Before you post: Your responses to these questions will help the community help you. Please complete this template if you’re asking a support question.
Don’t forget to select tags to help index your topic!
1. Describe your incident:
first of all 1. graylog show me pkts:0 bytes:0
-
also, i have in overview panel data from 28 jul to 31 jule, bot search export csv give me only 31 jul since 11:20 to now( i choose to all time in search)
-
This is my event system : Cath up WIndows- : 56 hours
also i change default settings(shards,index) becouse disk consumption is 80GB on the 2 days, its very very bad
2. Describe your environment:
-
OS Information: Linux Debian 20.04 Vmware
-
Package Version: graylog 5.0
-
Service logs, configurations, and environment variables:
3. What steps have you already taken to try and solve the problem?
I return setting to default yml files and gui graylog
4. How can the community help?
Sorry, I’ll ask everything at once
I would like to change the settings so that 400GB is enough for me for a month, and I would also like to see the number of bytes in packets. Some things do show a lot of bytes, but not everywhere. I would also like to create a regular expression for a couple dozen IP addresses and ports and immediately request a report on this data. It is also desirable to see live which host consumes the most network traffic
Helpful Posting Tips: Tips for Posting Questions that Get Answers [Hold down CTRL and link on link to open tips documents in a separate tab]