即使数据在 Elasticsearch 中,Graylog2 Web 界面也不显示 logs/messages
Graylog2 web interface doesn't show logs/messages even though the data is in Elasticsearch
所以,我已经安装了 Graylog2、Elasticsearch 和 MongoDB。
它们全部 运行 在同一台机器上。问题是日志收集工作正常,我可以通过查询 Elasticsearch 来验证这一点,但 Graylog2 Web 界面不显示任何消息。
这是网络界面日志:
2015-08-26 15:17:29,195 - [DEBUG] - from application in main
Loading timeout value into cache from configuration for key DEFAULT: Not configured, falling back to default.
2015-08-26 15:17:29,519 - [DEBUG] - from application in main
Loading timeout value into cache from configuration for key node_refresh: Not configured, falling back to default.
2015-08-26 15:17:29,727 - [INFO] - from play in main
Application started (Prod)
2015-08-26 15:17:29,754 - [INFO] - from play in main
Listening for HTTP on /0.0.0.0:9000
2015-08-26 15:17:36,936 - [DEBUG] - from application in play-akka.actor.default-dispatcher-2
Loading timeout value into cache from configuration for key sources_all: Not configured, falling back to default.
没什么不寻常的。这是 Graylog2-server 日志:
2015-08-26 15:11:53,639 INFO : org.graylog2.periodical.Periodicals - Starting [org.graylog2.periodical.IndexRetentionThread] periodical in [0s], polling every [300s].
2015-08-26 15:11:53,641 INFO : org.graylog2.initializers.Initializers - Initialized initializer <org.graylog2.initializers.PeriodicalsInitializer>.
2015-08-26 15:11:53,641 INFO : org.graylog2.outputs.OutputRegistry - Initialized output <org.graylog2.outputs.BatchedElasticSearchOutput>.
2015-08-26 15:11:53,669 INFO : org.graylog2.inputs.InputRegistry - Starting [org.graylog2.inputs.syslog.udp.SyslogUDPInput] input with ID <55dd7d6be4b0ef26379cf956>
2015-08-26 15:11:53,689 INFO : org.graylog2.inputs.syslog.udp.SyslogUDPInput - Started syslog UDP input server on /144.76.34.175:514
2015-08-26 15:11:53,692 INFO : org.graylog2.inputs.InputRegistry - Completed starting [org.graylog2.inputs.syslog.udp.SyslogUDPInput] input with ID <55dd7d6be4b0ef26379cf956>
2015-08-26 15:11:55,046 INFO : org.glassfish.jersey.server.ApplicationHandler - Initiating Jersey application, version Jersey: 2.5 2013-12-18 14:27:29...
2015-08-26 15:11:56,033 INFO : org.graylog2.Core - Started REST API at <http://127.0.0.1:12900/>
2015-08-26 15:11:56,034 INFO : org.graylog2.Main - Graylog2 up and running.
2015-08-26 15:17:32,674 INFO : org.apache.shiro.session.mgt.AbstractValidatingSessionManager - Enabling session validation scheduler...
那里也没有什么不寻常的。但它不在前端显示数据。
但是在右侧,它显示的是总事件数。
我在互联网上找不到任何正在讨论的类似问题。
我正在使用 Graylog2 0.20.2 和 Elasticsearch 0.90.7。
其实我才发现,当我从下拉选项select 'All'中显示所有数据时。
看起来这是一个时区问题。所以,安装没有问题。
所以,我已经安装了 Graylog2、Elasticsearch 和 MongoDB。
它们全部 运行 在同一台机器上。问题是日志收集工作正常,我可以通过查询 Elasticsearch 来验证这一点,但 Graylog2 Web 界面不显示任何消息。
这是网络界面日志:
2015-08-26 15:17:29,195 - [DEBUG] - from application in main
Loading timeout value into cache from configuration for key DEFAULT: Not configured, falling back to default.
2015-08-26 15:17:29,519 - [DEBUG] - from application in main
Loading timeout value into cache from configuration for key node_refresh: Not configured, falling back to default.
2015-08-26 15:17:29,727 - [INFO] - from play in main
Application started (Prod)
2015-08-26 15:17:29,754 - [INFO] - from play in main
Listening for HTTP on /0.0.0.0:9000
2015-08-26 15:17:36,936 - [DEBUG] - from application in play-akka.actor.default-dispatcher-2
Loading timeout value into cache from configuration for key sources_all: Not configured, falling back to default.
没什么不寻常的。这是 Graylog2-server 日志:
2015-08-26 15:11:53,639 INFO : org.graylog2.periodical.Periodicals - Starting [org.graylog2.periodical.IndexRetentionThread] periodical in [0s], polling every [300s].
2015-08-26 15:11:53,641 INFO : org.graylog2.initializers.Initializers - Initialized initializer <org.graylog2.initializers.PeriodicalsInitializer>.
2015-08-26 15:11:53,641 INFO : org.graylog2.outputs.OutputRegistry - Initialized output <org.graylog2.outputs.BatchedElasticSearchOutput>.
2015-08-26 15:11:53,669 INFO : org.graylog2.inputs.InputRegistry - Starting [org.graylog2.inputs.syslog.udp.SyslogUDPInput] input with ID <55dd7d6be4b0ef26379cf956>
2015-08-26 15:11:53,689 INFO : org.graylog2.inputs.syslog.udp.SyslogUDPInput - Started syslog UDP input server on /144.76.34.175:514
2015-08-26 15:11:53,692 INFO : org.graylog2.inputs.InputRegistry - Completed starting [org.graylog2.inputs.syslog.udp.SyslogUDPInput] input with ID <55dd7d6be4b0ef26379cf956>
2015-08-26 15:11:55,046 INFO : org.glassfish.jersey.server.ApplicationHandler - Initiating Jersey application, version Jersey: 2.5 2013-12-18 14:27:29...
2015-08-26 15:11:56,033 INFO : org.graylog2.Core - Started REST API at <http://127.0.0.1:12900/>
2015-08-26 15:11:56,034 INFO : org.graylog2.Main - Graylog2 up and running.
2015-08-26 15:17:32,674 INFO : org.apache.shiro.session.mgt.AbstractValidatingSessionManager - Enabling session validation scheduler...
那里也没有什么不寻常的。但它不在前端显示数据。
但是在右侧,它显示的是总事件数。
我在互联网上找不到任何正在讨论的类似问题。
我正在使用 Graylog2 0.20.2 和 Elasticsearch 0.90.7。
其实我才发现,当我从下拉选项select 'All'中显示所有数据时。
看起来这是一个时区问题。所以,安装没有问题。