mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
librenms-librenms/doc/Extensions/Graylog.md
Neil Lathwood f36a954976 Revert "docs: updated info for graylog" (#7578) 
* Revert "Revert "feature: Allow snmpget in os discovery yaml (#7558)" (#7576)"

This reverts commit 426916dbe47d31a38e042aad98915eb618c04760.

* Revert "fix: lldp find_port_id finds not the most correct port (#7564)"

This reverts commit 7e05fff615bb765262f2abde36219ea691ee7f99.

* Revert "fix: Update RFC1123 Hostname Check (#7572)"

This reverts commit ebcfa45a933991f35ece3a643a552e161a1825bf.

* Revert "docs: updated info for graylog (#7538)"

This reverts commit 6fab5166c52306a8da306a36e44b0b68592cdb2a.
2017-10-29 20:10:49 +00:00

2.0 KiB
Raw Blame History

source: Extensions/Graylog.md

Graylog integration

We have simple integration for Graylog, you will be able to view any logs from within LibreNMS that have been parsed by the syslog input from within Graylog itself. This includes logs from devices which aren't in LibreNMS still, you can also see logs for a specific device under the logs section for the device.

Currently, LibreNMS does not associate shortnames from Graylog with full FQDNS. If you have your devices in LibreNMS using full FQDNs, such as hostname.example.com, be aware that rsyslogd, by default, sends the shortname only. To fix this, add

$PreserveFQDN on

to your rsyslog config to send the full FQDN so device logs will be associated correctly in LibreNMS

Graylog itself isn't included within LibreNMS, you will need to install this separately either on the same infrastructure as LibreNMS or as a totally standalone appliance.

Config is simple, here's an example:

$config['graylog']['server']   = 'http://127.0.0.1';
$config['graylog']['port']     = 12900;
$config['graylog']['username'] = 'admin';
$config['graylog']['password'] = 'admin';
$config['graylog']['version']  = '2.1';

Since Graylog 2.1, the default API path is /api/

If you are running a version earlier than Graylog then please set $config['graylog']['version'] to the version number of your Graylog install.

If you have altered the default uri for your Graylog setup then you can override the default of /api/ using $config['graylog']['base_uri'] = '/somepath/';

If you choose to use another user besides the admin user, please note that currently you must give the user "admin" permissions from within Graylog, "read" permissions alone are not sufficient.

If you have enabled TLS for the Graylog API and you are using a self-signed certificate, please make sure that the certificate is trusted by your LibreNMS host, otherwise the connection will fail. Additionally, the certificate's Common Name (CN) has to match the FQDN or IP address specified in $config['graylog']['server'].