Deprecation Note
We published the last version of Graylog Documentation before the release of Graylog 4.2. Now, all documentation and help content for Graylog products are available at https://docs.graylog.org/.
There will be no further updates to these pages as of October 2021.
Do you have questions about our documentation? You may place comments or start discussions about documentation here: https://community.graylog.org/c/documentation-campfire/30
Operating System Packages¶
Until configuration management systems made their way into broader markets and many datacenters, one of the most common ways to install
software on Linux servers was to use operating system packages. Debian has DEB
, Red Hat has RPM
and many other distributions are
based on those or come with their own package formats. Online repositories of software packages and corresponding package managers make installing
and configuring new software a matter of a single command and a few minutes of time.
Graylog offers official DEB
and RPM
package repositories. The packages have been tested on the following operating systems:
Ubuntu 16.04, 18.04
Debian 8, 9, 10
RHEL/CentOS 6, 7
The repositories can be set up by installing a single package. Once that’s done, the Graylog packages can be installed via apt-get
or
yum
. The packages can also be downloaded with a web browser at https://packages.graylog2.org/ if needed.
Prerequisites¶
Make sure to install and configure the following software before installing and starting any Graylog services:
Java ( >= 8 )
Elasticsearch (5.x or 6.x)
MongoDB (3.6 or 4.0)
Caution
Graylog 3 does not work with Elasticsearch 7.x!
Caution
Graylog 3 does work with MongoDB 4.2 only in 4.0 compatibility mode !
Step by Step Guides¶
DEB / APT¶
Download and install graylog-3.2-repository_latest.deb
via dpkg(1)
and also make sure that the apt-transport-https
package is installed:
$ sudo apt-get install apt-transport-https
$ wget https://packages.graylog2.org/repo/packages/graylog-3.2-repository_latest.deb
$ sudo dpkg -i graylog-3.2-repository_latest.deb
$ sudo apt-get update
$ sudo apt-get install graylog-server
Hint
If you want the Integrations Plugins or the Enterprise Plugins installed, you need to install them now. The following install all official provided packages by Graylog at the same time: sudo apt-get install graylog-server graylog-enterprise-plugins graylog-integrations-plugins graylog-enterprise-integrations-plugins
After the installation completed successfully, Graylog can be started with the following commands. Make sure to use the correct command for your operating system.
OS |
Init System |
Command |
---|---|---|
Debian 7 |
SysV |
|
Debian 8 & 9, Ubuntu 16.04, 18.04 |
systemd |
|
The packages are configured to not start any Graylog services during boot. You can use the following commands to start Graylog when the operating system is booting.
OS |
Init System |
Command |
---|---|---|
Debian 7 |
SysV |
|
Debian 8 & 9, Ubuntu 16.06, 18.04 |
systemd |
|
Update to latest version¶
If you’ve been using the repository package to install Graylog before, it has to be updated first. The new package will replace the repository URL, without which you will only be able to get bugfix releases of your previously installed version of Graylog.
The update basically works like a fresh installation:
$ wget https://packages.graylog2.org/repo/packages/graylog-3.2-repository_latest.deb
$ sudo dpkg -i graylog-3.2-repository_latest.deb
$ sudo apt-get update
$ sudo apt-get install graylog-server
Caution
If you have the Integrations Plugins or the Enterprise Plugins installed, you need to update them together with the Graylog server package. The following command updates all official provided packages by Graylog at the same time: sudo apt-get install graylog-server graylog-enterprise-plugins graylog-integrations-plugins graylog-enterprise-integrations-plugins
Manual Repository Installation¶
If you don’t like to install the repository DEB to get the repository configuration onto your system, you can do so manually (although we don’t recommend to do that).
First, add the Graylog GPG keyring which is being used to sign the packages to your system.
Hint
We assume that you have placed the GPG key into /etc/apt/trusted.gpg.d/
.
Now create a file /etc/apt/sources.list.d/graylog.list
with the following content:
deb https://packages.graylog2.org/repo/debian/ stable 3.2
RPM / YUM / DNF¶
Download and install graylog-3.2-repository_latest.rpm
via rpm(8)
:
$ sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-3.2-repository_latest.rpm
$ sudo yum install graylog-server
Hint
If you want the Integrations Plugins or the Enterprise Plugins installed, you need to install them now. The following install all official provided packages by Graylog at the same time: sudo yum install graylog-server graylog-enterprise-plugins graylog-integrations-plugins graylog-enterprise-integrations-plugins
After the installation completed successfully, Graylog can be started with the following commands. Make sure to use the correct command for your operating system.
OS |
Init System |
Command |
---|---|---|
CentOS 6 |
SysV |
|
CentOS 7 |
systemd |
|
The packages are configured to not start any Graylog services during boot. You can use the following commands to start Graylog when the operating system is booting.
OS |
Init System |
Command |
---|---|---|
CentOS 6 |
SysV |
|
CentOS 7 |
systemd |
|
Update to latest version¶
If you’ve been using the repository package to install Graylog before, it has to be updated first. The new package will replace the repository URL, without which you will only be able to get bugfix releases of your previously installed version of Graylog.
The update basically works like a fresh installation:
$ sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-3.2-repository_latest.rpm
$ sudo yum clean all
$ sudo yum install graylog-server
Running yum clean all
is required because YUM might use a stale cache and thus might be unable to find the latest version of the graylog-server
package.
Caution
If you have the Integrations Plugins or the Enterprise Plugins installed, you need to update them together with the Graylog server package. The following command updates all official provided packages by Graylog at the same time: sudo yum install graylog-server graylog-enterprise-plugins graylog-integrations-plugins graylog-enterprise-integrations-plugins
Manual Repository Installation¶
If you don’t like to install the repository RPM to get the repository configuration onto your system, you can do so manually (although we don’t recommend to do that).
First, add the Graylog GPG key which is being used to sign the packages to your system.
Hint
We assume that you have placed the GPG key into /etc/pki/rpm-gpg/RPM-GPG-KEY-graylog
.
Now create a file named /etc/yum.repos.d/graylog.repo
with the following content:
[graylog]
name=graylog
baseurl=https://packages.graylog2.org/repo/el/stable/3.2/$basearch/
gpgcheck=1
repo_gpgcheck=0
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-graylog
Step-by-step guides¶
Feedback¶
Please file a bug report in the GitHub repository for the operating system packages if you run into any packaging related issues.
If you found this documentation confusing or have more questions, please open an issue in the Github repository for the documentation.