Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            How to Restart Gravwell Services

            Modified on Wed, 25 Jun at 2:51 PM

            If you need to restart a Gravwell service,  such as to apply changes to a config file or bring online a new listener,  the process is pretty simple and straightforward.    Gravwell's installers include the required Systemd unit files which will allow you to manage the processes via the Standard Linux systemctl process.


            Each Gravwell process can be stopped, started, or restarted individually,  or by specifying multiple services in a single CLI command.  


            sudo systemctl start <Gravwell Service(s)>
            sudo systemctl stop <Gravwell Service(s)>
            sudo systemctl restart <Gravwell Service(s)>


            You may also check the status of a Gravwell service with systemctl to ensure the process restarted successfully and is in a running state.


            sudo systemctl status <Gravwell Service(s)>


            Windows ingester services can also be managed via the Windows Service Manager.



            Troubleshooting


            If a service fails to start,  the Crash Reporter will output a crash log into the /opt/gravwell/log/crash directory.   Check this location for the timestamped logs of the specific Gravwell Service that failed and you can locate error messages associate with the process failure.  Common issues can include syntax errors, typos,  or problems binding to a port.



            Gravwell Services


            Gravwell ComponentGravwell Service Name
            Indexergravwell_indexer
            Webservergravwell_webserver
            Simple Relaygravwell_simple_relay
            Federatorgravwell_federator
            Search Agentgravwell_searchagent
            Datastoregravwell_datastore
            Netflow Capturegravwell_netflow_capture
            Network Capture (pcap)gravwell_network_capture
            Collectdgravwell_collectd
            File Followgravwell_file_follow
            Http Ingestergravwell_http_ingester
            Ipmigravwell_ipmi
            Kafka Federatorgravwell_kafka_federator
            Kafka Ingestergravwell_kafka
            Kinesisgravwell_kinesis
            Gravwell Loadbalancergravwell_loadbalancer
            MSGraphgravwell_msgraph
            Office 365gravwell_o365
            Offline Replicationgravwell_offline_replication
            Packet Fleetgravwell_packet_fleet
            PubSubgravwell_pubsub
            S3 Ingestergravwell_s3
            Shodangravwell_shodan
            SNMP Trap Ingestergravwell_snmp
            Amazon SQS Ingestergravwell_sqs

            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0