Graylog2 on AWS

S7ARLORD · September 25, 2017, 4:59pm

I have installed graylog2 server on and aws EC2 instance and whole configuring the graylog server configuration file I don’t understand what ip to give so that it will be show on the Web api I used public ip of the instance and the private ip of the instance but the web api is not loading… Also configured the the mongodb and elasticsearch

krossdata · September 26, 2017, 8:37am

Dont know if this is the way to solve it, but I had the same issue on my cloud solution.
Since the public ip is not shown in “ipconfig”.

rest_listen_uri = http://0.0.0.0:9000/api/
web_listen_uri = http://0.0.0.0:9000/

And add:

rest_transport_uri = http://<your-public-ip>:9000/api/

add your public IP here

That did the trick for me.
/etc/graylog/server/server.conf

M

Shane · September 27, 2017, 12:57am

Also, you state you configured mongodb and elasticsearch, how exactly did you configure those?

S7ARLORD · September 27, 2017, 3:54pm

i configured elasticsearch parameter cluster-name: graylog and didnt do anything to mongodb

S7ARLORD · September 27, 2017, 3:59pm

how can access the web api and what ip to put it in the url i have been running the instance on the Terminal

Shane · September 27, 2017, 5:07pm

As @krossdata suggested, your configuration should be something similar:

rest_listen_uri = http://0.0.0.0:9000/api/
web_listen_uri = http://0.0.0.0:9000/
rest_transport_uri = http://<your-public-ip>:9000/api/

The 0.0.0.0 ip address means it will create a listener on all IPv4 addresses on that machine. If you want Graylog only to listen on a specific IP address you could do something like the following if your ip address for graylog was 192.168.1.10:

rest_listen_uri = http://192.168.1.10:9000/api/
web_listen_uri = http://192.168.1.10:9000/
rest_transport_uri = http://192.168.1.10:9000/api/

You should also have a configuration in your graylog server.conf file that has an entry as such below:

elasticsearch_hosts = http://127.0.0.1:9200

The elasticsearch_hosts configuration should only be listening to 127.0.0.1 if your elasticsearch instance is on the same server as your graylog instance.

If your elasticsearch instance is not on the same server, then you need to adjust the elasticsearch_hosts file in the graylog server.conf file as well as the network_host parameter in your elasticsearch.yml file.

system · October 11, 2017, 5:07pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
New installation; howto use local and public IP addresses in config files Graylog Central (peer support) sidecar	29	3317	October 20, 2020
Graylog web interface not loading Graylog Central (peer support)	4	1343	December 3, 2020
Graylog Server with a new IP Graylog Central (peer support)	7	1133	December 17, 2019
Cannot access graylog by web Graylog Central (peer support)	14	2499	March 8, 2018
Unable to Access Web Interface on Cloud Virtual Machines Graylog Central (peer support)	1	963	May 3, 2017

Graylog2 on AWS

Related topics