Coder Social home page Coder Social logo

graylog-ready-to-go-compose's Introduction

Graylog Project with Docker Compose behind Traefik Reverse Proxy for TLS

Initial Step

Self-signed certificate without SAN (Subject Alternative Name) is not valid anymore. You will need to generate one for graylog to access it securely.

  1. Generate a Private Key
openssl genrsa -out graylog.lab.lan_withPass.key 2048
  1. Generate a CSR (Certificate Signing Request)
openssl req -new -key graylog.lab.lan_withPass.key -out graylog.lab.lan.csr

Common Name: choose graylog.lab.lan Leave blank for challenge password.

  1. Remove Passphrase from Key
openssl rsa -in graylog.lab.lan_withPass.key -out graylog.lab.lan.key && rm -rf graylog.lab.lan_withPass.key
  1. Create config file for SAN
cat <<EOF > v3.ext
subjectKeyIdentifier   = hash
authorityKeyIdentifier = keyid:always,issuer:always
basicConstraints       = CA:TRUE
keyUsage               = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment, keyAgreement, keyCertSign
subjectAltName         = DNS:graylog.lab.lan
issuerAltName          = issuer:copy
EOF
  1. Generating a Self-Signed Certificate
openssl x509 -req -in graylog.lab.lan.csr -signkey graylog.lab.lan.key -out graylog.lab.lan.crt -days 365 -sha256 -extfile v3.ext && rm -rf v3.ext graylog.lab.lan.csr

Move the two files into secrets/traefik

Start the compose

Download this project and start the docker compose with the command below

docker compose up -d

docker ps to display status

CONTAINER ID   IMAGE                                 COMMAND                  CREATED       STATUS                PORTS               NAMES
077ed8773efd   traefik:2.10.7                        "/entrypoint.sh --pr…"   3 days ago    Up 3 days             80/tcp, 0.0.0.0:443->443/tcp, :::443->443/tcp     graylog-reverse-proxy-1
3d1a08399205   graylog/graylog:5.2.2                 "/usr/bin/tini -- wa…"   3 days ago    Up 2 days (healthy)   0.0.0.0:1514-1515->1514-1515/tcp, :::1514-1515->1514-1515/tcp, 0.0.0.0:1514->1514/udp, :::1514->1514/udp, 0.0.0.0:5044->5044/tcp, :::5044->5044/tcp, 9000/tcp graylog-graylog-1
c055f448a399   opensearchproject/opensearch:2.11.0   "./opensearch-docker…"   2 weeks ago   Up 2 weeks            9300/tcp, 9600/tcp, 0.0.0.0:9200->9200/tcp, :::9200->9200/tcp, 9650/tcp  graylog-opensearch-1
162fa8f6b746   mongo:6.0.11                          "docker-entrypoint.s…"   2 weeks ago   Up 2 weeks            27017/tcp        graylog-mongo-1

You can now access your Graylog instance from: https://graylog.lab.lan !

Reference

graylog-ready-to-go-compose's People

Contributors

s0p4l1n3 avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.