I am new to graylog so I hope my questions are ok to ask.
I installed graylog on a vm server (ubuntu 16.04 lts server) and I am able to login to the graylog web GUI when locally on the same network, like with “http://192.168.1.211:9000”. When reading the manual it seams like using the public IP for graylog web GUI is not good practice, since it is less secure, exposed to internet. Is that the concern?
So then I tried to tunnel in externally (public IP) vis ssh on that port instead, yet that didn’t work either.
ssh firstname.lastname@example.org -L7000:127.0.0.1:9000 or ssh email@example.com -L7000:192.168.1.211:9000
Then use this in browser to access graylog:
Yet this gives the following error:
Server currently unavailable
We are experiencing problems connecting to the Graylog server running on http:192.168.1.2111:9000/api/. Please verify that the server is healthy and working correctly.
So, I guess my questions is what is the best practice if I want to access the graylog web GUI remotely.
Our servers are hosted (colocation) and I need to be able to access the graylog GUI from another company location (over internet), no vpn available. So I can’t be on the same network (local network) to access Graylog web GUI. What are my options here?