#Graylog
Open-source log management.
#Features
| Feature | Description |
|---|---|
| Collection | Syslog, GELF, Beats |
| Search | Full-text search |
| Streams | Route and filter logs |
| Pipelines | Transform log data |
| Alerts | Configurable conditions |
#Docker Compose
yaml
1version: '3.8'
2services:
3 mongodb:
4 image: mongo:6
5
6 opensearch:
7 image: opensearchproject/opensearch:2
8
9 graylog:
10 image: graylog/graylog:5.1
11 ports:
12 - "9000:9000" # Web UI
13 - "12201:12201/udp" # GELF UDP
14 - "1514:1514" # Syslog TCP
15 environment:
16 - GRAYLOG_PASSWORD_SECRET=somepasswordpepper
17 - GRAYLOG_ROOT_PASSWORD_SHA2=sha256_of_password
18 - GRAYLOG_HTTP_EXTERNAL_URI=http://localhost:9000/
19 depends_on:
20 - mongodb
21 - opensearch#Sending Logs
bash
# GELF via netcat
echo -e '{"version": "1.1","host":"server1","short_message":"Test"}' | nc -u localhost 12201[!TIP] Pro Tip: Great open-source alternative to Splunk!