Where graylog store rhe Recived logs-files

Immanuel · October 18, 2020, 9:50pm

Hello,
I use graylog under the debian Linux system and everything is perfect. But the question is where store received files from Windows (event logs files) . Because I want to change the storage path to a private disk or local disk as Archive.
Thanks

bahram · October 19, 2020, 7:12am

Hi, Immanuel

All log messages ingested by Graylog are indexed in Elasticsearch.

Immanuel · October 19, 2020, 8:27am

Hi bahram,
You mean in path…??
/var/lib/elasticsearch
/var/log/elasticsearch

But i Need exactly where save it??
And change storage path under Linux System??
Thanks

bahram · October 19, 2020, 8:40am

curl -XGET http://127.0.0.1:9200
/var/lib/elasticsearch/nodes/0/indices

Immanuel · October 19, 2020, 10:31am

Thanks you so much
I found it.

And I try to change path in another Media like disk.

Best regards

system · November 2, 2020, 10:31am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Changing the Graylog data locations Graylog Central (peer support)	2	1005	September 30, 2021
How to store the input logs in another path Graylog Central (peer support)	7	8678	June 21, 2018
Where are Graylog logs stored in a VM? Graylog Central (peer support)	4	489	July 7, 2022
Graylog Messages Graylog Central (peer support)	4	357	December 10, 2018
The location of syslog logs? Graylog Central (peer support)	3	1575	January 30, 2019

Where graylog store rhe Recived logs-files

Related topics