Hello,
graylog was working without any problems, but i noticed today that graylog server goes down today,when i started the server it works, but i am not able to search in current logs,i noticed that current index is empty, so i rotate active write index,but this step did not solve the problem.
why graylog is not logging incoming inputs,is it related to the below errors that i saw in serverlog and elasticsearch?how to solve it?
elasticsearch logs:
(hostname/archives/DC968BYE5/p1589190801019600)
itly quoted strings if you need finer-grained control]
[2020-05-11T09:13:51,214][WARN ][o.e.d.c.ParseField ] [uZNgJho] Deprecated field [split_on_whitespace] used, replaced by [This setting is ignored, the parser always splits on operator]
[2020-05-11T09:13:51,214][WARN ][o.e.d.c.ParseField ] [uZNgJho] Deprecated field [disable_coord] used, replaced by [disable_coord has been removed]
[2020-05-11T09:13:51,214][WARN ][o.e.d.c.ParseField ] [uZNgJho] Deprecated field [disable_coord] used, replaced by [disable_coord has been removed]
serverlog:
.
.
.
2020-05-11T09:50:07.236Z ERROR [AuditLogger] Unable to write audit log entry because there is no valid license.
2020-05-11T09:50:13.621Z ERROR [AbstractTcpTransport] Error in Input [GELF TCP/5d91e6eabc5748052644876b] (channel [id: 0x0630d66e, L:/172.31.72.174:12201 ! R:/52.55.119.180:51294]) (cause io.netty.handler.codec.TooLongFrameException: frame length exceeds 2097152: 2152584 - discarded)
2020-05-11T09:51:58.277Z ERROR [AbstractTcpTransport] Error in Input [GELF TCP/5d91e6eabc5748052644876b] (channel [id: 0x761d2f89, L:/172.31.72.174:12201 ! R:/52.55.119.180:60194]) (cause io.netty.handler.codec.TooLongFrameException: frame length exceeds 2097152: 2098136 - discarded)
2020-05-11T09:52:46.313Z ERROR [AbstractTcpTransport] Error in Input [GELF TCP/5d91e6eabc5748052644876b] (channel [id: 0xbcd68c66, L:/172.31.72.174:12201 ! R:/52.55.119.180:36390]) (cause io.netty.handler.codec.TooLongFrameException: frame length exceeds 2097152: 2143896 - discarded)
