Hi Guys I’ve deployed Graylog to use for a syslog solution. Currently using Sidecar to do the collections of winlogs only. Been running a week and started loading some more hosts … Then Pooooooof, graylog fell over. Initially I was clueless as to whats going on. After a bit of digging, I found …

Beats Input - bytes can be at most 32766 in length

jochen (Jochen) March 6, 2017, 8:37am 8

You can use the substring() function for this, although restricting the size of fields in the client sending the log messages would be preferable.

1 Like

Topic		Replies	Views
Warning Immense term in field in graylog serverlog Graylog Central (peer support) pipeline-rules , sidecar , winlogbeat	8	5842	July 31, 2019
Maxmium message size in graylog Graylog Central (peer support)	6	11953	December 31, 2020
Identify source and reason of bad messages Graylog Central (peer support)	9	3386	February 23, 2017
Increase the maximum size of log messages Graylog Central (peer support)	25	13043	March 9, 2018
Where the length limitation comes from or is set up? Graylog Central (peer support)	1	1668	February 22, 2017