How To Install Graylog on Debian 9

r00t October 6, 2017

Install Graylog on Debian 9

In this tutorial we will show you how to install Graylog on your Debian 9 server. For those of you who didn’t know, Graylog is a free and open source powerful centralized log management tool based on Elasticsearch and MongoDB. Graylog helps you to collect, index and analyze any machine logs centrally.

This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo’ to the commands to get root privileges. I will show you through the step by step installation Graylog on a Debian 9 (Stretch) server.

Install Graylog on Debian 9

Step 1. Before we install any software, it’s important to make sure your system is up to date by running these following apt-get commands in the terminal:

Step 2. Installing Dependency.

Not all required dependencies are available in Debian 9 standard repository, so you will need to add Debian Backports to the list of package sources:

Save the file when you are finished, then update your system with the following command:

Step 3. Installing Java.

Both Graylog and Elasticsearch are Java-based, so you will need to install the latest version of Java on your system:

Now check the java version:

Step 4. Installing MongoDB.

Graylog uses MongoDB to store its configuration and meta information. It can be installed directly through the MongoDB repository:

Start the MongoDB service and enable it to start on boot with the following command:

Step 5. Installing Elasticsearch.

Elasticsearch is one of the main component which requires Graylog to run, Let’s install the Elasticsearch. First download and install GPG signing key:

Add the Elasticsearch repository to apt:

After the system finishes updating, install Elasticsearch:

Start the elasticsearch service and enable it to start on boot time with the following command:

Once Elasticsearch is installed, you will need to modify the Elasticsearch main configuration file:

Make the following changes:

After a few seconds, run the following to test that Elasticsearch is running properly:

Step 6. Installing Graylog.

Graylog is not available in the Debian 9 default repository, you need to download and install the Graylog repository to your system:

Update the package lists and install Graylog:

After you have installed the Graylog Server, you have to generate secret key for Graylog using the following command:

Now create a hash password for the root user that can be used to log in to the Graylog web server using the following command:

Edit the server.conf file:

Make changes to the file as shown below:

To enable the Graylog web interface, make changes to the file as shown below:

After you have modified the configuration file, you can start Graylog Service using the following commands:

Step 6. Accessing Graylog.

Graylog will be available on HTTP port 8080 by default. Open your favorite browser and navigate to http://yourdomain.com:9000 or http://server-ip:9000 and complete the required the steps to finish the installation.

Install Graylog on Debian 9

Congratulation’s! You have successfully installed Graylog. Thanks for using this tutorial for installing Graylog on Ubuntu Debian 9 Stretch system. For additional help or useful information, we recommend you to check the official Graylog web site.

VPS Manage Service Offer
If you don’t have time to do all of this stuff, or if this is not your area of expertise, we offer a service to do “VPS Manage Service Offer”, starting from $10 (Paypal payment). Please contact us to get a best deal!

Save

Share on Google+0Share on Facebook0Tweet about this on TwitterShare on Tumblr0Share on StumbleUpon1Share on Reddit1Pin on Pinterest1
The Tags:

Leave a Comment