Graylog Problem

Graylog Central (peer support)
1

Hello sir , I need help. I am installing graylog server but i can not send log form mikrotik router.

Graylog-Mikrotik Syslog UDP

RUNNING

On node 5aca6e0f / kalukhalicablenetwork

  • allow_override_date:

true

  • bind_address:

0.0.0.0

  • expand_structured_data:

false

  • force_rdns:

false

  • number_worker_threads:

4

  • override_source:

  • port:

1514

  • recv_buffer_size:

262144

  • store_full_message:

true

2…

Throughput / Metrics

1 minute average rate: 6,210 msg/s
Network IO: 2.0MiB 0B (total: 772.7MiB 0B )
Empty messages discarded: 0

2

Hello && Welcome @EKPARVEZ

To be honest , this issue could be a couple different things.

I’m not familiar with MikroTik RouterOS. So send logs to Graylog not sure. Or are your referring to that you cannot see the logs on Graylog from MikroTik RouterOS?

If so, try using tcpdump on graylog. This should show if the logs are at least reaching Graylog server from MikroTik.

EDIT:

I just noticed this, So Im going to assume you unable to see the logs on the Web UI. Check the Date/Time on Graylog, ensure the timezone is correct.

Next, Ensure Elasticsearch is running and there are no issues you can also look into the log files for Graylog & Elasticsearch to find any clue on what’s going on. Posting you findings would help.

3

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.