I am using an older Graylog that has been running for awhile. We had a problem with rsyslog that I recently fix, but I had a ton of logs that were future dated. I decided to use a simple curl command to remove a large chunk of them:
This worked really well and the ElasticSearch server is much happier… BUT, I seem to have broken the Home page for Graylog. I now receive an error on the page that says: Sorry, but something went wrong.
This seem to be isolated the the messages/home page as all of my streams continue to work as we continue to ingest new logs.
Does anyone remember on this older revision on how something like this can be fixed?
Ok, I did find some information online about doing such a thing. I even found a URL with a rebuild command. But I don’t think I could find anywhere to make that work. Is that a feature supported on 0.9.6? What would be your advice on how to carry out that particular function? Perhaps I was doing wrong.
FWIW, Graylog 0.9.6 didn’t have the concept of index ranges yet, so I’m not sure what you’re trying to achieve. You can try searching the logs of your Graylog node for hints about your issue.
As @jan already said, Graylog 0.9.6 is ancient (it’s 6 years old) and not supported in any way.
Please do yourself a favor and upgrade (or rather rebuild) your Graylog cluster to a more recent version. I heard Graylog 1.0.0 was very good.
