Questions tagged [graylog]

Graylog is an integrated Open Source log capture and analysis solution for operational intelligence.

Graylog is an integrated log capture and analysis solution for operational intelligence.

Non Graylog-authored components include MongoDB for metadata and Elasticsearch for log file storage and text search.

Basically is a server that collect log messages and provide an interface for analysis and monitoring

Architectural view

Messages (logs) are only stored in Elasticsearch. If we have data loss on Elasticsearch, the messages are gone.

MongoDB is only storing meta information and will be abstracted with a general database layer in future versions. This will allow you to use other databases like MySQL instead.

321 questions
10
votes
1 answer

Creating a serilog file sink later at runtime - how?

I use Serilog on the server side for all my .NETCore services using console, file and Graylog sinks. I also like to use it in my Windows fat clients (WPF applications). With the latter I have a problem since I do not see, how I can add another file…
ThommyB
  • 1,456
  • 16
  • 34
9
votes
2 answers

Sending logs to Graylog and in Gelf format

I would like to use graylog as central logging server and currently I am just using slf4j Logger "slf4j-api" as Java logging framework for logging in my java application. Can i use SLF4J to send logging to Graylog? or Which additional libraries do i…
orcl user
  • 167
  • 1
  • 4
  • 9
8
votes
2 answers

Docker Gelf driver custom fields

I can see in Docker documentation: https://docs.docker.com/config/containers/logging/gelf/ In GELF, every log message is a dict with the following fields: ... any custom fields you configure yourself Does it mean that this driver support custom…
Piotr Kozlowski
  • 899
  • 1
  • 13
  • 25
8
votes
1 answer

What's the best practice to send logs to graylog from a JVM application which runs within a docker container?

I'm using graylog as central logging server and i'm using a gelf log4j2-appender to send the log messages to graylog. This works fine. Now i created a docker image of my application and i'm able to run my software as docker container. Using docker i…
whitenexx
  • 1,350
  • 2
  • 25
  • 53
8
votes
1 answer

Graylog vs Fluentd

Out of available open source log management tools, I have come across these two but couldn't figure out which one to use. I tried searching articles for Graylog vs Fluentd but couldn't find. Could someone suggest which one would be good for the…
baig62
  • 169
  • 1
  • 7
6
votes
2 answers

how to filter specific class logger in logback.xml?

we try to filter logs generated from one class: com.websudos.phantom for two goals: all logs from app saved in the file except log from this calss all log from this file transferred to graylog. we have filter those log by regex with this…
Amirio
  • 628
  • 1
  • 6
  • 12
6
votes
1 answer

to send logs from php application to graylog using monolog

I have installed graylog server and its dependencies.Trying to send logs from my php application to graylog server using Monolog. But I am not aware of how to use the Gelf handler.I have seen the GelfHandlerTest.php that is present inside the…
Rajeshwar
  • 391
  • 1
  • 5
  • 19
5
votes
1 answer

How to retrieve log from graylog over API

How can I search logs from a graylog server with PHP? Assume the graylog servers is https://host.td/api/search/universal/absolute
Klaus
  • 1,171
  • 1
  • 11
  • 16
5
votes
2 answers

Docker-based graylog permissions

I've the following docker-compose.yml (slightly altered, but copied from here): version: '2' services: mongodb: image: mongo:3 volumes: - /storage/mongo_data:/data/db elasticsearch: image:…
Opal
  • 81,889
  • 28
  • 189
  • 210
5
votes
2 answers

Graylog Search with Regex

In my graylog Server, I want to create a search-value which finds the folowing query: ctxt__Error:"User \"USERNAME\" not found.". But I want to find ANY Error for every USERNAME. My Searchstring dowsnt work when I do this: ctxt__Error:"User \"*\"…
Zwen2012
  • 3,360
  • 9
  • 40
  • 67
5
votes
0 answers

Graylog - Failed to write to socket: fwrite(): send of 136 bytes failed with errno=111 Connection refused (8)

I am getting this error when log alert with Gelf logger. RuntimeException Failed to write to socket: fwrite(): send of 136 bytes failed with errno=111 Connection refused (8) Code $transport = new UdpTransport("127.0.0.1", 6379,…
Gurpreet Singh
  • 3,061
  • 5
  • 19
  • 36
5
votes
4 answers

How to manually purge data from Graylog 2.1

I have a Graylog 2.1 server that has been running for some time. I hadn't paid attention to my retention rate recently and came in this morning to find Graylog partially crashed because the disk was out of space. Nearly 100% of the disk space is…
Ben Sooter
  • 317
  • 1
  • 3
  • 11
5
votes
3 answers

How to send logs to Graylog (Docker)?

I'm new to both Docker and Graylog. Can anyone show me an example of how to send log data to the Graylog server?
Shamik Mukherjee
  • 51
  • 1
  • 1
  • 3
5
votes
1 answer

Finding values that are causing NaN for Mean statistic function in Graylog2

I have a simple request log where each record has an execution time in seconds, under exec_time property. It should always be a number (lower the better). Based on that property I have dashboard widget that shows its Mean value and it was working…
Ilija
  • 4,105
  • 4
  • 32
  • 46
5
votes
1 answer

Docker & Graylog

I've been installing the last version of Docker (1.8). This new version is great because you can set a particular log-driver to send the log to Graylog2 (for example). Here's the blog post from docker : Docker Blog announcing 1.8 Here's the…
Mathieu
  • 365
  • 2
  • 9
1
2 3
21 22