- 在centos上安装mongodb社区版
- 在centos 7上安装graylog
- Elasticsearch安装指南
- Itop角色描述汉化
- Run and runonce registry keys
- User request life cycle
- Incident life cycle
- Itop重新安装
- Itop自定义用户角色
- Itop定制开发
- Itop删减事件管理流程节点
- Itop消息内容和占位符
- 从零开始搭建ansible运维服务器
- Itop插件之邮件转工单
- Eve Ng相关资源
- Install docker engine on centos
- Python装饰器
- 发送zabbix聚合图形邮件报告的python脚本
- Owncloud配置外部存储及部署collabora服务器
- 发送zabbix聚合图形邮件报告的python脚本v2
- 准备windows主机以ansible远程管理
- Ansible roles远程安装配置windows的zabbix agent
- 发送zabbix数据概览邮件报告
- Jenkins pipeline自动化部署代码
- Graylog相关的几篇文章
- Bash shell输出json格式
- Windows日志稽核
- Graylog告警事件定义
- 使用graylog收集ad审核日志
- 机房环境监控系统web截图
在CentOS 7上安装Graylog
https://docs.graylog.org/en/3.1/pages/installation/os/centos.html
准备安装环境
在安装Graylog服务之前,请确保安装和配置以下软件:
- Java ( >= 8 )
- Elasticsearch (5.x or 6.x)
- MongoDB (3.6 or 4.0)
警告
- Graylog 3不适用于Elasticsearch 7.x
- Graylog 3不适用于MongoDB 4.2
安装java jdk
$ sudo yum install java-1.8.0-openjdk-headless.x86_64
安装pwgen(密码生成器)
$ sudo yum install epel-releasesudo | yum install pwgen
安装MongoDB社区版
添加/etc/yum.repos.d/mongodb-org.repo
[mongodb-org-4.0]
name=MongoDB Repository
baseurl=https://repo.mongodb.org/yum/redhat/$releasever/mongodb-org/4.0/x86_64/
gpgcheck=1
enabled=1
gpgkey=https://www.mongodb.org/static/pgp/server-4.0.asc
安装mogodb
sudo yum install mongodb-org
设置启动
sudo systemctl daemon-reload
sudo systemctl enable mongod.service
sudo systemctl start mongod.service
安装Elasticsearch
安装Elastic GPG key
rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch
添加/etc/yum.repos.d/elasticsearch.repo
[mongodb-org-4.0]
name=MongoDB Repository
baseurl=https://repo.mongodb.org/yum/redhat/$releasever/mongodb-org/4.0/x86_64/
gpgcheck=1
enabled=1
gpgkey=https://www.mongodb.org/static/pgp/server-4.0.asc
安装Elasticsearch
sudo yum install elasticsearch-oss
修改Elasticsearch配置文件/etc/elasticsearch/elasticsearch.yml
cluster.name: graylog
action.auto_create_index: false
启动Ealsticsearch
$ sudo systemctl daemon-reload
$ sudo systemctl enable elasticsearch.service
$ sudo systemctl restart elasticsearch.service
安装Graylog
安装Graylog存储库配置和Graylog
$ sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-3.1-repository_latest.rpm
$ sudo yum install graylog-server
安装插件
sudo yum install graylog-server graylog-enterprise-plugins graylog-integrations-plugins graylog-enterprise-integrations-plugins
按照/etc/graylog/server/server.conf中的说明进行操作,并添加password_secret和root_password_sha2
创建您的root_password_sha2
echo -n "Enter Password: " && head -1 </dev/stdin | tr -d '\n' | sha256sum | cut -d" " -f1
设置启动
$ sudo systemctl daemon-reload
$ sudo systemctl enable graylog-server.service
$ sudo systemctl start graylog-server.service