Skip to content

Release notes for Graylog shell script, Version 1.5

Latest
Latest
Compare
Choose a tag to compare
@mikael-andre mikael-andre released this 06 Jul 19:44
· 2 commits to devel since this release
v1.5
28f6f2f

New features

IPTables firewall

  • Configure IPTABLES to allow following ports:
    • 22 (TCP): Allow SSH (Secure SHell) connections to the server
    • 443 (TCP): Allow HTTPS (HyperText Transfer Protocol over SSL) connections to the server
    • 514 (TCP and UDP): Allow sending Syslog messages to the server
    • CUSTOM_SYSLOG_PORT (TCP and UDP): Allow sending Syslog messages to the server on user-defined port
    • 162 (UDP): Allow sending SNMPTRAP messages to the server
    • CUSTOM_SNMPTRAP_PORT (UDP): Allow sending SNMPTRAP messages to the server on user-defined port
    • 9200 (TCP): Allow RESTful API (Application Programming Interface) with JSON over HTTP connections to ElasticSearch server
    • 9300 (TCP): Allow Java API connections to ElasticSearch server
    • 9350 (TCP): Allow Java API connections to Graylog server
    • 12900 (TCP): Allow Graylog Front-End server connections over HTTP to Graylog Back-End server
    • Allow already established sessions
    • Allow all traffic on loopback interface lo
    • Allow icmp traffic
    • Reject all traffic with icmp-host-prohibited message
    • Redirect communications on port 514 (TCP and UDP) to CUSTOM_SYSLOG_PORT (TCP and UDP) port
    • Redirect communications on port 162 (UDP) to CUSTOM_SNMPTRAP_PORT (UDP) port
  • Add it on startup (Optional)

SNMP Trap plugin

  • Install SNMP Trap plugin for Graylog

Global variables

  • News
    • MONGO_HOST_NAME only supports IP address or hostname
    • MONGO_PORT_NUMBER only supports port number between 1024 and 65535
    • MONGO_ADMIN_DATABASE only sets in hard code
    • GRAYLOGWEB_HOST_NAME only supports IP address or hostname
    • GRAYLOGWEB_PORT_NUMBER only supports port number between 1024 and 65535
    • BOOLEAN_IPTABLES_ONSTARTUP only supports true or false values
    • DEFAULT_SYSLOG_PORT only sets in hard code
    • CUSTOM_SYSLOG_PORT only supports port number between 1024 and 65535
    • DEFAULT_SNMPTRAP_PORT only sets in hard code
    • CUSTOM_SNMPTRAP_PORT only supports port number between 1024 and 65535
  • Updates
    • Replace MONGODB_ADMIN_DATABASE by MONGO_ADMIN_DATABASE

Fix

Bugs

Updates

  • In get_sysinfo function, support following CentOS versions:
    • 6.5
    • 6.6
    • 6.7
  • In configure_yum function, change URL of following repositories:
    • ElasticSearch (version 1.7)
    • Mongo (stable version)
    • Graylog Server (version 1.2)
    • Graylog Web (version 1.2)
    • Nginx (stable version)
  • In set_globalvariables and verify_globalvariables functions, support localhost value for the following variables:
    • NEW_NTP_ADDRESS
    • MONGO_HOST_NAME
    • GRAYLOGWEB_HOST_NAME
    • SMTP_HOST_NAME
  • In install_networkpackages, install following RPM packages:
    • net-snmp
    • net-snmp-utils
  • Change color of message when users disable it on startup in following functions:
    • install_mongodb
    • install_elasticsearch
    • install_graylogserver
    • install_graylogwebgui
    • install_nginx
  • In install_graylogserver function:
    • change connection method to Mongo Database server using variable mongodb_uri
    • Delete Java inline parameters -XX:PermSize=128m -XX:MaxPermSize=256m
  • In install_graylogwebgui function:
    • Add Java inline parameters -Dhttp.address=${GRAYLOGWEB_HOST_NAME} and -Dhttp.port=${GRAYLOGWEB_PORT_NUMBER}
  • In install_nginx function:
    • Change variable BOOLEAN_GRAYLOGSERVER_ONSTARTUP by BOOLEAN_NGINX_ONSTARTUP
    • Use global variables GRAYLOGWEB_HOST_NAME and GRAYLOGWEB_PORT_NUMBER
Assets 2
Loading