Stack Overflow
Stack Overflow

Questions tagged [graylog]

Graylog is an integrated Open Source log capture and analysis solution for operational intelligence.

Graylog is an integrated log capture and analysis solution for operational intelligence.

Non Graylog-authored components include MongoDB for metadata and Elasticsearch for log file storage and text search.

Basically is a server that collect log messages and provide an interface for analysis and monitoring

Architectural view

Messages (logs) are only stored in Elasticsearch. If we have data loss on Elasticsearch, the messages are gone.

MongoDB is only storing meta information and will be abstracted with a general database layer in future versions. This will allow you to use other databases like MySQL instead.

321 questions
2
votes
0 answers

Unable to search in graylog

I am trying to figure why graylog displays this error in the search tab: I tried searching the web for clues and this was the closest but it did not state the resolution:…
Eugene
  • 1,013
  • 1
  • 22
  • 43
2
votes
2 answers

Serilog Graylog cannot log in Graylog

I am new to graylog. I cannot log into graylog. When I do a search for the message, I look for source:xxx-yyy or just a keyword test9999, look for all the latest logs, my message is not there. What could I be doing wrong? Server name and port are…
live-love
  • 48,840
  • 22
  • 240
  • 204
2
votes
0 answers

Graylog 3.2 REST API sync search

Is there any documentation or examples how to work with /views/search/sync in Graylog 3.2? The Model Schema is not really self explanotary and https://docs.graylog.org/en/3.0/pages/configuration/rest_api.html also not really helpful. I know that…
AlexSmith
  • 29
  • 1
2
votes
1 answer

How to send all Docker logs to Graylog

I am trying to send all logs (exceptions too) to Graylog, but; for example, if there are some mistakes in logback.config file or JVM argument syntax error, I can't see in Graylog stream. Here is docker-compose.yml; logging: driver: gelf …
muhammed ozbilici
  • 667
  • 6
  • 17
2
votes
1 answer

Graylog is not showing logs with log4net and .NET Core Application

I am trying to configure my .NET Core Application with Graylog v2.5. I am using log4net to log messages. I have used below configuration to setup the environment. I have intentionally raised exception in my WebAPI controller to validate Graylog…
Ashok kumar
  • 1,593
  • 4
  • 33
  • 68
2
votes
1 answer

How can I remove or ignore unwanted .snapshot in mounted volume?

I am running a kubernetes cluster with NFS NAStorage, and when I mount volumes they get a .snapshot directory created at the mountpoint. This causes problems for example when using Helm Charts, as these don't expect an unknown Read Only directory in…
oscarlo
  • 29
  • 7
2
votes
1 answer

How to use Graylog in python flask

I'm trying to save the erros/info in graylog using python flask. I did something in my code. First, I imported the graylog using pip. then, I tried to config the graylog.But, I can't. How could we config graylog in flask?
sam ruben
  • 365
  • 2
  • 6
2
votes
0 answers

TraceId from de.siegmar.logbackgelf.GelfUdpAppender to graylog

I am using de.siegmar.logbackgelf.GelfUdpAppender from pushing logs to graylog but TraceId is not coming into graylog. Has tried with putting logging_correlation_id:%X{X-B3-TraceId:-} but instead of tracId,…
Ravat Tailor
  • 1,193
  • 3
  • 20
  • 44
2
votes
0 answers

Graylog: Bad GELF UDP performance

I have a Graylog installation that can handle well over 25.000 msg/sec. I am now experimenting with setting up a dedicated Logstash cluster. So something like this: Filebeat (n hosts) -> Logstash Cluster -> Graylog The biggest issue now is that I…
Frizz
  • 2,524
  • 6
  • 31
  • 45
2
votes
1 answer

Persist graylogs stream and input

I have Graylog put in docker container using docker-compose with elasticSearch and MongoDB. Ofcourse when I configure it once on machine and run docker-compose again configuration stays. Unfortunately when I want to change machines (run on another…
Piotr
  • 569
  • 6
  • 20
2
votes
1 answer

Does anyone have instructions for setting up Graylog?

I am trying to review the Graylog software to monitor my various server. Basically looks like a syslog analyser. My problem is their instructions/manual may be complete and exhaustive, but it is written like a reference manual. I.e., if you know…
Gregory West
  • 149
  • 1
  • 9
2
votes
0 answers

aggregation query in json array elastic search

I have program send logs by rsyslog to graylog and save them in elastic search. I used elastic search 1.7. message send by rsyslog like this {"t" : [ {"id":10,"x":12,"y":15,"z":8}, {"id":12,"x":8,"y":6,"z":1}, {"id":10,"x":2,"y":1,"z":6} ]} I want…
sharafi
  • 531
  • 1
  • 7
  • 19
2
votes
2 answers

How can I programmatically log numeric fields into Graylog?

The situation I write libraries to work against a computing server. I am logging computing times (start and stop of a job, for example). I want to log this values independently of the log framework configuration of the client application. I have…
manuelvigarcia
  • 1,696
  • 1
  • 22
  • 32
2
votes
1 answer

Delete a specific log message from Graylog

I need to delete a specific log messages from Graylog, however there doesn't seem to be any public API to do this (going by the Graylog API browser). There is very little documentation about how one might do this. I've found a few random articles…
Ryan.Bartsch
  • 3,698
  • 1
  • 26
  • 52
2
votes
1 answer

Separate IPV4 and IPV6 addresses with Regular Expressions and Grok

I'm trying to build a Grok pattern for some log files coming in. I have a field in a log message that can look like both of the following: IP Address: (192.168.1.100), IP Address: (192.168.1.100, 2001:0db8:85a3:0000:0000:8a2e:0370:7334), Dealing…
Ben Sooter
  • 317
  • 1
  • 3
  • 11
1 2
3
21 22