Until configuration management systems made their way into broader markets and many data centers, one of the most common ways to install software on Linux servers was to use operating system packages. Debian has DEB
, Red Hat has
, and many other distributions are based on those or come with their own package formats. Online repositories of software packages and corresponding package managers make installing and configuring new software a matter of a single command and a few minutes of time.RPM
Graylog offers official
and DEB
package repositories. The packages have been tested on the following operating systems:RPM
- Debian 10, 11
-
Ubuntu 22.04
-
RHEL/CentOS/AlmaLinux/Rocky Linux 9
The repositories can be set up by installing a single package. Once that’s done, the Graylog packages can be installed via apt-get
or yum
. The packages can also be downloaded with a web browser at https://packages.graylog2.org/ if needed.
Prerequisites
Make sure to install and configure the following software before installing and starting any Graylog services:
- Java 17
- Elasticsearch 7.10.2 OR OpenSearch 2.x
- MongoDB (5.x or 6.x)
Step-by-Step Guides
DEB / APT
Download and install graylog-5.0-repository_latest.deb via dpkg(1)
and also make sure that the apt-transport-https
package is installed:
sudo apt-get install apt-transport-https
wget https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.deb
sudo dpkg -i graylog-5.0-repository_latest.deb
sudo apt-get update
sudo apt-get install graylog-server
Or, if you are installing Graylog Operations, use the following commands:
sudo apt-get install apt-transport-https
wget https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.deb
sudo dpkg -i graylog-5.0-repository_latest.deb
sudo apt-get update
sudo apt-get install graylog-enterprise
After the installation has completed successfully, Graylog can be started with the following commands. Make sure to use the correct command for your operating system.
OS |
Init System |
Command |
---|---|---|
Debian 10 & 11, Ubuntu 22.04 |
systemd |
|
The packages are configured to not start any Graylog services during boot. You can use the following commands to start Graylog when the operating system is booting.
OS |
Init System |
Command |
---|---|---|
Debian 10 & 11, Ubuntu 22.04 |
systemd |
|
Update to Latest Version
If you’ve been using the repository package to install Graylog before, it has to be updated first. The new package will replace the repository URL, without which you will only be able to get bug-fix releases of your previously installed version of Graylog.
The update basically works like a fresh installation:
wget https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.deb
sudo dpkg -i graylog-5.0-repository_latest.deb
sudo apt-get update
sudo apt-get install graylog-server
Or, for Graylog Operations:
wget https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.deb
sudo dpkg -i graylog-5.0-repository_latest.deb
sudo apt-get update
sudo apt-get install graylog-enterprise
Manual Repository Installation
If you'd prefer not to install the repository DEB to get the repository configuration onto your system, you can do so manually (although this is not recommended).
First, add the Graylog GPG keyring which is being used to sign the packages to your system.
/etc/apt/trusted.gpg.d/
.Now create a file /etc/apt/sources.list.d/graylog.list
with the following content:
deb https://packages.graylog2.org/repo/debian/ stable 5.0
RPM / YUM / DNF
Download and install graylog-5.0-repository_latest.rpm via rpm(8)
:
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.rpm
sudo yum install graylog-server
For Graylog Operations, use the following command:
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.rpm
sudo yum install graylog-enterprise
After the installation completes successfully, Graylog can be started with the following commands. Make sure to use the correct command for your operating system.
OS |
Init System |
Command |
---|---|---|
RHEL/CentOS/AlmaLinux/Rocky Linux 9 |
systemd |
|
The packages are configured to not start any Graylog services during boot. You can use the following commands to start Graylog when the operating system is booting.
OS |
Init System |
Command |
---|---|---|
RHEL/CentOS/AlmaLinux/Rocky Linux 9 |
systemd |
|
Update to Latest Version
If you’ve been using the repository package to install Graylog before, it has to be updated first. The new package will replace the repository URL, without which you will only be able to get bug fix releases of your previously installed version of Graylog.
The update basically works like a fresh installation:
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.rpm
sudo yum clean all
sudo yum install graylog-server
Or, for Graylog Operations:
sudo rpm -Uvh https://packages.graylog2.org/repo/packages/graylog-5.0-repository_latest.rpm
sudo yum clean all
sudo yum install graylog-enterprise
Running yum
is required because YUM might use a stale cache and thus might be unable to find the latest version of the clean all
graylog-server
package.
Manual Repository Installation
If you prefer not to install the repository RPM to get the repository configuration onto your system, you can do so manually (although we do not recommend this method).
First, add the Graylog GPG key, which is being used to sign the packages to your system.
/etc/pki/rpm-gpg/RPM-GPG-KEY-graylog
.Now create a file named /etc/yum.repos.d/graylog.repo
with the following content:
[graylog]
name=graylog
baseurl=https://packages.graylog2.org/repo/el/stable/5.0/$basearch/
gpgcheck=1
repo_gpgcheck=0
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-graylog
Feedback
Please file a bug report in the GitHub repository for the operating system packages if you run into any packaging related issues.