MelonBytes
Posts with Tag: graylog
Posted on 2025-09-23 11:56
ANOTHER graylog issue 😀 yeah In the UI you could see the graylog node appearing, and disappearing again. It also showed the message “no leader”. BUT, looking at opensearch, you can see the data still comming in. So what happened? Basically, graylog changed some stuff without telling us, so now i...
Posted on 2025-09-23 11:17
How The easiest way to migrate a graylog instance, is to build a new one and migrate elasticsearch data by combining the two elasticsearch nodes to a cluster and replicating all data. Which issues will I have? Hopefully none But realistically, you will have to reinstall content-packs or at le...
Posted on 2025-09-22 18:57
If you monitor your graylog server already and use a single node instance, there is no real need for a watermark on your open/elasticsearch server. Here you go: curl -X PUT "localhost:9200/_cluster/settings" -H 'Content-Type: application/json' -d' { "transient": { "cluster.routing.allocatio...
Posted on 2025-09-22 18:56
You might want to move from elasticsearch to opensearch due to the changes of graylog 5. I was at the same position. We currently deploy mostly single-node standalone environments. This procedure is suited for those environments. 1. Step – Update Mongodb We are upgrading from 4.2 to 6.0. This ca...
Posted on 2025-09-18 7:14
Sometimes you’ll get a indexing error, because the field type couldn’t be matched. This will look something like this: ElasticsearchException[Elasticsearch exception [type=illegal_argument_exception, reason=mapper [serial_number] cannot be changed from type [keyword] to [date]]] You can fix this...