Ansible roles
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

65 lines
1.7 KiB

---
graylog_version: 4.0.1
graylog_archive_url: https://downloads.graylog.org/releases/graylog/graylog-{{ graylog_version }}.tgz
graylog_archive_sha1: 29ea1884cf67267692abab1d61600e41e3903570
graylog_root_dir: /opt/graylog
graylog_manage_upgrade: True
graylog_is_master: True
# Additional libs to download
graylog_libs: {}
graylog_plugins: []
# Plugins bundled, which should not be removed
graylog_plugins_core:
- aws
- collector
- threatintel
graylog_plugins_to_install: []
# A random one will be created is not defined
# graylog_pass_secret:
# graylog_admin_pass:
# 9000 is for the web interface and api, 12201 is the default for gelf HTTP inputs
graylog_api_port: 9000
graylog_listeners_http_ports: [12201]
graylog_http_ports: "{{ [graylog_api_port] + graylog_listeners_http_ports }}"
graylog_http_src_ip: []
# Must match your inputs (eg, syslog/raw)
# used to open ports in the firewall
graylog_listeners_udp_ports: [514]
graylog_listeners_tcp_ports: [514]
graylog_listeners_src_ip: [0.0.0.0/0]
# graylog_external_uri: https://logs.domain.tld/
graylog_es_hosts:
- http://localhost:9200
graylog_es_cluster_name: elasticsearch
graylog_mongodb_uri:
- mongodb://localhost/graylog
# Max size of Graylog journal, in GB
graylog_journal_max_size: 5
# If you want to obtain a cert with dehydrated
# it'll be deployed as {{ graylog_root_dir }}/ssl/cert.pem and {{ graylog_root_dir }}/ssl/key.pem
# graylog_letsencrypt_cert: graylog.domain.tls
# If set, will populate enabled_tls_protocols
# on el7, TLSv1.3 seems to break filebeat connections, so, just enable TLSv1.2
graylog_tls_versions:
- TLSv1.2
# Mem to allocate to the JVM (Xmx / Xms)
graylog_jvm_mem: 2g
# Version of the Elasticsearch server
# graylog_es_version: 6