Good morning. I have recently installed the < 5Gb per day enterprise license, and I keep running into a problems. Currently I have a red banner at the top of the window that states “Graylog Enterprise License Violation” and when I go to the licensing page, the messages I see are “Daily traffic limit 5.0Gb” and “Remote checks have failed too many times”.
My heaviest day since setting up the appliance has been 1.7Gb, so I am no where near the 5.0Gb daily limit. The other issue about remote checks seems to be the problem. I have had a little bit of back and forth with a graylog employee that emailed me when I requested my enterprise license, and I was told that I need to be able to connect to api[.]graylog[.]com in order for the license checks to work correctly. Initially the appliance was having issues hitting that URL, but I got it resolved after adding DNS servers to the interfaces config file. This appeared to fix the problem because the red banner went away.
Yesterday, I come in to the office and the banner message is back. The weird thing now is that I can’t ping the api[.]graylog[.]com URL from anywhere. Not from the appliance, not from any other workstations on the corporate network, and not even from my home computer, which is on a completely separate network.
api[.]graylog[.]com resolves to “api[.]graylog[.]com[.]herokudns[.]com” and a small list of IP addresses. Trace routes to api[.]graylog[.]com and to a few of the IP address (220.127.116.11, 18.104.22.168) both show the traffic leaving my network, but then just a whole bunch of timeouts and no response.
Is anyone else seeing or dealing with similar issues? Has anyone seen this before? Does anyone have a magic bullet for me? Thank you.