Created
May 8, 2020 20:35
-
-
Save robsouth84/b0ac8d9248f35d0d381fb18ff7c09951 to your computer and use it in GitHub Desktop.
graylog install on fresh centos 7 install
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
## details found here: | |
## http://docs.graylog.org/en/2.1/pages/installation/os/centos.html | |
### assumes fresh install of centos 7 minimal with pci security config | |
### also assumes running as either root OR user with sudoers access | |
################################################ | |
########## install prereqs ##################### | |
################################################ | |
## install prereqs | |
echo "### installing prereqs ###" | |
sudo yum install -y java-1.8.0-openjdk-headless.x86_64 epel-release pwgen policycoreutils-python | |
## config mongodb | |
## add mongo repo | |
sudo tee -a /etc/yum.repos.d/mongodb-org-3.2.repo <<EOF | |
[mongodb-org-3.2] | |
name=MongoDB Repository | |
baseurl=https://repo.mongodb.org/yum/redhat/7/mongodb-org/3.2/x86_64/ | |
gpgcheck=1 | |
enabled=1 | |
gpgkey=https://www.mongodb.org/static/pgp/server-3.2.asc | |
EOF | |
sudo yum install -y mongodb-org | |
sudo chkconfig --add mongod | |
sudo systemctl daemon-reload | |
sudo systemctl enable mongod.service | |
sudo systemctl start mongod.service | |
## config elastic search | |
sudo rpm --import https://packages.elastic.co/GPG-KEY-elasticsearch | |
sudo tee -a /etc/yum.repos.d/elasticsearch.repo <<EOF | |
[elasticsearch-2.x] | |
name=Elasticsearch repository for 2.x packages | |
baseurl=https://packages.elastic.co/elasticsearch/2.x/centos | |
gpgcheck=1 | |
gpgkey=https://packages.elastic.co/GPG-KEY-elasticsearch | |
enabled=1 | |
EOF | |
sudo yum install -y elasticsearch | |
## backup yml | |
cp /etc/elasticsearch/elasticsearch.yml /etc/elasticsearch/elasticsearch.yml.orig | |
## set cluster.name: graylog | |
sed -i 's/^.*\(cluster\.name\s*:\s*\).*$/\1graylog/' /etc/elasticsearch/elasticsearch.yml | |
## start elasticsearch | |
sudo chkconfig --add elasticsearch | |
sudo systemctl daemon-reload | |
sudo systemctl enable elasticsearch.service | |
echo "################################################" | |
echo "### done installing prereqs !!!!###" | |
echo "################################################" | |
################################################ | |
########## install graylog ##################### | |
################################################ | |
echo "################################################" | |
echo "### installing graylog...###" | |
echo "################################################" | |
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-2.1-repository_latest.rpm | |
sudo yum install -y graylog-server | |
sudo systemctl restart elasticsearch.service | |
##/etc/graylog/server/server.conf | |
##start graylog | |
##sudo chkconfig --add graylog-server | |
##sudo systemctl daemon-reload | |
##sudo systemctl enable graylog-server.service | |
##sudo systemctl start graylog-server.service | |
echo "#############################################################" | |
echo "### DONE installing graylog!! Setting up SELinux next.....###" | |
echo "#############################################################" | |
## SELinux configs.. | |
sudo setsebool -P httpd_can_network_connect 1 | |
#sudo semanage port -a -t http_port_t -p tcp 9000 | |
#sudo semanage port -a -t http_port_t -p tcp 9200 | |
sudo semanage port -a -t mongod_port_t -p tcp 27017 | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment