Graylog2 is an open source log management tool for aggregating, filtering, alerting on, and performing analytics on syslog messages.
Questions tagged [graylog2]
279 questions
0
votes
1 answer
Regex find strings between colon
I try to regex the following string
: hostname: Oct 16 03:49:39.515: %BLA: message
and want to get the strings between the ": " and the last string after the last ": "
when I use : (.+?): I get hostname.
Unfortenately I am not able to get Oct 16…
sbstnmrwld
- 36
- 5
0
votes
1 answer
How can I upgrade Graylog2 to a newer version?
I have not been able to find documentation on how to upgrade Graylog2 to a new version. I am currently on v0.20.1 and would like to go up to .6.
I am using both the server and web interface, so steps for both would be very helpful!
I am running it…
John Rake
- 67
- 3
- 8
0
votes
1 answer
GrayLog2 query return no resoults though elasticsearch indexed the messages
I have installed GrayLog2 on Ubuntu server, and transmitted some messages.
The messages show when searching ElasticSearch REST interface, What am I doing wrong?
I tries to Google around but it all looks OK, I probably missing something, any help…
moshe beeri
- 2,007
- 1
- 17
- 25
0
votes
1 answer
Aggregating multiple logger calls in a single Graylog2 message
I'm currently setting up my Rails (3.2 at this point, though it runs under 4.1 on a dev branch) app to ship its logs to a centralized Graylog2 log aggregation server using the lograge and gelf-rb gems. The config (in the environment file) looks…
Zach Lipton
- 1,850
- 1
- 14
- 28
0
votes
2 answers
Forwarding logs to splunk/graylog from syslog-ng
I want to forward my apache and tomcat logs to my central log server.(splunk/graylog)
I have client systems with syslog-ng running.
How can I forward the logs?
Is it necessary to parse the logs? Can't I forward logs as they are?
do I have to edit…
Randeep
- 533
- 3
- 7
- 18
0
votes
2 answers
Toggling display of server-side log messages by topics
Question
is there a solution for filtering out server-side logs during development (for node.js or Scala), such that you can select which log 'topics' you wish to view at a given moment, out of everything that was logged by your application?…
matanster
- 15,072
- 19
- 88
- 167
0
votes
1 answer
Graylog2 Alarms for non admins
How can unprivileged users subscribe to alarms?
Administrators see the alarm tab on each stream. It lets you subscribe in order to get an email if a message limit per timeframe is hit. For "readers" the tab is invisible.
edlerd
- 2,145
- 1
- 16
- 24
0
votes
1 answer
can graylog2 output to flat file and elasticsearch at the same time?
I'm very new to graylog2. I finally have it up and running, storing logs to elasticsearch. My question is: can graylog2 also dump to flat file? if so can it dump log files to both flat file and elastic search simultaneously? I can't seem to find…
user2773013
- 3,102
- 8
- 38
- 58
0
votes
2 answers
Graylog not resolving hostname
I have a Graylog server that is showing IP addresses for 2 servers instead of Hostnames. It is showing the correct hostnames for the other servers. I have already confirmed DNS is correct. Any ideas on why GL would show IP instead of host name?
Fr0ntSight
- 2,696
- 3
- 17
- 14
0
votes
1 answer
Graylog2/Passenger 3.0.21; writev() "/tmp/passenger-standalone.3012/proxy_temp/3/00/0000000003" has written only 4096 of 8192 while reading upstream
I have a Graylog2 install (0.11.0), served with Passenger running as standalone (3.0.21). It's backed with multiple ElasticSearch servers plus MongoDB.
About a week ago, it was running Passenger 3.0.18 and this error started to show up in the…
kensentor
- 443
- 2
- 15
0
votes
1 answer
Graylog2 not showing any messages in specific stream
In our Symfony2 application we query an external API for a certain service we provide. This API (let's call it Acme API) sometimes throws error messages that we forward to Graylog2 via Monolog and Gelf to keep track of outages. Every error is logged…
thormeier
- 672
- 9
- 25
0
votes
1 answer
Multiple AMQP configurations for Graylogs, RabbitMQ or ElasticSearch
Here is what I would like to do:
I'm using RabbitMQ VHosts to break out different projects workflow, each vhosts has it's own logs exchange/queue, which Graylogs consumes from.
The problem is Graylogs can only configure one AMQP server and/or…
Phill Pafford
- 83,471
- 91
- 263
- 383
0
votes
1 answer
Graylog2 Web-Interface on Ubuntu Crashing Rack?
I have been trying to install graylog2 on ubuntu 12.10. I finally got the server going, but I seem to be having problems with the web interface. When I start Passenger, and then visit 0.0.0.0:3000, I'm getting an error with rack:
[ pid=17089…
Sakamoto Kazuma
- 2,573
- 7
- 34
- 75
0
votes
1 answer
Using Syslog functionality in Graylog2
I have Graylog2 v 0.9.6 installed, its syslog server is listening on UDP port 33000. Below is its configuration:
# On which port (UDP) should we listen for Syslog messages? (Standard: 514)
syslog_listen_port = 33000
syslog_protocol = udp
#…
Hussain Pirosha
- 1,358
- 1
- 11
- 19
0
votes
1 answer
Easy way to get logs from Graylog2 on Rails
I'm logging my Rails app needs to graylog2 server, using Yell gem, and/or gelf-rb.
I've searched a lot on the web on how to access these logs from my app, using some custom fields to filter, but no luck yet.
The only access i have to these messages…
rdlu
- 630
- 6
- 10