AlmaLinux9.3下使用一键安装脚本安装GrayLog5.1.11版本

yuanfan2012

发布于 2024-03-21 09:20:49

30700

代码可运行

文章被收录于专栏：WalkingCloudWalkingCloud

运行总次数：0

代码可运行

AlmaLinux9.3下使用一键安装脚本安装GrayLog5.1.11版本

考虑到CentOS7即将EOL，现使用AlmaLinux9.3版本进行安装部署GrayLog5.1.11 具体步骤如下

1、AlmaLinux9.3镜像下载

https://almalinux.org/get-almalinux/

(图片点击放大查看)

建议使用种子下载9.3镜像

https://repo.almalinux.org/almalinux/9.3/isos/x86_64/AlmaLinux-9.3-x86_64.torrent

2、系统安装

安装步骤较简单，安装过程截图如下

(图片点击放大查看)

(图片点击放大查看)

(图片点击放大查看)

(图片点击放大查看)

(图片点击放大查看)

(图片点击放大查看)

3、根据Graylog5.1X版本的安装包要求下载相关的rpm安装包

版本兼容性适配表

https://go2docs.graylog.org/5-2/downloading_and_installing_graylog/installing_graylog.html

(图片点击放大查看)

https://repo.mongodb.org/yum/redhat/9/mongodb-org/6.0/x86_64/RPMS/
https://packages.graylog2.org/repo/el/stable/5.1/x86_64/graylog-server-5.1.11-1.x86_64.rpm

(图片点击放大查看)

(图片点击放大查看)

(图片点击放大查看)

4、在RHEL9.3下使用GrayLog5.1.11版本一键安装脚本进行安装

GrayLogServer5.1.11_install.sh 脚本如下

#!/bin/bash
#关闭SELINUX
sed -i 's/enforcing/disabled/g' /etc/selinux/config
setenforce 0
#解压安装包
mkdir -p /opt/GrayLog_install
tar -zxvf ./GrayLog5.1.11_MongoDB6.0_opensearch2.5_EL9_RPM.tar.gz -C /opt/GrayLog_install
cat > /etc/yum.repos.d/mongodb-org.repo << \EOF
[mongodb-org-6.0]
name=MongoDB Repository
baseurl=https://repo.mongodb.org/yum/redhat/9/mongodb-org/6.0/x86_64/
gpgcheck=0
enabled=1
gpgkey=https://pgp.mongodb.com/server-6.0.asc
EOF
cd /opt/GrayLog_install
#安装mongodb-server服务
rpm -ivh cyrus-sasl*.rpm
rpm -ivh mongodb*.rpm

#启动mongodb-server服务
systemctl daemon-reload
systemctl enable mongod.service
systemctl start mongod.service
systemctl --type=service --state=active | grep mongod
firewall-cmd --add-port=27017/tcp --permanent --zone=public 
firewall-cmd --reload 

#安装opensearch
rpm -ivh /opt/GrayLog_install/opensearch-2.5.0-linux-x64.rpm
#单独的/data目录下创建目录用于存放opensearch数据
mkdir -p /data/opensearch/data
mkdir -p /data/opensearch/logs
chown -R opensearch /data/opensearch
sysctl -w vm.max_map_count=262144
echo 'vm.max_map_count=262144' >> /etc/sysctl.conf


cp /etc/opensearch/opensearch.yml /etc/opensearch/opensearch.yml_default
#修改opensearch相关配置文件
sed -i "s@#cluster.name: my-application@cluster.name: graylog@g" /etc/opensearch/opensearch.yml
sed -i "s@#node.name: node-1@node.name: graylog@g" /etc/opensearch/opensearch.yml
sed -i "s#path.data: /var/lib/opensearch#path.data: /data/opensearch/data#g" /etc/opensearch/opensearch.yml
sed -i "s#path.logs: /var/log/opensearch#path.logs: /data/opensearch/logs#g" /etc/opensearch/opensearch.yml
sed -i "s@#network.host: 192.168.0.1@network.host: 0.0.0.0@g" /etc/opensearch/opensearch.yml
echo "discovery.type: single-node" >> /etc/opensearch/opensearch.yml
echo "action.auto_create_index: false" >> /etc/opensearch/opensearch.yml
echo "plugins.security.disabled: true" >> /etc/opensearch/opensearch.yml

#修改JVM内存大小
sed -i "s/-Xms1g/-Xms4g/g" /etc/opensearch/jvm.options
sed -i "s/-Xmx1g/-Xmx4g/g" /etc/opensearch/jvm.options
#启动opensearch服务
systemctl daemon-reload
systemctl enable opensearch.service
systemctl restart opensearch.service
firewall-cmd --add-port=9200/tcp --permanent --zone=public 
firewall-cmd --reload 
curl -s -XGET 'http://127.0.0.1:9200/_cluster/health?pretty=true'
curl -s -XGET 'http://127.0.0.1:9200/_cat/nodes?v'
#安装graylog-server服务
rpm -ivh  /opt/GrayLog_install/graylog-server-5.1.11-1.x86_64.rpm
cp /etc/graylog/server/server.conf /etc/graylog/server/server.conf_default
#修改graylog-server相关配置文件
sed -i "s/password_secret =/password_secret = 0pAHJtPdZZUb5yHAvFbBezbWAlQwh9CbRX1rshJEVxM0kV7t0SpIgY5q9tLpVEwWLElhG3EtbvQ03mTm9i0HuvWKwlWgWiIJ/g" /etc/graylog/server/server.conf
sed -i "s/root_password_sha2 =/root_password_sha2 = 429d280c5ddad83d94770b077b22124231efc727d504b107883297304b3e2939/g" /etc/graylog/server/server.conf
sed -i "s@#root_timezone = UTC@root_timezone = Asia/Shanghai@g" /etc/graylog/server/server.conf
sed -i "s@#http_bind_address = 127.0.0.1:9000@http_bind_address = 0.0.0.0:9000@g" /etc/graylog/server/server.conf
sed -i "s/allow_highlighting = false/allow_highlighting = true/g" /etc/graylog/server/server.conf
#修改graylog-server启动时JVM内存大小
sed -i "s/-Xms1g -Xmx1g/-Xms2g -Xmx2g/g" /etc/sysconfig/graylog-server

firewall-cmd --add-port=9000/tcp --permanent --zone=public 
firewall-cmd --reload
#启动graylog-server服务
systemctl daemon-reload
systemctl restart graylog-server
systemctl enable graylog-server

使用该一键脚本的安装过程如下

Activate the web console with: systemctl enable --now cockpit.socket

Last login: Sun Mar  3 21:15:06 2024 from 192.168.31.100
[root@almalinux ~]# 
[root@almalinux ~]# ls
anaconda-ks.cfg  GrayLog5.1.11_MongoDB6.0_opensearch2.5_EL9_RPM.tar.gz  GrayLogServer5.1.11_install.sh
[root@almalinux ~]# ll
total 1140572
-rw-------. 1 root root       1359 Mar  3 21:08 anaconda-ks.cfg
-rw-r--r--  1 root root 1167934510 Mar  3 22:57 GrayLog5.1.11_MongoDB6.0_opensearch2.5_EL9_RPM.tar.gz
-rw-r--r--  1 root root       3574 Mar  3 23:00 GrayLogServer5.1.11_install.sh
[root@almalinux ~]# sh GrayLogServer5.1.11_install.sh 
setenforce: SELinux is disabled
cyrus-sasl-2.1.27-21.el9.x86_64.rpm
graylog-server-5.1.11-1.x86_64.rpm
mongodb-database-tools-100.9.4.x86_64.rpm
mongodb-mongosh-2.1.5.x86_64.rpm
mongodb-org-6.0.14-1.el9.x86_64.rpm
mongodb-org-database-6.0.14-1.el9.x86_64.rpm
mongodb-org-database-tools-extra-6.0.14-1.el9.x86_64.rpm
mongodb-org-mongos-6.0.14-1.el9.x86_64.rpm
mongodb-org-server-6.0.14-1.el9.x86_64.rpm
mongodb-org-tools-6.0.14-1.el9.x86_64.rpm
opensearch-2.5.0-linux-x64.rpm
warning: cyrus-sasl-2.1.27-21.el9.x86_64.rpm: Header V4 RSA/SHA256 Signature, key ID b86b3716: NOKEY
Verifying...                          ################################# [100%]
Preparing...                          ################################# [100%]
Updating / installing...
   1:cyrus-sasl-2.1.27-21.el9         ################################# [100%]
warning: mongodb-database-tools-100.9.4.x86_64.rpm: Header V4 RSA/SHA256 Signature, key ID 64c3c388: NOKEY
Verifying...                          ################################# [100%]
Preparing...                          ################################# [100%]
Updating / installing...
   1:mongodb-org-database-tools-extra-################################# [ 13%]
   2:mongodb-org-server-6.0.14-1.el9  ################################# [ 25%]
Created symlink /etc/systemd/system/multi-user.target.wants/mongod.service → /usr/lib/systemd/system/mongod.service.
   3:mongodb-org-mongos-6.0.14-1.el9  ################################# [ 38%]
   4:mongodb-org-database-6.0.14-1.el9################################# [ 50%]
   5:mongodb-mongosh-2.1.5-1.el8      ################################# [ 63%]
   6:mongodb-database-tools-100.9.4-1 ################################# [ 75%]
   7:mongodb-org-tools-6.0.14-1.el9   ################################# [ 88%]
   8:mongodb-org-6.0.14-1.el9         ################################# [100%]
  mongod.service                                                                            loaded active running MongoDB Database Server
success
success
warning: /opt/GrayLog_install/opensearch-2.5.0-linux-x64.rpm: Header V4 RSA/SHA512 Signature, key ID 9310d3fc: NOKEY
Verifying...                          ################################# [100%]
Preparing...                          ################################# [100%]
Updating / installing...
   1:opensearch-2.5.0-1               ################################# [100%]
/usr/lib/tmpfiles.d/opensearch.conf:1: Line references path below legacy directory /var/run/, updating /var/run/opensearch → /run/opensearch; please update the tmpfiles.d/ drop-in file accordingly.
### NOT starting on installation, please execute the following statements to configure opensearch service to start automatically using systemd
 sudo systemctl daemon-reload
 sudo systemctl enable opensearch.service
### You can start opensearch service by executing
 sudo systemctl start opensearch.service
### Create opensearch demo certificates in /etc/opensearch/
 See demo certs creation log in /var/log/opensearch/install_demo_configuration.log
/usr/lib/tmpfiles.d/opensearch.conf:1: Line references path below legacy directory /var/run/, updating /var/run/opensearch → /run/opensearch; please update the tmpfiles.d/ drop-in file accordingly.
vm.max_map_count = 262144
Created symlink /etc/systemd/system/multi-user.target.wants/opensearch.service → /usr/lib/systemd/system/opensearch.service.
success
success
{
  "cluster_name" : "graylog",
  "status" : "green",
  "timed_out" : false,
  "number_of_nodes" : 1,
  "number_of_data_nodes" : 1,
  "discovered_master" : true,
  "discovered_cluster_manager" : true,
  "active_primary_shards" : 0,
  "active_shards" : 0,
  "relocating_shards" : 0,
  "initializing_shards" : 0,
  "unassigned_shards" : 0,
  "delayed_unassigned_shards" : 0,
  "number_of_pending_tasks" : 0,
  "number_of_in_flight_fetch" : 0,
  "task_max_waiting_in_queue_millis" : 0,
  "active_shards_percent_as_number" : 100.0
}
ip            heap.percent ram.percent cpu load_1m load_5m load_15m node.role node.roles                                        cluster_manager name
192.168.31.54            2          98  24    1.45    0.55     0.20 dimr      cluster_manager,data,ingest,remote_cluster_client *               graylog
warning: /opt/GrayLog_install/graylog-server-5.1.11-1.x86_64.rpm: Header V4 RSA/SHA256 Signature, key ID b1606f22: NOKEY
Verifying...                          ################################# [100%]
Preparing...                          ################################# [100%]
Updating / installing...
   1:graylog-server-5.1.11-1          ################################# [100%]
################################################################################
Graylog does NOT start automatically!

Please run the following commands if you want to start Graylog automatically on system boot:

    sudo systemctl enable graylog-server.service

    sudo systemctl start graylog-server.service

################################################################################
success
success
Created symlink /etc/systemd/system/multi-user.target.wants/graylog-server.service → /usr/lib/systemd/system/graylog-server.service.
[root@almalinux ~]#