July 17, 20205 yr Hello All I have a small issue I hope someone can help with. On my Unraid device I have Graylog setup as an syslog server receiving data from numerous devices. Graylog then passes this to Elasticsearch which is also where the data is stored. The issue is I don't want the Elasticsearch docker filling up with logs. My QNAP can also function as a syslog server so I would like to be able to have Graylog read the received log files on the QNAP which are stored in folders. Is it possible to achieve this or any other solutions?
July 18, 20205 yr Why you need two layer ( Graylog and Elasticsearch ) instead either one for collect/browse syslog ? For my understanding, both have collect/browse syslog function. 5 hours ago, Mr_Jay84 said: received log files on the QNAP which are stored in folders. You can use UD plugin to mount QNAP's folder, or QNAP use HybridMount to mount Unraid's folder if need. BTW, not really know your need and the reason setup in this way, I just simple collect & filter syslog in QNAP to a plain text file for my need.
July 18, 20205 yr Author Graylog requires Elasticsearch to store the logs, it doesn't do this itself. As I have logs coming in from about 10 devices the QNAP way of browsing is very slow and unintuitive. It would be much simpler if Graylog could just read a mounted folder as you say. I don't know a way of doing this. The viewer doesn't have to be Graylog, I'm open to anything that will provide a similar function. Elasticsearch will end up just filling up with data unless there's a way of getting it to dump it's stored files on the QNAP every so often.
July 18, 20205 yr 5 hours ago, Mr_Jay84 said: Graylog requires Elasticsearch to store the logs, it doesn't do this itself. OK 5 hours ago, Mr_Jay84 said: As I have logs coming in from about 10 devices the QNAP way of browsing is very slow and unintuitive. That's why I never browse syslog in QNAP, I use its build-in filter function, all log filter out the importance message to a file, then just open it by any text reader. Edited July 18, 20205 yr by Benson
July 18, 20205 yr Author 10 hours ago, Benson said: OK That's why I never browse syslog in QNAP, I use its build-in filter function, all log filter out the importance message to a file, then just open it by any text reader. I was doing this for years however Graylog is a much better tool to searching through the logs.
Archived
This topic is now archived and is closed to further replies.