[rsyslog-notify] Forum Thread: Send logs using TCP + TLS - (Mode 'post')
noreply at adiscon.com
noreply at adiscon.com
Thu May 21 15:22:28 CEST 2015
User: Stannieman
Forumlink: http://kb.monitorware.com/viewtopic.php?p=25632#p25632
Message:
----------
Hi,
I am having some troubles with getting TLS to work.
Most guides and examples available implement a CA and have separate private
keys for both the client and the receiving server, however this is more
than I currently need. At this moment I would just like to send over my
logs encrypted without to much verification.
My setup is as follows:
A logstash server listening on TCP port X. In it's input I specified a
private key and cert of the logserver, so it's listening for connections
encrypted using the cert.
Part of the client config currently looks like this:
if $programname == 'Apache' then {
action(Name="ApacheToLogstash"
Type="omfwd"
Target="IPOFLOGSTASH"
Port="X"
Protocol="tcp"
Action.ResumeRetryCount="-1"
queue.Type="LinkedList"
queue.FileName="queueApacheToLogstash"
queue.SaveOnShutdown="on"
queue.MaxDiskSpace="500m")
stop
}
Can someone please help me to get the rsyslog config right so the messages
will be sent to my Logstash server?
Regards,
Stan
More information about the rsyslog-notify
mailing list