How to Install Graylog on OpenSUSE Latest

This tutorial will guide you through the steps to install Graylog on OpenSUSE Latest. Graylog is an open-source log management and analysis tool used for centralized log collection and analysis. It helps in monitoring and handling logs from different sources.

Prerequisites

Before starting, make sure you have the following:

• A system running OpenSUSE Latest
• A user account with sudo privileges
• Java JDK 8 or higher installed

Step 1: Install Elasticsearch

Graylog requires Elasticsearch for storing and indexing log data. Follow the steps below to install Elasticsearch:

1. Open the terminal and update the system using the following command:

   sudo zypper update
   

2. Add the Elasticsearch repository to OpenSUSE by running the following command:

   sudo zypper ar https://artifacts.elastic.co/packages/oss-6.x/yum/ elasticsearch
   

3. Import the Elasticsearch public GPG key:

   sudo rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch
   

4. Install Elasticsearch by running the following command:

   sudo zypper install elasticsearch-oss
   

5. Configure Elasticsearch to automatically start at boot time:

   sudo systemctl enable elasticsearch.service
   

6. Start Elasticsearch by running the following command:

   sudo systemctl start elasticsearch.service
   

7. Verify that Elasticsearch is running by accessing the following URL in your web browser:

   http://localhost:9200/
   

   If Elasticsearch is working properly, you should see a JSON response containing information about the Elasticsearch cluster.

Step 2: Install Graylog

Follow the steps below to install Graylog:

1. Add the Graylog repository to OpenSUSE by running the following command:

   sudo zypper ar https://packages.graylog2.org/repo/packages/graylog-4.2-repository_latest.rpm graylog
   

2. Import the Graylog GPG public key:

   sudo rpm --import https://packages.graylog2.org/repo/packages/graylog-4.2-repository_latest.rpm.key
   

3. Install Graylog by running the following command:

   sudo zypper install graylog-server
   

4. Edit the Graylog server configuration file to specify the Elasticsearch URL. Open the /etc/graylog/server/server.conf file using your preferred text editor:

   sudo nano /etc/graylog/server/server.conf
   

   Locate the following line:

   elasticsearch_hosts = http://127.0.0.1:9200
   

   Replace http://127.0.0.1:9200 with http://<IP_ADDRESS_OF_YOUR_SERVER>:9200, where <IP_ADDRESS_OF_YOUR_SERVER> is the IP address of your OpenSUSE server.

5. Start Graylog by running the following command:

   sudo systemctl start graylog-server.service
   

6. Verify that Graylog is running by accessing the following URL in your web browser:

   http://<IP_ADDRESS_OF_YOUR_SERVER>:9000/
   

   If Graylog is working properly, you should see the Graylog login page.

Congratulations! You have successfully installed Graylog on OpenSUSE Latest.