SEC350: Lab 2.2 Graylog

New Pages:

Linux: Graylog

I found the lab itself to be easy enough, though I did forget to update the firewall at one point, and could not figure out why the log entries were not making it to the Graylog server. I figured it out quickly enough. The big annoyance was that I figured I'd write a script to automate the deployment of Graylog on an Enterprise Linux 7/8 server (RHEL 7, RHEL 8, CentOS 7, AlmaLinux, Rocky Linux 8, etc.). It did not work, and I spent hours debugging it. I think it should work now, but it takes a while to test, and I'm getting tired, and this lab is due tonight.