Graylog OVA .conf file

FredSeidel · June 14, 2017, 3:24pm

Hey,

quick Question regarding the Graylog OVA.

I’ve set up the VM and configured most of the things via the graylog-ctl.
Now if i go to “/opt/graylog/server/” there is a “graylog.conf.example” file. Can i edit this file to change settings on the graylog server? For example: if i change “allow_leading_wildcard_searches” from false to true, will it take immediate effect?

Thanks,
Fred

jochen · June 14, 2017, 4:12pm

No. The OVA and the Omnibus distribution of Graylog are supposed to be configured exclusively through the graylog-ctl utility.

If you need more flexibility (also take a look at http://docs.graylog.org/en/2.2/pages/configuration/graylog_ctl.html#advanced-settings), you’ll have to install Graylog by other means such as the official DEB or RPM packages.

FredSeidel · June 15, 2017, 7:22am

Thanks for the infos!
So if I want to allow wildcard searches, i’d have to set up a new Graylog Server without the OVA?
Or is there a way to activate this in the OVA (there was no ctl-command as far as I could see)?

I want to test out this content pack: https://marketplace.graylog.org/addons/750b88ea-67f7-47b1-9a6c-cbbc828d9e25 and it requires leading Wildcard searches to be enabled…

jochen · June 15, 2017, 10:28am

No, you can activate this in the advanced settings:

github.com

Graylog2/omnibus-graylog2/blob/2.2/files/graylog-cookbooks/graylog/attributes/default.rb#L71


      
          default['graylog']['graylog-server']['plugin_dir'] = "/opt/graylog/plugin"
          default['graylog']['graylog-server']['content_packs_loader_enabled'] = true
          default['graylog']['graylog-server']['content_packs_dir'] = "/opt/graylog/contentpacks"
          default['graylog']['graylog-server']['content_packs_auto_load'] = "grok-patterns.json,content_pack_appliance.json"
          default['graylog']['graylog-server']['rest_listen_uri'] = "http://0.0.0.0:9000/api"
          default['graylog']['graylog-server']['web_listen_uri'] = "http://0.0.0.0:9000/"
          default['graylog']['graylog-server']['retention_strategy'] = "delete"
          default['graylog']['graylog-server']['elasticsearch_shards'] = 4
          default['graylog']['graylog-server']['elasticsearch_replicas'] = 1
          default['graylog']['graylog-server']['elasticsearch_index_prefix'] = "graylog"
          default['graylog']['graylog-server']['allow_leading_wildcard_searches'] = true
          default['graylog']['graylog-server']['allow_highlighting'] = false
          default['graylog']['graylog-server']['elasticsearch_cluster_name'] = "graylog"
          default['graylog']['graylog-server']['elasticsearch_network_host'] = "0.0.0.0"
          default['graylog']['graylog-server']['elasticsearch_http_enabled'] = false
          default['graylog']['graylog-server']['elasticsearch_cluster_discovery_timeout'] = 5000
          default['graylog']['graylog-server']['elasticsearch_discovery_initial_state_timeout'] = "3s"
          default['graylog']['graylog-server']['elasticsearch_analyzer'] = "standard"
          default['graylog']['graylog-server']['output_batch_size'] = 500
          default['graylog']['graylog-server']['output_flush_interval'] = 1
          default['graylog']['graylog-server']['output_fault_count_threshold'] = 5

system · June 29, 2017, 10:28am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Graylog 2.5 i can't goto edit Graylog Central (peer support)	4	348	August 7, 2020
Graylog-Ctl Scripts Missing Graylog Central (peer support)	5	2719	August 24, 2018
Graylog-ctl is missing on RHEL 7 install Graylog Central (peer support)	5	2294	March 4, 2019
I can replace the default background or Logo in graylog 3.2.4? Graylog Central (peer support)	2	712	June 1, 2020
Upgrading Graylog OVA from 2.2.0 to 2.2.3 Graylog Central (peer support)	6	1091	June 8, 2017

Graylog OVA .conf file

Related Topics