--- graylog_version: 3.2.4 graylog_archive_url: https://downloads.graylog.org/releases/graylog/graylog-{{ graylog_version }}.tgz graylog_archive_sha1: 898e1c2665b94adff1b51baa690e48022b8abc5e graylog_root_dir: /opt/graylog graylog_manage_upgrade: True graylog_is_master: True # Additional libs to download graylog_libs: log4j-systemd-journal-appender: version: 2.4.0 sha1: a23b5c723712bfcf41cc3d962ea383c14b1a4532 url: https://repo1.maven.org/maven2/de/bwaldvogel/log4j-systemd-journal-appender/2.4.0/log4j-systemd-journal-appender-2.4.0.jar graylog_plugins: auth-sso: version: 3.2.1 sha1: e0e96424b763c635a1d5456a534704711fb2bbe2 url: https://github.com/Graylog2/graylog-plugin-auth-sso/releases/download/3.2.1/graylog-plugin-auth-sso-3.2.1.jar dnsresolver: version: 1.2.0 sha1: b470bd4b39a22574527e01a943a601c10cc2520b url: https://github.com/graylog-labs/graylog-plugin-dnsresolver/releases/download/1.2.0/graylog-plugin-dnsresolver-1.2.0.jar # Plugins bundled, which should not be removed graylog_plugins_core: - aws - collector - threatintel graylog_plugins_to_install: - auth-sso # A random one will be created is not defined # graylog_pass_secret: # graylog_admin_pass: # 9000 is for the web interface and api, 12201 is the default for gelf HTTP inputs graylog_api_port: 9000 graylog_listeners_http_ports: [12201] graylog_http_ports: "{{ [graylog_api_port] + graylog_listeners_http_ports }}" graylog_http_src_ip: [] # Must match your inputs (eg, syslog/raw) # used to open ports in the firewall graylog_listeners_udp_ports: [514] graylog_listeners_tcp_ports: [514] graylog_listeners_src_ip: [0.0.0.0/0] # graylog_external_uri: https://logs.domain.tld/ graylog_es_hosts: - http://localhost:9200 graylog_es_cluster_name: elasticsearch graylog_mongodb_uri: - mongodb://localhost/graylog # If you want to obtain a cert with dehydrated # it'll be deployed as {{ graylog_root_dir }}/ssl/cert.pem and {{ graylog_root_dir }}/ssl/key.pem # graylog_letsencrypt_cert: graylog.domain.tls