Hi Guys I’ve deployed Graylog to use for a syslog solution. Currently using Sidecar to do the collections of winlogs only. Been running a week and started loading some more hosts … Then Pooooooof, graylog fell over. Initially I was clueless as to whats going on. After a bit of digging, I found …

Beats Input - bytes can be at most 32766 in length

jochen (Jochen) March 6, 2017, 8:37am 8

You can use the substring() function for this, although restricting the size of fields in the client sending the log messages would be preferable.

1 Like