answers

Has anyone manage to Logstash-output-gelf plugin with TCP connection?

I am trying to use Logstash-output-gelf plugin with TCP connection to graylog2. I use logstash version 5.4.2, Graylog 2.2 I have used the below output settings output { gelf{ host =>"127.0.0.1" // i have changed the ip address. The actual IP…

tcp logstash elastic-stack graylog gelf

asked Jun 22 '17 at 14:21

mev9669

votes

1 answer

Logstash Gelf - Multiple sources

I am trying to use gelf input plugin for some ESB logs with GELF Layout (just started ELK Stack for logging). I am successful in getting the logs through a configured port. As there are around 100 apps (will keep adding) and some are WebServices…

logstash filebeat gelf

asked Mar 11 '17 at 21:27

Raj

votes

2 answers

Graylog 2.2.0-beta.1 in Docker with UDP input: Unable to load default stream

I'm trying to use graylog2 to collect logs from docker containers. Docs says that only UDP GELF input is supported for this purpose. I'm using docker-compose to run the graylog server. See gist for all files used:…

docker udp docker-compose graylog gelf

asked Dec 09 '16 at 12:26

olegabr

-1

votes

1 answer

How to add a static field to gelf logstash appender in properties file? biz.paluch.logging

I am using GELF-logstash appender together with log4j2 as logging appender, to send logs from my application through logstash to ElasticSearch/Kibana. In each log message I want to configure a static field, namely the region my application is…

java logstash log4j2 gelf

asked Apr 19 '21 at 11:10

Simulant

19,190
8
63
98

Prev 1 2 3 4 5