's blogGraylog搭建
Contents
克隆项目
https://github.com/Graylog2/docker-compose
配置文件
cd open-core
cp .env.example .env
修改.env
#.env
GRAYLOG_PASSWORD_SECRET="你的16位密码"
# 密钥= echo -n 你的16位密码 | shasum -a 256
GRAYLOG_ROOT_PASSWORD_SHA2="密钥"
修改docker-compose.yml
# graylog.environment - 位置
GRAYLOG_HTTP_EXTERNAL_URI: "https://你的域名.com/graylog"
启动
docker-compose up -d
配置域名
sudo vi /etc/hosts
x.x.x.x graylog
配置nginx
location /graylog/ {
proxy_pass http://graylog:9000/;
proxy_redirect off;
proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr;
proxy_connect_timeout 2s;
proxy_read_timeout 90s;
proxy_send_timeout 90s;
}
location /graylog1/ {
proxy_pass http://graylog:12201/;
proxy_redirect off;
proxy_http_version 1.1;
proxy_set_header Connection "";
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr;
proxy_connect_timeout 2s;
proxy_read_timeout 90s;
proxy_send_timeout 90s;
}
访问
账号admin
启动http input
system.input.GELF HTTP
测试
curl --location --request POST 'https://你的域名/graylog1/gelf' \
--header 'Content-Type: application/json' \
--data-raw '{"short_message":"111", "host":"172.3.3.3", "facility":"test", "_foo":"bar"}'