Before you post: Your responses to these questions will help the community help you. Please complete this template if you’re asking a support question.
Don’t forget to select tags to help index your topic!
1. Describe your incident:
Graylog running in docker stalls after configuring and provisioning certificate:
## Configuration successful
The Graylog server is currently starting. Depending on your setup it may take a few minutes. This page will automatically refresh once the Graylog server is reachable. You can always refresh manually, please be aware that this page will not be visible afterwards.
Waiting for Graylog server ...
Eventually Docker crashes.
Server never gets up and running.
Always stalls at the same spot with every attempt.
2. Describe your environment:
-
OS Information: Windows Server 2022 (Docker Desktop: 4.37.1 / WSL version: 2.3.26.0)
-
Package Version: graylog-enterprise:6.1
-
Service logs, configurations, and environment variables:
(Configuration pulled directly from: Docker Installation):
services:
mongodb:
image: "mongo:6.0.18"
ports:
- "27017:27017"
restart: "on-failure"
networks:
- graylog
volumes:
- "mongodb_data:/data/db"
- "mongodb_config:/data/configdb"
datanode:
image: "graylog/graylog-datanode:6.1"
hostname: "datanode"
environment:
GRAYLOG_DATANODE_NODE_ID_FILE: "/var/lib/graylog-datanode/node-id"
GRAYLOG_DATANODE_PASSWORD_SECRET: "${GRAYLOG_PASSWORD_SECRET:?Please configure GRAYLOG_PASSWORD_SECRET in the .env file}"
GRAYLOG_DATANODE_ROOT_PASSWORD_SHA2: "${GRAYLOG_ROOT_PASSWORD_SHA2:?Please configure GRAYLOG_ROOT_PASSWORD_SHA2 in the .env file}"
GRAYLOG_DATANODE_MONGODB_URI: "mongodb://mongodb:27017/graylog"
ulimits:
memlock:
hard: -1
soft: -1
nofile:
soft: 65536
hard: 65536
ports:
- "8999:8999/tcp" # DataNode API
- "9200:9200/tcp"
- "9300:9300/tcp"
networks:
- graylog
volumes:
- "graylog-datanode:/var/lib/graylog-datanode"
restart: "on-failure"
graylog:
hostname: "server"
image: "graylog/graylog-enterprise:6.1"
depends_on:
mongodb:
condition: "service_started"
datanode:
condition: "service_started"
entrypoint: "/usr/bin/tini -- /docker-entrypoint.sh"
environment:
GRAYLOG_NODE_ID_FILE: "/usr/share/graylog/data/config/node-id"
GRAYLOG_HTTP_BIND_ADDRESS: "0.0.0.0:9000"
GRAYLOG_MONGODB_URI: "mongodb://mongodb:27017/graylog"
GRAYLOG_REPORT_DISABLE_SANDBOX: "true"
GRAYLOG_PASSWORD_SECRET: "${GRAYLOG_PASSWORD_SECRET:?Please configure GRAYLOG_PASSWORD_SECRET in the .env file}"
GRAYLOG_ROOT_PASSWORD_SHA2: "${GRAYLOG_ROOT_PASSWORD_SHA2:?Please configure GRAYLOG_ROOT_PASSWORD_SHA2 in the .env file}"
GRAYLOG_HTTP_EXTERNAL_URI: "http://<redact>:9000/"
ports:
# Graylog web interface and REST API
- "9000:9000/tcp"
# Beats
- "5044:5044/tcp"
# Syslog TCP
- "5140:5140/tcp"
# Syslog UDP
- "5140:5140/udp"
# GELF TCP
- "12201:12201/tcp"
# GELF UDP
- "12201:12201/udp"
# Forwarder data
- "13301:13301/tcp"
# Forwarder config
- "13302:13302/tcp"
restart: "on-failure"
networks:
- graylog
volumes:
- "graylog_data:/usr/share/graylog/data"
networks:
graylog:
driver: "bridge"
volumes:
mongodb_data:
mongodb_config:
graylog-datanode:
graylog_data:
Env file contains required variables:
GRAYLOG_PASSWORD_SECRET="<redact>"
GRAYLOG_ROOT_PASSWORD_SHA2="<redact>"
3. What steps have you already taken to try and solve the problem?
- Attempted an engine restart at this point
- Used several different versions of graylog / datanote / mongodb
- Used several different configuration files found on the community page / online
- Uninstalled and reinstalled docker
- Completely wiped all docker containers/images/volumes (multiple times)
4. How can the community help?
Log file uploaded here: https://hastebin.com/share/icadoriyux.swift
Point me in the right direction of how to get this docker installation up and running.