robsouth84/install.sh

## install.sh

## details found here:
## http://docs.graylog.org/en/2.1/pages/installation/os/centos.html

### assumes fresh install of centos 7 minimal with pci security config
### also assumes running as either root OR user with sudoers access


################################################
########## install prereqs #####################
################################################


## install prereqs
echo "### installing prereqs ###"
sudo yum install -y java-1.8.0-openjdk-headless.x86_64 epel-release pwgen policycoreutils-python

## config mongodb
## add mongo repo
sudo tee -a /etc/yum.repos.d/mongodb-org-3.2.repo <<EOF
[mongodb-org-3.2]
name=MongoDB Repository
baseurl=https://repo.mongodb.org/yum/redhat/7/mongodb-org/3.2/x86_64/
gpgcheck=1
enabled=1
gpgkey=https://www.mongodb.org/static/pgp/server-3.2.asc
EOF

sudo yum install -y mongodb-org

sudo chkconfig --add mongod
sudo systemctl daemon-reload
sudo systemctl enable mongod.service
sudo systemctl start mongod.service

## config elastic search
sudo rpm --import https://packages.elastic.co/GPG-KEY-elasticsearch

sudo tee -a /etc/yum.repos.d/elasticsearch.repo <<EOF
[elasticsearch-2.x]
name=Elasticsearch repository for 2.x packages
baseurl=https://packages.elastic.co/elasticsearch/2.x/centos
gpgcheck=1
gpgkey=https://packages.elastic.co/GPG-KEY-elasticsearch
enabled=1
EOF

sudo yum install -y elasticsearch
## backup yml
cp /etc/elasticsearch/elasticsearch.yml /etc/elasticsearch/elasticsearch.yml.orig
## set cluster.name: graylog
sed -i 's/^.*\(cluster\.name\s*:\s*\).*$/\1graylog/' /etc/elasticsearch/elasticsearch.yml

## start elasticsearch
sudo chkconfig --add elasticsearch
sudo systemctl daemon-reload
sudo systemctl enable elasticsearch.service

echo "################################################"
echo "### done installing prereqs !!!!###"
echo "################################################"
################################################
########## install graylog #####################
################################################

echo "################################################"
echo "### installing graylog...###"
echo "################################################"
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-2.1-repository_latest.rpm
sudo yum install -y graylog-server
sudo systemctl restart elasticsearch.service


##/etc/graylog/server/server.conf


##start graylog
##sudo chkconfig --add graylog-server
##sudo systemctl daemon-reload
##sudo systemctl enable graylog-server.service
##sudo systemctl start graylog-server.service

echo "#############################################################"
echo "### DONE installing graylog!! Setting up SELinux next.....###"
echo "#############################################################"


## SELinux configs..

sudo setsebool -P httpd_can_network_connect 1
#sudo semanage port -a -t http_port_t -p tcp 9000
#sudo semanage port -a -t http_port_t -p tcp 9200
sudo semanage port -a -t mongod_port_t -p tcp 27017

	## details found here:
	## http://docs.graylog.org/en/2.1/pages/installation/os/centos.html

	### assumes fresh install of centos 7 minimal with pci security config
	### also assumes running as either root OR user with sudoers access


	################################################
	########## install prereqs #####################
	################################################


	## install prereqs
	echo "### installing prereqs ###"
	sudo yum install -y java-1.8.0-openjdk-headless.x86_64 epel-release pwgen policycoreutils-python

	## config mongodb
	## add mongo repo
	sudo tee -a /etc/yum.repos.d/mongodb-org-3.2.repo <<EOF
	[mongodb-org-3.2]
	name=MongoDB Repository
	baseurl=https://repo.mongodb.org/yum/redhat/7/mongodb-org/3.2/x86_64/
	gpgcheck=1
	enabled=1
	gpgkey=https://www.mongodb.org/static/pgp/server-3.2.asc
	EOF

	sudo yum install -y mongodb-org

	sudo chkconfig --add mongod
	sudo systemctl daemon-reload
	sudo systemctl enable mongod.service
	sudo systemctl start mongod.service

	## config elastic search
	sudo rpm --import https://packages.elastic.co/GPG-KEY-elasticsearch

	sudo tee -a /etc/yum.repos.d/elasticsearch.repo <<EOF
	[elasticsearch-2.x]
	name=Elasticsearch repository for 2.x packages
	baseurl=https://packages.elastic.co/elasticsearch/2.x/centos
	gpgcheck=1
	gpgkey=https://packages.elastic.co/GPG-KEY-elasticsearch
	enabled=1
	EOF

	sudo yum install -y elasticsearch
	## backup yml
	cp /etc/elasticsearch/elasticsearch.yml /etc/elasticsearch/elasticsearch.yml.orig
	## set cluster.name: graylog
	sed -i 's/^.\(cluster\.name\s:\s\).$/\1graylog/' /etc/elasticsearch/elasticsearch.yml

	## start elasticsearch
	sudo chkconfig --add elasticsearch
	sudo systemctl daemon-reload
	sudo systemctl enable elasticsearch.service

	echo "################################################"
	echo "### done installing prereqs !!!!###"
	echo "################################################"
	################################################
	########## install graylog #####################
	################################################

	echo "################################################"
	echo "### installing graylog...###"
	echo "################################################"
	sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-2.1-repository_latest.rpm
	sudo yum install -y graylog-server
	sudo systemctl restart elasticsearch.service


	##/etc/graylog/server/server.conf


	##start graylog
	##sudo chkconfig --add graylog-server
	##sudo systemctl daemon-reload
	##sudo systemctl enable graylog-server.service
	##sudo systemctl start graylog-server.service

	echo "#############################################################"
	echo "### DONE installing graylog!! Setting up SELinux next.....###"
	echo "#############################################################"



	## SELinux configs..

	sudo setsebool -P httpd_can_network_connect 1
	#sudo semanage port -a -t http_port_t -p tcp 9000
	#sudo semanage port -a -t http_port_t -p tcp 9200
	sudo semanage port -a -t mongod_port_t -p tcp 27017