Fast launch your own graylog instance via docker
Graylog is a centralized logging solution that allows the user to collect and search through logs. It provides a powerful query language, a processing pipeline for data transformation, alerting abilities and much more. It is fully extensible through a REST API.
Using this repo you can launch your own instance graylog server in docker. Instance consist of:
- Graylog v5.0 container;
- Mongodb v6.0 container;
- ElasticSearch v7.10.2 container;
-
Clone the repository
git clone git@github.com:malinkinsa/Graylog.git && cd Graylog/ -
Make
seput.shexecutablesudo chmod +x setup.sh -
To configure, run setup.sh from the root or with sudo and follow it To configure, run setup.sh from the root or with sudo and follow it
sudo ./setup.sh -
Launch containers
docker-compose up -d -
Open in browser
http://$server_ip:9000 -
If you want to save Inputs config after container re creation or update:
-
Copy node-id from inside container to current folder
docker cp graylog:/usr/share/graylog/data/config/node-id . -
Uncomment next string in
docker-compose.yml#- ./node-id:/usr/share/graylog/data/config/node-id -
Restart Graylog container
docker-compose up -d graylog
-
- Add Nginx as a Reverse-Proxy;
- Backup Mongodb;
- Mongodb in replicaset; Will be when switching to graylog v5
- ES cluster with x-pack;