palo/nixos-config
palo/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

use graylog for journald logs

Browse source
This commit is contained in:
Ingolf Wagner 2021-07-14 13:09:08 +02:00
parent a2002e5b2b
commit c2ec6804de
No known key found for this signature in database
GPG key ID: 76BF5F1928B9618B
4 changed files with 29 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
terranix/graylog/config.nix
View file

@ -1,6 +1,10 @@
with builtins; { with builtins; {
imports = [ ./provider.nix ./nginx.nix ./journald.nix ]; imports = [
./provider.nix
#./nginx.nix
./journald.nix
];
resource.graylog_output.stdout = { resource.graylog_output.stdout = {
title = "test stdout"; title = "test stdout";

27
terranix/graylog/journald.nix
View file

@ -1,26 +1,45 @@
with builtins; { with builtins; {
#data.graylog_index_set.default.index_prefix = "graylog";
resource = { resource = {
graylog_input.journald = { graylog_input.journald = {
title = "test journald"; title = "Journald Logs";
# https://javadoc.io/doc/org.graylog2/graylog2-inputs/latest/index.html # https://javadoc.io/doc/org.graylog2/graylog2-inputs/latest/index.html
type = "org.graylog2.inputs.gelf.udp.GELFUDPInput"; type = "org.graylog2.inputs.gelf.udp.GELFUDPInput";
global = true; global = true;
attributes = toJSON ({ attributes = toJSON ({
bind_address = "0.0.0.0"; bind_address = "0.0.0.0";
decompress_size_limit = 8388608; decompress_size_limit = 8388608;
number_worker_threads = 2; number_worker_threads = 4;
port = 12211; # todo port = 11201;
recv_buffer_size = 262144; recv_buffer_size = 262144;
}); });
}; };
# todo create stream # todo create stream
graylog_stream.journald = {
title = "journald";
description = "journald processing stream";
#index_set_id = "\${data.graylog_index_set.default.id}";
index_set_id = "\${graylog_index_set.default.id}";
disabled = false;
matching_type = "AND";
};
graylog_stream_rule.journald = {
field = "from_journald";
value = true;
stream_id = "\${graylog_stream.journald.id}";
#description = "";
type = 1;
inverted = false;
};
graylog_input_static_fields.journald = { graylog_input_static_fields.journald = {
input_id = "\${graylog_input.journald.id}"; input_id = "\${graylog_input.journald.id}";
fields = { from_systemd = true; }; fields = { from_journald = true; };
}; };
graylog_pipeline.systemd_loglevel_fix.source = '' graylog_pipeline.systemd_loglevel_fix.source = ''

1
terranix/graylog/shell.nix
View file

@ -4,6 +4,7 @@ let pass_access_token_path = "development/graylog/access_token";
in pkgs.mkShell { in pkgs.mkShell {
buildInputs = with pkgs; [ buildInputs = with pkgs; [
git-crypt
terranix terranix
(writers.writeBashBin "terraform" '' (writers.writeBashBin "terraform" ''
export GRAYLOG_AUTH_NAME=`${pkgs.pass}/bin/pass show ${pass_access_token_path}` export GRAYLOG_AUTH_NAME=`${pkgs.pass}/bin/pass show ${pass_access_token_path}`

BIN
terranix/graylog/terraform.tfstate
View file

Binary file not shown.