Sparklyballs' Beta Repo


Recommended Posts

Just wanted to play around with GrayLog.

 

To save myself some time, how do you set up the host paths?

 

to push unraid output to graylog use this in your go file

 

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

with this as your /boot/config/rsyslog.conf file , changing the ip in the last line to suit yours.

 

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.145:514

 

 

Link to comment

Just wanted to play around with GrayLog.

 

To save myself some time, how do you set up the host paths?

 

to push unraid output to graylog use this in your go file

 

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

with this as your /boot/config/rsyslog.conf file , changing the ip in the last line to suit yours.

 

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.145:514

Thanks.  So all of the host paths are set to appdata then
Link to comment

that's what you get for looking after a 4year old and not really reading the question while she's trying to draw on you, lol.

 

 

you need a main folder in appdata with subfolders for each of the mappings.

No worries.  I would have had to post back with that config changes anyways

Link to comment

I think this dudes software is fantastic and use ComicTagger almost daily. But I have a fundamental worry about a daemon that doesnt receive any love being public facing (which it will if we make it available).

 

Sparky, perhaps a big warning somewhere about this?

 

From what I can tell Ubooquity chap is intertsed in streaming as well.

 

p.s. its not quiet its dead. see forum. apart from that its all brillaint

 

It's in my beta repo, capitalised warning about developement being ceased on software in description.

 

Cant see it now. Also I believe its been blessed with a semi active fork

 

https://github.com/davide-romanini/comictagger

 

which is tracked by the original developer.

 

Thoughts?

Link to comment

Hey Sparkly,

 

Was trying to add graylog, but when I click create nothing happens

 

This occurs either adding it from the Community Applications plugin or if I manually add your beta repository into my template repositories list and doesn't occur with jirafeau or other containers in your repo.

 

I can't see any obvious problems in the xml or on docker hub and I'm sure I've downloaded it in the past but never got around to setting it up.

 

There is about 3GB free in my docker.img and nothing in my syslog. 

 

Tried rebooting my machine and that didn't work either.

 

Any ideas?

Link to comment

have you clicked advanced and set the variables ?

 

Ummm, no  :-[

 

i feel your shame

 

OK, maybe I'm getting the wrong end of the stick here, set it up, edited my go file, saved rsyslog.conf but getting an error in the container log.

 

/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-30T11:53:32+01:00] INFO: Forking chef instance to converge...
[2015-05-30T11:53:32+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-30T11:53:32+01:00] INFO: Chef-client pid: 23
[2015-05-30T11:54:06+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-30T11:54:06+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-30T11:54:06+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-30T11:54:06+01:00] INFO: Starting Chef Run for d6735be09f5f
[2015-05-30T11:54:06+01:00] INFO: Running start handlers
[2015-05-30T11:54:06+01:00] INFO: Start handlers complete.
[2015-05-30T11:54:06+01:00] INFO: directory[/etc/graylog] mode changed to 775
Generating RSA private key, 2048 bit long modulus
....+++
..........+++
e is 65537 (0x10001)
[2015-05-30T11:54:06+01:00] INFO: group[graylog] created
[2015-05-30T11:54:06+01:00] INFO: user[graylog] created
[2015-05-30T11:54:06+01:00] INFO: directory[/var/opt/graylog] owner changed to 1000
[2015-05-30T11:54:06+01:00] INFO: directory[/var/opt/graylog] group changed to 8378
[2015-05-30T11:54:06+01:00] INFO: template[/var/opt/graylog/.gitconfig] created file /var/opt/graylog/.gitconfig
[2015-05-30T11:54:06+01:00] INFO: template[/var/opt/graylog/.gitconfig] updated file contents /var/opt/graylog/.gitconfig
[2015-05-30T11:54:06+01:00] INFO: template[/var/opt/graylog/.gitconfig] owner changed to 1000
[2015-05-30T11:54:06+01:00] INFO: template[/var/opt/graylog/.gitconfig] group changed to 8378
[2015-05-30T11:54:06+01:00] INFO: template[/var/opt/graylog/.gitconfig] mode changed to 644
[2015-05-30T11:54:06+01:00] INFO: directory[/var/opt/graylog/data] owner changed to 1000
[2015-05-30T11:54:06+01:00] INFO: directory[/var/opt/graylog/data] group changed to 8378
[2015-05-30T11:54:06+01:00] INFO: directory[/etc/authbind/byport] created directory /etc/authbind/byport
[2015-05-30T11:54:06+01:00] INFO: file[/etc/authbind/byport/!514] created file /etc/authbind/byport/!514
[2015-05-30T11:54:06+01:00] INFO: file[/etc/authbind/byport/!514] owner changed to 1000
[2015-05-30T11:54:06+01:00] INFO: file[/etc/authbind/byport/!514] group changed to 8378
[2015-05-30T11:54:06+01:00] INFO: file[/etc/authbind/byport/!514] mode changed to 550
[2015-05-30T11:54:06+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] created file /etc/init/graylog-runsvdir.conf
[2015-05-30T11:54:06+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] updated file contents /etc/init/graylog-runsvdir.conf
[2015-05-30T11:54:06+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] owner changed to 0
[2015-05-30T11:54:06+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] group changed to 0
[2015-05-30T11:54:06+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] mode changed to 644
[2015-05-30T11:54:07+01:00] INFO: execute[initctl status graylog-runsvdir] ran successfully
[2015-05-30T11:54:08+01:00] INFO: template[/etc/timezone] backed up to /var/chef/backup/etc/timezone.chef-20150530115408.021598
[2015-05-30T11:54:08+01:00] INFO: template[/etc/timezone] updated file contents /etc/timezone
[2015-05-30T11:54:08+01:00] INFO: directory[/var/log/graylog/etcd] created directory /var/log/graylog/etcd
[2015-05-30T11:54:08+01:00] INFO: directory[/var/log/graylog/etcd] owner changed to 1000
[2015-05-30T11:54:08+01:00] INFO: directory[/var/log/graylog/etcd] mode changed to 700
[2015-05-30T11:54:08+01:00] INFO: directory[/var/opt/graylog/data/etcd] created directory /var/opt/graylog/data/etcd
[2015-05-30T11:54:08+01:00] INFO: directory[/var/opt/graylog/data/etcd] owner changed to 1000
[2015-05-30T11:54:08+01:00] INFO: directory[/var/opt/graylog/data/etcd] group changed to 8378
[2015-05-30T11:54:08+01:00] INFO: directory[/var/opt/graylog/data/etcd] mode changed to 750
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd] created directory /opt/graylog/sv/etcd
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd] mode changed to 755
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log] created directory /opt/graylog/sv/etcd/log
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log] mode changed to 755
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] created directory /opt/graylog/sv/etcd/log/main
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] mode changed to 755
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/run] created file /opt/graylog/sv/etcd/run
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/run] updated file contents /opt/graylog/sv/etcd/run
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/run] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/run] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/run] mode changed to 755
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] created file /opt/graylog/sv/etcd/log/run
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] updated file contents /opt/graylog/sv/etcd/log/run
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] mode changed to 755
[2015-05-30T11:54:08+01:00] INFO: template[/var/log/graylog/etcd/config] created file /var/log/graylog/etcd/config
[2015-05-30T11:54:08+01:00] INFO: template[/var/log/graylog/etcd/config] updated file contents /var/log/graylog/etcd/config
[2015-05-30T11:54:08+01:00] INFO: template[/var/log/graylog/etcd/config] owner changed to 0
[2015-05-30T11:54:08+01:00] INFO: template[/var/log/graylog/etcd/config] group changed to 0
[2015-05-30T11:54:08+01:00] INFO: link[/opt/graylog/init/etcd] created
[2015-05-30T11:54:08+01:00] INFO: link[/opt/graylog/service/etcd] created
/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-30T12:01:29+01:00] INFO: Forking chef instance to converge...
[2015-05-30T12:01:29+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-30T12:01:29+01:00] INFO: Chef-client pid: 24
[2015-05-30T12:01:33+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-30T12:01:33+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-30T12:01:33+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-30T12:01:33+01:00] INFO: Starting Chef Run for d6735be09f5f
[2015-05-30T12:01:33+01:00] INFO: Running start handlers
[2015-05-30T12:01:33+01:00] INFO: Start handlers complete.
[2015-05-30T12:01:33+01:00] WARN: IP change detected!
[2015-05-30T12:01:33+01:00] FATAL: Can not reach master server, make sure 127.0.0.1 is reachable and 'etcd' service is running properly.
[0m
================================================================================[0m
[31mRecipe Compile Error in /opt/graylog/embedded/cookbooks/graylog/recipes/default.rb[0m
================================================================================[0m

[0mSystemExit[0m
----------[0m
exit[0m

[0mCookbook Trace:[0m
---------------[0m
/opt/graylog/embedded/cookbooks/graylog/libraries/graylog.rb:171:in `rescue in generate_settings'
[0m /opt/graylog/embedded/cookbooks/graylog/libraries/graylog.rb:166:in `generate_settings'
[0m /opt/graylog/embedded/cookbooks/graylog/libraries/graylog.rb:226:in `generate_config'
[0m /opt/graylog/embedded/cookbooks/graylog/recipes/default.rb:13:in `from_file'[0m

[0mRelevant File Content:[0m
----------------------[0m
/opt/graylog/embedded/cookbooks/graylog/libraries/graylog.rb:
[0m
[0m164: if Graylog['current_address'] != Graylog['last_address']
[0m165: Chef::Log.warn("IP change detected!")
[0m166: begin
[0m167: client = Etcd.client(host: Graylog['master_node'], port: 4001)
[0m168: client.delete("/servers/#{Graylog['last_address']}") if client.exists?("/servers/#{Graylog['last_address']}")
[0m169: client.delete("/elasticsearch/#{Graylog['last_address']}") if client.exists?("/elasticsearch/#{Graylog['last_address']}")
[0m170: rescue Exception => e
[0m171>> Chef::Application.fatal!("Can not reach master server, make sure #{Graylog['master_node']} is reachable and 'etcd' service is running properly.")
[0m172: end
[0m173: Graylog['last_address'] = Graylog['current_address']
[0m174: end
[0m175: 
[0m176: if File.directory?("/etc/graylog")
[0m177: File.open("/etc/graylog/graylog-settings.json", "w") do |f|
[0m178: f.puts(
[0m179: Chef::JSONCompat.to_json_pretty({
[0m180: 'timezone' => Graylog['timezone'],
[0m
[0m[2015-05-30T12:01:33+01:00] ERROR: Running exception handlers
[2015-05-30T12:01:33+01:00] ERROR: Exception handlers complete
[2015-05-30T12:01:33+01:00] FATAL: Stacktrace dumped to /opt/graylog/embedded/cookbooks/cache/chef-stacktrace.out
[2015-05-30T12:01:33+01:00] ERROR: exit
[2015-05-30T12:01:33+01:00] FATAL: Chef::Exceptions::ChildConvergeError: Chef run process exited unsuccessfully (exit code 1)

 

What am I doing wrong now?

 

I have changed the IP address in rsyslog.conf to that of my Unraid box and Port 514.

Link to comment

Ok, trying this again

 

Here's my mappings

 

iKKgUNi.jpg

 

Got this in my go file

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

rsyslog.conf (Saved to /boot/config)

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.1:514

 

And my log

/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-31T19:46:26+01:00] INFO: Forking chef instance to converge...
[2015-05-31T19:46:26+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-31T19:46:26+01:00] INFO: Chef-client pid: 25
[2015-05-31T19:46:27+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-31T19:46:27+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-31T19:46:27+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-31T19:46:27+01:00] INFO: Starting Chef Run for 4e2de7aeb2df
[2015-05-31T19:46:27+01:00] INFO: Running start handlers
[2015-05-31T19:46:27+01:00] INFO: Start handlers complete.
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/graylog] mode changed to 775
Generating RSA private key, 2048 bit long modulus
......+++
....................................+++
e is 65537 (0x10001)
[2015-05-31T19:46:27+01:00] INFO: group[graylog] created
[2015-05-31T19:46:27+01:00] INFO: user[graylog] created
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] created file /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] updated file contents /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/authbind/byport] created directory /etc/authbind/byport
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] created file /etc/authbind/byport/!514
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] mode changed to 550
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] created file /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] updated file contents /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] owner changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] group changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: execute[initctl status graylog-runsvdir] ran successfully
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] backed up to /var/chef/backup/etc/timezone.chef-20150531194628.752473
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] updated file contents /etc/timezone
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] created directory /opt/graylog/sv/etcd
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] created directory /opt/graylog/sv/etcd/log
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] created directory /opt/graylog/sv/etcd/log/main
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] created file /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] updated file contents /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] created file /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] updated file contents /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/init/etcd] created
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/service/etcd] created

 

When I try to navigate to IP:9000 or IP:12201 I get a connection refused error in Chrome, have also tried in IE & Firefox in addition to a different machine. 

 

Not sure what else to do.

Link to comment

Ok, trying this again

 

Here's my mappings

 

iKKgUNi.jpg

 

Got this in my go file

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

rsyslog.conf (Saved to /boot/config)

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.1:514

 

And my log

/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-31T19:46:26+01:00] INFO: Forking chef instance to converge...
[2015-05-31T19:46:26+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-31T19:46:26+01:00] INFO: Chef-client pid: 25
[2015-05-31T19:46:27+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-31T19:46:27+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-31T19:46:27+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-31T19:46:27+01:00] INFO: Starting Chef Run for 4e2de7aeb2df
[2015-05-31T19:46:27+01:00] INFO: Running start handlers
[2015-05-31T19:46:27+01:00] INFO: Start handlers complete.
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/graylog] mode changed to 775
Generating RSA private key, 2048 bit long modulus
......+++
....................................+++
e is 65537 (0x10001)
[2015-05-31T19:46:27+01:00] INFO: group[graylog] created
[2015-05-31T19:46:27+01:00] INFO: user[graylog] created
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] created file /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] updated file contents /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/authbind/byport] created directory /etc/authbind/byport
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] created file /etc/authbind/byport/!514
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] mode changed to 550
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] created file /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] updated file contents /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] owner changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] group changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: execute[initctl status graylog-runsvdir] ran successfully
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] backed up to /var/chef/backup/etc/timezone.chef-20150531194628.752473
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] updated file contents /etc/timezone
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] created directory /opt/graylog/sv/etcd
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] created directory /opt/graylog/sv/etcd/log
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] created directory /opt/graylog/sv/etcd/log/main
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] created file /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] updated file contents /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] created file /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] updated file contents /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/init/etcd] created
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/service/etcd] created

 

When I try to navigate to IP:9000 or IP:12201 I get a connection refused error in Chrome, have also tried in IE & Firefox in addition to a different machine. 

 

Not sure what else to do.

 

it can take some time to come up, few different elements that need to be active.

Link to comment

Ok, trying this again

 

Here's my mappings

 

iKKgUNi.jpg

 

Got this in my go file

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

rsyslog.conf (Saved to /boot/config)

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.1:514

 

And my log

/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-31T19:46:26+01:00] INFO: Forking chef instance to converge...
[2015-05-31T19:46:26+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-31T19:46:26+01:00] INFO: Chef-client pid: 25
[2015-05-31T19:46:27+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-31T19:46:27+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-31T19:46:27+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-31T19:46:27+01:00] INFO: Starting Chef Run for 4e2de7aeb2df
[2015-05-31T19:46:27+01:00] INFO: Running start handlers
[2015-05-31T19:46:27+01:00] INFO: Start handlers complete.
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/graylog] mode changed to 775
Generating RSA private key, 2048 bit long modulus
......+++
....................................+++
e is 65537 (0x10001)
[2015-05-31T19:46:27+01:00] INFO: group[graylog] created
[2015-05-31T19:46:27+01:00] INFO: user[graylog] created
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] created file /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] updated file contents /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/authbind/byport] created directory /etc/authbind/byport
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] created file /etc/authbind/byport/!514
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] mode changed to 550
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] created file /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] updated file contents /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] owner changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] group changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: execute[initctl status graylog-runsvdir] ran successfully
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] backed up to /var/chef/backup/etc/timezone.chef-20150531194628.752473
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] updated file contents /etc/timezone
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] created directory /opt/graylog/sv/etcd
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] created directory /opt/graylog/sv/etcd/log
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] created directory /opt/graylog/sv/etcd/log/main
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] created file /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] updated file contents /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] created file /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] updated file contents /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/init/etcd] created
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/service/etcd] created

 

When I try to navigate to IP:9000 or IP:12201 I get a connection refused error in Chrome, have also tried in IE & Firefox in addition to a different machine. 

 

Not sure what else to do.

 

it can take some time to come up, few different elements that need to be active.

 

I'll leave it an hour then and try later.  Thanks, you have no idea how many times I've started and restarted, removed and reinstalled, wiped appdata folder messing around with this container!  :P

Link to comment

Ok, trying this again

 

Here's my mappings

 

iKKgUNi.jpg

 

Got this in my go file

# set syslog file for remote logging
killall rsyslogd
mv /etc/rsyslog.conf /etc/rsyslog.orig
cp /boot/config/rsyslog.conf /etc/rsyslog.conf
rsyslogd

 

rsyslog.conf (Saved to /boot/config)

#  /etc/rsyslog.conf	Configuration file for rsyslog.
#
#			For more information see
#			/usr/doc/rsyslog-@VERSION@/html/rsyslog_conf.html


#################
#### MODULES ####
#################

$ModLoad imuxsock # provides support for local system logging
$ModLoad imklog   # provides kernel logging support (previously done by rklogd)
# limetech - we don't need no stinkin' MARKS
#$ModLoad immark   # provides --MARK-- message capability

# ######### Receiving Messages from Remote Hosts ##########
# TCP Syslog Server:
# provides TCP syslog reception and GSS-API (if compiled to support it)
#$ModLoad imtcp  # load module
#$InputTCPServerRun 514 # start up TCP listener at port 514

# UDP Syslog Server:
#$ModLoad imudp  # provides UDP syslog reception
#$UDPServerRun 514 # start a UDP syslog server at standard port 514


###########################
#### GLOBAL DIRECTIVES ####
###########################

#
# Use traditional timestamp format.
# To enable high precision timestamps, comment out the following line.
#
$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat

#
# Use traditional Slackware console log level
#
$klogConsoleLogLevel 3

#
# Set the default permissions for all log files.
#
$FileOwner root
$FileGroup root
$FileCreateMode 0640
$DirCreateMode 0755
$Umask 0022

#
# Include all config files in /etc/rsyslog.d/
# limetech - ok
#
$IncludeConfig /etc/rsyslog.d/*.conf


###############
#### RULES ####
###############

# limetech - everything goes to syslog.
*.debug                                                 -/var/log/syslog

# Uncomment this to see kernel messages on the console.
#kern.*							/dev/console

# Log anything 'info' or higher, but lower than 'warn'.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.info;*.!warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/messages

# Log anything 'warn' or higher.
# Exclude authpriv, cron, mail, and news.  These are logged elsewhere.
#*.warn;\
#	authpriv.none;cron.none;mail.none;news.none	-/var/log/syslog

# Debugging information is logged here.
#*.=debug						-/var/log/debug

# Private authentication message logging:
#authpriv.*						-/var/log/secure

# Cron related logs:
#cron.*							-/var/log/cron

# Mail related logs:
#mail.*							-/var/log/maillog

# Emergency level messages go to all users:
*.emerg							:omusrmsg:*

# This log is for news and uucp errors:
#uucp,news.crit						-/var/log/spooler

# Uncomment these if you'd like INN to keep logs on everything.
# You won't need this if you don't run INN (the InterNetNews daemon).
#news.=crit					-/var/log/news/news.crit
#news.=err					-/var/log/news/news.err
#news.notice					-/var/log/news/news.notice

# ########## Remote Logging (we use TCP for reliable delivery) ##########
# An on-disk queue is created for this action. If the remote host is
# down, messages are spooled to disk and sent when it is up again.
#$WorkDirectory /rsyslog/spool # where to place spool files
#$ActionQueueFileName uniqName # unique name prefix for spool files
#$ActionQueueMaxDiskSpace 1g   # 1gb space limit (use as much as possible)
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
#$ActionQueueType LinkedList   # run asynchronously
#$ActionResumeRetryCount -1    # infinite retries if host is down
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
*.* @@192.168.1.1:514

 

And my log

/bin/sh: 1: /opt/graylog/embedded/bin/runsvdir-docker: not found
[2015-05-31T19:46:26+01:00] INFO: Forking chef instance to converge...
[2015-05-31T19:46:26+01:00] INFO: *** Chef 12.2.1 ***
[2015-05-31T19:46:26+01:00] INFO: Chef-client pid: 25
[2015-05-31T19:46:27+01:00] INFO: Setting the run_list to ["recipe[graylog]", "recipe[ntp]"] from CLI options
[2015-05-31T19:46:27+01:00] INFO: Run List is [recipe[graylog], recipe[ntp]]
[2015-05-31T19:46:27+01:00] INFO: Run List expands to [graylog, ntp]
[2015-05-31T19:46:27+01:00] INFO: Starting Chef Run for 4e2de7aeb2df
[2015-05-31T19:46:27+01:00] INFO: Running start handlers
[2015-05-31T19:46:27+01:00] INFO: Start handlers complete.
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/graylog] mode changed to 775
Generating RSA private key, 2048 bit long modulus
......+++
....................................+++
e is 65537 (0x10001)
[2015-05-31T19:46:27+01:00] INFO: group[graylog] created
[2015-05-31T19:46:27+01:00] INFO: user[graylog] created
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: directory[/var/opt/graylog] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] created file /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] updated file contents /var/opt/graylog/.gitconfig
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: template[/var/opt/graylog/.gitconfig] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: directory[/etc/authbind/byport] created directory /etc/authbind/byport
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] created file /etc/authbind/byport/!514
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] owner changed to 1000
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] group changed to 8378
[2015-05-31T19:46:27+01:00] INFO: file[/etc/authbind/byport/!514] mode changed to 550
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] created file /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] updated file contents /etc/init/graylog-runsvdir.conf
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] owner changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] group changed to 0
[2015-05-31T19:46:27+01:00] INFO: cookbook_file[/etc/init/graylog-runsvdir.conf] mode changed to 644
[2015-05-31T19:46:27+01:00] INFO: execute[initctl status graylog-runsvdir] ran successfully
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] backed up to /var/chef/backup/etc/timezone.chef-20150531194628.752473
[2015-05-31T19:46:28+01:00] INFO: template[/etc/timezone] updated file contents /etc/timezone
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] created directory /opt/graylog/sv/etcd
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] created directory /opt/graylog/sv/etcd/log
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] created directory /opt/graylog/sv/etcd/log/main
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: directory[/opt/graylog/sv/etcd/log/main] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] created file /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] updated file contents /opt/graylog/sv/etcd/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] created file /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] updated file contents /opt/graylog/sv/etcd/log/run
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] owner changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] group changed to 0
[2015-05-31T19:46:28+01:00] INFO: template[/opt/graylog/sv/etcd/log/run] mode changed to 755
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/init/etcd] created
[2015-05-31T19:46:28+01:00] INFO: link[/opt/graylog/service/etcd] created

 

When I try to navigate to IP:9000 or IP:12201 I get a connection refused error in Chrome, have also tried in IE & Firefox in addition to a different machine. 

 

Not sure what else to do.

 

it can take some time to come up, few different elements that need to be active.

 

I'll leave it an hour then and try later.  Thanks, you have no idea how many times I've started and restarted, removed and reinstalled, wiped appdata folder messing around with this container!  :P

 

an hour might be a bit excessive, lol.

 

on my seperate server it takes about 5 minutes.

Link to comment

 

an hour might be a bit excessive, lol.

 

on my seperate server it takes about 5 minutes.

 

In that case, Houston we have a problem....  ::)

 

i'm just loading the docker, see what's cooking.

 

ok, something's gone south.

 

the docker itself is just a mirror of the official graylog docker with a couple of tweaks, on first run it builds the main program from a chef recipe.

their latest git pull might have a dependecy i'm missing.

Link to comment

 

an hour might be a bit excessive, lol.

 

on my seperate server it takes about 5 minutes.

 

In that case, Houston we have a problem....  ::)

 

i'm just loading the docker, see what's cooking.

 

ok, something's gone south.

 

the docker itself is just a mirror of the official graylog docker with a couple of tweaks, on first run it builds the main program from a chef recipe.

their latest git pull might have a dependecy i'm missing.

 

That explains why I was having problems I guess  :)

Link to comment

 

an hour might be a bit excessive, lol.

 

on my seperate server it takes about 5 minutes.

 

In that case, Houston we have a problem....  ::)

 

i'm just loading the docker, see what's cooking.

 

ok, something's gone south.

 

the docker itself is just a mirror of the official graylog docker with a couple of tweaks, on first run it builds the main program from a chef recipe.

their latest git pull might have a dependecy i'm missing.

 

I can't wait to get this one running.  I have many a syslog to pump into it.  Thanks for your efforts!

Link to comment

 

an hour might be a bit excessive, lol.

 

on my seperate server it takes about 5 minutes.

 

In that case, Houston we have a problem....  ::)

 

i'm just loading the docker, see what's cooking.

 

ok, something's gone south.

 

the docker itself is just a mirror of the official graylog docker with a couple of tweaks, on first run it builds the main program from a chef recipe.

their latest git pull might have a dependecy i'm missing.

 

I can't wait to get this one running.  I have many a syslog to pump into it.  Thanks for your efforts!

 

it's one of the earliest containers i put on here, and i didn't really do anything other than copy the original from the official graylog image.

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.