API tools faq
paste
Advertisement
Guest User

graylog.log

a guest
Oct 1st, 2018
267
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 15.47 KB | None | 0 0
raw download clone embed print report
  1. 2018-10-01T11:41:59.417-04:00 INFO [ServerBootstrap] Graylog server 2.4.6+ceaa7e4 starting up
  2. 2018-10-01T11:41:59.417-04:00 INFO [ServerBootstrap] JRE: Oracle Corporation 1.8.0_181 on Linux 4.4.0-135-generic
  3. 2018-10-01T11:41:59.417-04:00 INFO [ServerBootstrap] Deployment: deb
  4. 2018-10-01T11:41:59.417-04:00 INFO [ServerBootstrap] OS: Ubuntu 16.04.5 LTS (xenial)
  5. 2018-10-01T11:41:59.417-04:00 INFO [ServerBootstrap] Arch: amd64
  6. 2018-10-01T11:41:59.464-04:00 INFO [PeriodicalsService] Starting 25 periodicals ...
  7. 2018-10-01T11:41:59.464-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ThroughputCalculator] periodical in [0s], polling every [1s].
  8. 2018-10-01T11:41:59.468-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.AlertScannerThread] periodical in [10s], polling every [60s].
  9. 2018-10-01T11:41:59.469-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.BatchedElasticSearchOutputFlushThread] periodical in [0s], polling every [1s].
  10. 2018-10-01T11:41:59.469-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ClusterHealthCheckThread] periodical in [120s], polling every [20s].
  11. 2018-10-01T11:41:59.471-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ContentPackLoaderPeriodical] periodical, running forever.
  12. 2018-10-01T11:41:59.472-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.GarbageCollectionWarningThread] periodical, running forever.
  13. 2018-10-01T11:41:59.473-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexerClusterCheckerThread] periodical in [0s], polling every [30s].
  14. 2018-10-01T11:41:59.480-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexRetentionThread] periodical in [0s], polling every [300s].
  15. 2018-10-01T11:41:59.489-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexRotationThread] periodical in [0s], polling every [10s].
  16. 2018-10-01T11:41:59.490-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.NodePingThread] periodical in [0s], polling every [1s].
  17. 2018-10-01T11:41:59.490-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.VersionCheckThread] periodical in [300s], polling every [1800s].
  18. 2018-10-01T11:41:59.589-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ThrottleStateUpdaterThread] periodical in [1s], polling every [1s].
  19. 2018-10-01T11:41:59.590-04:00 INFO [Periodicals] Starting [org.graylog2.events.ClusterEventPeriodical] periodical in [0s], polling every [1s].
  20. 2018-10-01T11:41:59.590-04:00 INFO [Periodicals] Starting [org.graylog2.events.ClusterEventCleanupPeriodical] periodical in [0s], polling every [86400s].
  21. 2018-10-01T11:41:59.596-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ClusterIdGeneratorPeriodical] periodical, running forever.
  22. 2018-10-01T11:41:59.596-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexRangesMigrationPeriodical] periodical, running forever.
  23. 2018-10-01T11:41:59.597-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexRangesCleanupPeriodical] periodical in [15s], polling every [3600s].
  24. 2018-10-01T11:41:59.605-04:00 INFO [connection] Opened connection [connectionId{localValue:4, serverValue:4}] to localhost:27017
  25. 2018-10-01T11:41:59.616-04:00 INFO [connection] Opened connection [connectionId{localValue:5, serverValue:5}] to localhost:27017
  26. 2018-10-01T11:41:59.641-04:00 INFO [PeriodicalsService] Not starting [org.graylog2.periodical.UserPermissionMigrationPeriodical] periodical. Not configured to run on this node.
  27. 2018-10-01T11:41:59.641-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.AlarmCallbacksMigrationPeriodical] periodical, running forever.
  28. 2018-10-01T11:41:59.647-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.ConfigurationManagementPeriodical] periodical, running forever.
  29. 2018-10-01T11:41:59.669-04:00 INFO [connection] Opened connection [connectionId{localValue:10, serverValue:10}] to localhost:27017
  30. 2018-10-01T11:41:59.671-04:00 INFO [connection] Opened connection [connectionId{localValue:7, serverValue:7}] to localhost:27017
  31. 2018-10-01T11:41:59.678-04:00 INFO [connection] Opened connection [connectionId{localValue:6, serverValue:6}] to localhost:27017
  32. 2018-10-01T11:41:59.680-04:00 INFO [connection] Opened connection [connectionId{localValue:9, serverValue:9}] to localhost:27017
  33. 2018-10-01T11:41:59.672-04:00 INFO [PeriodicalsService] Not starting [org.graylog2.periodical.LdapGroupMappingMigration] periodical. Not configured to run on this node.
  34. 2018-10-01T11:41:59.686-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.IndexFailuresPeriodical] periodical, running forever.
  35. 2018-10-01T11:41:59.686-04:00 INFO [connection] Opened connection [connectionId{localValue:8, serverValue:8}] to localhost:27017
  36. 2018-10-01T11:41:59.696-04:00 INFO [Periodicals] Starting [org.graylog2.periodical.TrafficCounterCalculator] periodical in [0s], polling every [1s].
  37. 2018-10-01T11:41:59.744-04:00 INFO [Periodicals] Starting [org.graylog.plugins.pipelineprocessor.periodical.LegacyDefaultStreamMigration] periodical, running forever.
  38. 2018-10-01T11:41:59.751-04:00 INFO [Periodicals] Starting [org.graylog.plugins.collector.periodical.PurgeExpiredCollectorsThread] periodical in [0s], polling every [3600s].
  39. 2018-10-01T11:41:59.773-04:00 INFO [LegacyDefaultStreamMigration] Legacy default stream has no connections, no migration needed.
  40. 2018-10-01T11:41:59.804-04:00 INFO [LookupTableService] Data Adapter whois/5b1fda8ac6d03014ae01af63 [@696c53ab] STARTING
  41. 2018-10-01T11:41:59.804-04:00 INFO [LookupTableService] Data Adapter tor-exit-node/5b1fda8ac6d03014ae01af66 [@4308055f] STARTING
  42. 2018-10-01T11:41:59.804-04:00 INFO [LookupTableService] Data Adapter abuse-ch-ransomware-domains/5b1fda8ac6d03014ae01af65 [@6d3e8727] STARTING
  43. 2018-10-01T11:41:59.805-04:00 INFO [LookupTableService] Data Adapter otx-api-ip/5b1fda8ac6d03014ae01af64 [@6d6b44d4] STARTING
  44. 2018-10-01T11:41:59.805-04:00 INFO [LookupTableService] Data Adapter spamhaus-drop/5b1fda8ac6d03014ae01af61 [@cb316b0] STARTING
  45. 2018-10-01T11:41:59.805-04:00 ERROR [LookupDataAdapter] Couldn't start data adapter <spamhaus-drop/5b1fda8ac6d03014ae01af61/@cb316b0>
  46. org.graylog.plugins.threatintel.tools.AdapterDisabledException: Spamhaus service is disabled, not starting (E)DROP adapter. To enable it please go to System / Configurations.
  47. at org.graylog.plugins.threatintel.adapters.spamhaus.SpamhausEDROPDataAdapter.doStart(SpamhausEDROPDataAdapter.java:68) ~[?:?]
  48. at org.graylog2.plugin.lookup.LookupDataAdapter.startUp(LookupDataAdapter.java:59) [graylog.jar:?]
  49. at com.google.common.util.concurrent.AbstractIdleService$DelegateService$1.run(AbstractIdleService.java:62) [graylog.jar:?]
  50. at com.google.common.util.concurrent.Callables$4.run(Callables.java:122) [graylog.jar:?]
  51. at java.lang.Thread.run(Thread.java:748) [?:1.8.0_181]
  52. 2018-10-01T11:41:59.821-04:00 ERROR [LookupDataAdapter] Couldn't start data adapter <abuse-ch-ransomware-ip/5b1fda8ac6d03014ae01af62/@3e37d174>
  53. org.graylog.plugins.threatintel.tools.AdapterDisabledException: Abuse.ch service is disabled, not starting adapter. To enable it please go to System / Configurations.
  54. at org.graylog.plugins.threatintel.adapters.abusech.AbuseChRansomAdapter.doStart(AbuseChRansomAdapter.java:80) ~[?:?]
  55. at org.graylog2.plugin.lookup.LookupDataAdapter.startUp(LookupDataAdapter.java:59) [graylog.jar:?]
  56. at com.google.common.util.concurrent.AbstractIdleService$DelegateService$1.run(AbstractIdleService.java:62) [graylog.jar:?]
  57. at com.google.common.util.concurrent.Callables$4.run(Callables.java:122) [graylog.jar:?]
  58. at java.lang.Thread.run(Thread.java:748) [?:1.8.0_181]
  59. 2018-10-01T11:41:59.822-04:00 INFO [LookupTableService] Data Adapter abuse-ch-ransomware-ip/5b1fda8ac6d03014ae01af62 [@3e37d174] STARTING
  60. 2018-10-01T11:41:59.822-04:00 ERROR [LookupDataAdapter] Couldn't start data adapter <tor-exit-node/5b1fda8ac6d03014ae01af66/@4308055f>
  61. org.graylog.plugins.threatintel.tools.AdapterDisabledException: TOR service is disabled, not starting TOR exit addresses adapter. To enable it please go to System / Configurations.
  62. at org.graylog.plugins.threatintel.adapters.tor.TorExitNodeDataAdapter.doStart(TorExitNodeDataAdapter.java:73) ~[?:?]
  63. at org.graylog2.plugin.lookup.LookupDataAdapter.startUp(LookupDataAdapter.java:59) [graylog.jar:?]
  64. at com.google.common.util.concurrent.AbstractIdleService$DelegateService$1.run(AbstractIdleService.java:62) [graylog.jar:?]
  65. at com.google.common.util.concurrent.Callables$4.run(Callables.java:122) [graylog.jar:?]
  66. at java.lang.Thread.run(Thread.java:748) [?:1.8.0_181]
  67. 2018-10-01T11:41:59.826-04:00 WARN [OTXDataAdapter] OTX API key is missing. Make sure to add the key to allow higher request limits.
  68. 2018-10-01T11:41:59.848-04:00 WARN [OTXDataAdapter] OTX API key is missing. Make sure to add the key to allow higher request limits.
  69. 2018-10-01T11:41:59.849-04:00 INFO [LookupTableService] Data Adapter otx-api-domain/5b1fda8ac6d03014ae01af60 [@53019837] STARTING
  70. 2018-10-01T11:41:59.850-04:00 INFO [LookupTableService] Data Adapter spamhaus-drop/5b1fda8ac6d03014ae01af61 [@cb316b0] RUNNING
  71. 2018-10-01T11:41:59.853-04:00 INFO [LookupTableService] Data Adapter abuse-ch-ransomware-ip/5b1fda8ac6d03014ae01af62 [@3e37d174] RUNNING
  72. 2018-10-01T11:41:59.839-04:00 ERROR [LookupDataAdapter] Couldn't start data adapter <abuse-ch-ransomware-domains/5b1fda8ac6d03014ae01af65/@6d3e8727>
  73. org.graylog.plugins.threatintel.tools.AdapterDisabledException: Abuse.ch service is disabled, not starting adapter. To enable it please go to System / Configurations.
  74. at org.graylog.plugins.threatintel.adapters.abusech.AbuseChRansomAdapter.doStart(AbuseChRansomAdapter.java:80) ~[?:?]
  75. at org.graylog2.plugin.lookup.LookupDataAdapter.startUp(LookupDataAdapter.java:59) [graylog.jar:?]
  76. at com.google.common.util.concurrent.AbstractIdleService$DelegateService$1.run(AbstractIdleService.java:62) [graylog.jar:?]
  77. at com.google.common.util.concurrent.Callables$4.run(Callables.java:122) [graylog.jar:?]
  78. at java.lang.Thread.run(Thread.java:748) [?:1.8.0_181]
  79. 2018-10-01T11:41:59.880-04:00 INFO [LookupTableService] Data Adapter whois/5b1fda8ac6d03014ae01af63 [@696c53ab] RUNNING
  80. 2018-10-01T11:41:59.881-04:00 INFO [LookupTableService] Data Adapter tor-exit-node/5b1fda8ac6d03014ae01af66 [@4308055f] RUNNING
  81. 2018-10-01T11:41:59.916-04:00 INFO [LookupTableService] Data Adapter abuse-ch-ransomware-domains/5b1fda8ac6d03014ae01af65 [@6d3e8727] RUNNING
  82. 2018-10-01T11:41:59.944-04:00 INFO [LookupTableService] Data Adapter otx-api-domain/5b1fda8ac6d03014ae01af60 [@53019837] RUNNING
  83. 2018-10-01T11:41:59.976-04:00 INFO [LookupTableService] Data Adapter otx-api-ip/5b1fda8ac6d03014ae01af64 [@6d6b44d4] RUNNING
  84. 2018-10-01T11:41:59.976-04:00 INFO [LookupTableService] Cache otx-api-domain-cache/5b1fda8ac6d03014ae01af5d [@743d5935] STARTING
  85. 2018-10-01T11:41:59.977-04:00 INFO [LookupTableService] Cache whois-cache/5b1fda8ac6d03014ae01af5e [@8448d9e] STARTING
  86. 2018-10-01T11:41:59.977-04:00 INFO [LookupTableService] Cache otx-api-ip-cache/5b1fda8ac6d03014ae01af5a [@4d12ea6c] STARTING
  87. 2018-10-01T11:41:59.977-04:00 INFO [LookupTableService] Cache threat-intel-uncached-adapters/5b1fda8ac6d03014ae01af5c [@6b9fdee7] STARTING
  88. 2018-10-01T11:41:59.980-04:00 INFO [LookupTableService] Cache spamhaus-e-drop-cache/5b1fda8ac6d03014ae01af59 [@12c1ec71] STARTING
  89. 2018-10-01T11:41:59.997-04:00 INFO [LookupTableService] Cache whois-cache/5b1fda8ac6d03014ae01af5e [@8448d9e] RUNNING
  90. 2018-10-01T11:41:59.999-04:00 INFO [LookupTableService] Cache otx-api-ip-cache/5b1fda8ac6d03014ae01af5a [@4d12ea6c] RUNNING
  91. 2018-10-01T11:42:00.003-04:00 INFO [LookupTableService] Cache otx-api-domain-cache/5b1fda8ac6d03014ae01af5d [@743d5935] RUNNING
  92. 2018-10-01T11:42:00.003-04:00 INFO [LookupTableService] Cache threat-intel-uncached-adapters/5b1fda8ac6d03014ae01af5c [@6b9fdee7] RUNNING
  93. 2018-10-01T11:42:00.004-04:00 INFO [LookupTableService] Cache spamhaus-e-drop-cache/5b1fda8ac6d03014ae01af59 [@12c1ec71] RUNNING
  94. 2018-10-01T11:42:00.036-04:00 INFO [LookupTableService] Starting lookup table spamhaus-drop/5b1fda8ac6d03014ae01af68 [@1fe0759b] using cache spamhaus-e-drop-cache/5b1fda8ac6d03014ae01af59 [@12c1ec71], data adapter spamhaus-drop/5b1fda8ac6d03014ae01af61 [@cb316b0]
  95. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table tor-exit-node-list/5b1fda8ac6d03014ae01af69 [@4bfe9f74] using cache threat-intel-uncached-adapters/5b1fda8ac6d03014ae01af5c [@6b9fdee7], data adapter tor-exit-node/5b1fda8ac6d03014ae01af66 [@4308055f]
  96. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table otx-api-ip/5b1fda8ac6d03014ae01af6a [@56c94378] using cache otx-api-ip-cache/5b1fda8ac6d03014ae01af5a [@4d12ea6c], data adapter otx-api-ip/5b1fda8ac6d03014ae01af64 [@6d6b44d4]
  97. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table otx-api-domain/5b1fda8ac6d03014ae01af6b [@4df90076] using cache otx-api-domain-cache/5b1fda8ac6d03014ae01af5d [@743d5935], data adapter otx-api-domain/5b1fda8ac6d03014ae01af60 [@53019837]
  98. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table whois/5b1fda8ac6d03014ae01af6c [@5129f8ff] using cache whois-cache/5b1fda8ac6d03014ae01af5e [@8448d9e], data adapter whois/5b1fda8ac6d03014ae01af63 [@696c53ab]
  99. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table abuse-ch-ransomware-ip/5b1fda8ac6d03014ae01af6d [@6e13c891] using cache threat-intel-uncached-adapters/5b1fda8ac6d03014ae01af5c [@6b9fdee7], data adapter abuse-ch-ransomware-ip/5b1fda8ac6d03014ae01af62 [@3e37d174]
  100. 2018-10-01T11:42:00.037-04:00 INFO [LookupTableService] Starting lookup table abuse-ch-ransomware-domains/5b1fda8ac6d03014ae01af6e [@725d94a8] using cache threat-intel-uncached-adapters/5b1fda8ac6d03014ae01af5c [@6b9fdee7], data adapter abuse-ch-ransomware-domains/5b1fda8ac6d03014ae01af65 [@6d3e8727]
  101. 2018-10-01T11:42:00.563-04:00 INFO [JerseyService] Enabling CORS for HTTP endpoint
  102. 2018-10-01T11:42:12.702-04:00 INFO [NetworkListener] Started listener bound to [logging.internal.com:9000]
  103. 2018-10-01T11:42:12.704-04:00 INFO [HttpServer] [HttpServer] Started.
  104. 2018-10-01T11:42:12.704-04:00 INFO [JerseyService] Started REST API at <http://logging.internal.com:9000/api/>
  105. 2018-10-01T11:42:12.704-04:00 INFO [JerseyService] Started Web Interface at <http://logging.internal.com:9000/>
  106. 2018-10-01T11:42:12.705-04:00 INFO [ServiceManagerListener] Services are healthy
  107. 2018-10-01T11:42:12.706-04:00 INFO [ServerBootstrap] Services started, startup times in ms: {OutputSetupService [RUNNING]=18, BufferSynchronizerService [RUNNING]=19, KafkaJournal [RUNNING]=40, InputSetupService [RUNNING]=160, StreamCacheService [RUNNING]=267, ConfigurationEtagService [RUNNING]=267, JournalReader [RUNNING]=268, PeriodicalsService [RUNNING]=316, LookupTableService [RUNNING]=587, JerseyService [RUNNING]=13254}
  108. 2018-10-01T11:42:12.708-04:00 INFO [InputSetupService] Triggering launching persisted inputs, node transitioned from Uninitialized [LB:DEAD] to Running [LB:ALIVE]
  109. 2018-10-01T11:42:12.725-04:00 INFO [ServerBootstrap] Graylog server up and running.
  110. 2018-10-01T11:42:12.733-04:00 INFO [InputStateListener] Input [Syslog UDP/5859bf6cc6d030043ce57bd7] is now STARTING
  111. 2018-10-01T11:42:12.777-04:00 WARN [NettyTransport] receiveBufferSize (SO_RCVBUF) for input SyslogUDPInput{title=internal.Logging, type=org.graylog2.inputs.syslog.udp.SyslogUDPInput, nodeId=null} should be 262144 but is 212992.
  112. 2018-10-01T11:42:12.790-04:00 INFO [InputStateListener] Input [Syslog UDP/5859bf6cc6d030043ce57bd7] is now RUNNING
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!