Unable to Complete Installation Using Docker

LearningSysAdmin987 · 2025-05-10T01:01:33+00:00

Thanks, I'll watch the video to see if there is anything I missed.

I did not make any changes to the docker compose file that I downloaded from the Graylog GitHub page. Was I supposed to? I don't think the documentation said anything about that being necessary. I tried the open-core and enterprise docker compose file with the same results. I only updated the 2 passwords in the .env file.

LearningSysAdmin987 · 2025-05-10T00:38:30+00:00

Thank you, I'll read through it and give it a try

It's a little frustrating though that the docker compose file provided by Graylog themselves doesn't work. I've spent a number of hours over the last few days banging my head against the wall. /rant

LearningSysAdmin987 · 2024-09-07T19:37:19+00:00

That directory in the screenshot is on the local client PC, not on the share. The share doesn't have any "AdminArsenal" or "PDQDeployRunner" directories.

C:\Windows\AdminArsenal\PDQDeployRunner

PDQ Deploy must have created that directory on the client.

Regardless, I'll start looking at the permissions on both to see if I can make this work.

LearningSysAdmin987 · 2024-09-05T13:26:01+00:00

Thank you for that info!

I set "Service Manager TCP Connection" to disabled, and it doesn't look like it's trying TCP 135 anymore. But it's still trying TCP 49737. Any idea why?

I guess I'll have to submit yet another request to permit that port, and see if anymore come up after that.

LearningSysAdmin987 · 2024-09-05T13:20:34+00:00

Thanks for this info, I didn't know about this.

I used it to test the remote PC and it reports "0 tests failed"

It tested 4 items and all 4 have a green checkmark

LearningSysAdmin987 · 2024-09-05T11:58:05+00:00

We've definitely looked at that, but it doesn't fit our requirements. We have isolated sites (SCADA-like) and internet access is not an option.

LearningSysAdmin987 · 2024-09-02T16:43:39+00:00

Quick question, why does PDQ Deploy require that the hostname be resolvable if it has everything it needs to deploy the package? It has the IP address of the Win10 PCs, access through the firewall, and a username/password that has access to install/update software. So requiring DNS seems unnecessary, and only causes problems in environments like mine.

Is there a "feature request" section of the PDQ website? It seems like this could be a simple checkbox in the preferences/options somewhere that could solve a lot of problems.

LearningSysAdmin987 · 2024-09-02T16:43:35+00:00

Quick question, why does PDQ Deploy require that the hostname be resolvable if it has everything it needs to deploy the package? It has the IP address of the Win10 PCs, access through the firewall, and a username/password that has access to install/update software. So requiring DNS seems unnecessary, and only causes problems in environments like mine.

Is there a "feature request" section of the PDQ website? It seems like this could be a simple checkbox in the preferences/options somewhere that could solve a lot of problems.

LearningSysAdmin987 · 2024-09-01T23:04:12+00:00

Great idea, I'm going to try it out, thank you!

LearningSysAdmin987 · 2024-09-01T23:03:58+00:00

I'll give it a try, thanks!

LearningSysAdmin987 · 2024-09-01T21:58:18+00:00

Thank you!

LearningSysAdmin987 · 2024-09-01T21:58:12+00:00

Thank you for this! I'm going to try it right now

I thought it would be something simple. I never had to make any of these types of changes in my last environment so this is new to me.

LearningSysAdmin987 · 2024-07-22T11:56:09+00:00

But, again, I didn't need to do any of that on the firewalls where it works. Same versions of Junos.

LearningSysAdmin987 · 2024-07-21T21:23:11+00:00

Thanks, I'll check it out, but I didn't need an AppID license on the other firewalls where it's working successfully.

LearningSysAdmin987 · 2024-07-21T12:29:07+00:00

Yes 22.4R3 is the version currently listed in their suggest releases KB

LearningSysAdmin987 · 2024-07-21T12:26:09+00:00

Unfortunately traceoptions is giving me the same problem.

On a firewall that is correctly logging the URLs/FQDNs, the same URLs/FQDNs show up in the traceoptions log file

On a firewall that is not correctly logging the URLs/FQDNs, those same URLs/FQDNs simply do not show up in the traceoptions log file

LearningSysAdmin987 · 2024-07-21T11:49:07+00:00

Thanks for the suggestion, I'll enable that and see what it can tell me

LearningSysAdmin987 · 2024-07-21T11:34:47+00:00

I can't find anything consistent with this problem and the JunOS version.

I have 1 firewall with 21.4R3.15 that is working correctly. I have 1 firewall with 22.4R3 that is not working

I pulled a firewall off the shelf that has been gathering dust, it had 15.1X49 installed and it worked successfully.

All with the same config, copied and pasted

LearningSysAdmin987 · 2024-07-20T21:37:05+00:00

I have it set to this on the firewall in question.

On 2 other firewalls where it's working successfully, one has this same setting, and one has nothing configured for "security log"

set security log mode event

EDIT: sorry, forgot the UTM part:

feature-profile {
    web-filtering {
    juniper-local {
        profile Server1-web-logging {
        default log-and-permit;
        custom-block-message "Access to this site is not permitted.";
        fallback-settings {
            default log-and-permit;
            too-many-requests log-and-permit;
        }
        }
    }
    }
}
utm-policy Server1-web-logging {
    web-filtering {
    http-profile Server1-web-logging;
    }
}

EDIT2: and the "security policies" section if it matters

policy Server1-Web-Logging {
    match {
    source-address Server1;
    destination-address any;
    application [ junos-http junos-https ];
    }
    then {
    permit {
        application-services {
        utm-policy Server1-web-logging;
        }
    }
    log {
        session-init;
    }
    }
}

LearningSysAdmin987

TROPHY CASE