I am in the process of setting up a test graylog cluster in AWS and have a few questions. When logged in via the web interface, I go to system -> nodes -> and select a node, I get an error. When I hover over the link, the url is https://server.public.domain.tld/system/nodes/ccc1d248-7d52-46a9-b7f5-5af04c70edeb. When I click on it, I see a 500 error and get a page showing “Error Getting Data.” The link shown in the error is “Could not get plugins” Get https://server.public.domain.tld:443/system/nodes/ccc1d248-7d52-46a9-b7f5-5af04c70edeb.
The current setup has three Graylog nodes, which are working okay. They can see ES and I can access the API to do a status check. There is an application load balancer setup to allow access via a locked down public IP which forwards to port 9000(https://server.public.domain.tld => instance55443:9000.
At this point, I can access the web interface, login just fine, and hit browse; Search, Streams, Alerts etc. I can browse to https://server.public.domain.tld/api/api-browser/ and see content. I’m not exactly sure what part I have wrong.
Internal IPs == 10.200.24.(51,52,53)
What I have configured for the pertinent web and rest settings is below:
rest_listen_uri = http://serverx.internal.domain.tld:9000/api/
rest_transport_uri = https://server.public.domain.tld/api/
web_listen_uri = http://serverx.internal.domain.tld:9000/
#web_endpoint_uri = $rest_transport_uri
Any help would be appreciated.