Graylog3.3 Docker HTTPS fail to start Syslog UDP Inputs

Graylog Central (peer support)
1

I am new hand of Graylog. However, I added self-sign cert to Graylog but I cannot start the Syslog UDP Input.

I discover that there are Java keystore needed to create as already been following the steps in the link below:

https://docs.graylog.org/en/2.3/pages/configuration/https.html?highlight=https

Here are my docker-compose:

 graylog01:
    image: graylog/graylog:3.3
    volumes:
      - /data/docker/graylog01/data/certs/server.crt:/certs/cert.crt
      - /data/docker/graylog01/data/certs/server.key:/certs/key.key
      - graylog_data:/usr/share/graylog/data
    environment:
	  ............
      - GRAYLOG_HTTP_ENABLE_TLS=true
      - GRAYLOG_HTTP_TLS_CERT_FILE=/certs/cert.crt
      - GRAYLOG_HTTP_TLS_KEY_FILE=/certs/key.key
      - "GRAYLOG_SERVER_JAVA_OPTS=-Xms1g -Xmx1g -XX:NewRatio=1 -server -XX:+ResizeTLAB -XX:+UseConcMarkSweepGC -XX:+CMSConcurrentMTEnabled -XX:+CMSClassUnloadingEnabled -XX:+UseParNewGC -XX:-OmitStackTraceInFastThrow -Djavax.net.ssl.trustStore=/usr/share/graylog/data/cacerts.jks"
      - "JAVA_OPTS=-Xms1g -Xmx1g -XX:NewRatio=1 -server -XX:+ResizeTLAB -XX:+UseConcMarkSweepGC -XX:+CMSConcurrentMTEnabled -XX:+CMSClassUnloadingEnabled -XX:+UseParNewGC -XX:-OmitStackTraceInFastThrow -Djavax.net.ssl.trustStore=/usr/share/graylog/data/cacerts.jks"
    links:
      - mongodb:mongo
      - elasticsearch
    depends_on:
      - mongodb
      - elasticsearch

All thing is ready and the container run fine but the Syslog UDP still cannot be started with error. So, any other point I miss in order to run graylog in https method.

2

@rnatt: If you share errors you are getting then we can check and assist you further on it. Please also take look at below updated version of the docker installation document and HTTPS configuration.

https://docs.graylog.org/en/3.3/pages/installation/docker.html

https://docs.graylog.org/en/3.3/pages/configuration/https.html

Hope this will helps you! :slight_smile:

3

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.