66 lines
2.6 KiB
Plaintext
66 lines
2.6 KiB
Plaintext
##
|
|
## Note, that when the MYSQL, PGSQL, GSSAPI, GnuTLS or SNMP modules
|
|
## (provided in separate rsyslog-module-* packages) are enabled, the
|
|
## configuration can't be used on a system with /usr on a remote
|
|
## filesystem.
|
|
## [The modules are linked against libraries installed bellow of /usr
|
|
## thus also installed in /usr/lib*/rsyslog because of this.]
|
|
##
|
|
## You can change it by adding network-remotefs to the Required-Start
|
|
## and Required-Stop LSB init tags in the /etc/init.d/syslog script.
|
|
##
|
|
|
|
|
|
# Remote Logging (we use TCP for reliable delivery)
|
|
# An on-disk queue is created for this action. If the remote host is
|
|
# down, messages are spooled to disk and sent when it is up again.
|
|
#$WorkDirectory RSYSLOG_SPOOL_DIR # where to place spool files
|
|
#$ActionQueueFileName uniqName # unique name prefix for spool files
|
|
#$ActionQueueMaxDiskSpace 1g # 1gb space limit (use as much as possible)
|
|
#$ActionQueueSaveOnShutdown on # save messages to disk on shutdown
|
|
#$ActionQueueType LinkedList # run asynchronously
|
|
#$ActionResumeRetryCount -1 # infinite retries if host is down
|
|
# remote host is: name/ip:port, e.g. 192.168.0.1:514, port optional
|
|
#*.* @@remote-host
|
|
|
|
|
|
# ######### Receiving Messages from Remote Hosts ##########
|
|
# TCP Syslog Server:
|
|
# provides TCP syslog reception and GSS-API (if compiled to support it)
|
|
#$ModLoad imtcp.so # load module
|
|
# Note: as of now, you need to use the -t command line option to
|
|
# enable TCP reception (e.g. -t514 to run a server at port 514/tcp)
|
|
# This will change in later v3 releases.
|
|
|
|
# UDP Syslog Server:
|
|
#$ModLoad imudp.so # provides UDP syslog reception
|
|
#$UDPServerRun 514 # start a UDP syslog server at standard port 514
|
|
|
|
|
|
########### Encrypting Syslog Traffic with TLS ##########
|
|
# -- TLS Syslog Server:
|
|
## make gtls driver the default
|
|
#$DefaultNetstreamDriver gtls
|
|
#
|
|
## certificate files
|
|
#$DefaultNetstreamDriverCAFile ETC_RSYSLOG_D_DIR/ca.pem
|
|
#$DefaultNetstreamDriverCertFile ETC_RSYSLOG_D_DIR/server_cert.pem
|
|
#$DefaultNetstreamDriverKeyFile ETC_RSYSLOG_D_DIR/server_key.pem
|
|
#
|
|
#$ModLoad imtcp # load TCP listener
|
|
#
|
|
#$InputTCPServerStreamDriverMode 1 # run driver in TLS-only mode
|
|
#$InputTCPServerStreamDriverAuthMode anon # client is NOT authenticated
|
|
#$InputTCPServerRun 10514 # start up listener at port 10514
|
|
#
|
|
# -- TLS Syslog Client:
|
|
## certificate files - just CA for a client
|
|
#$DefaultNetstreamDriverCAFile ETC_RSYSLOG_D_DIR/ca.pem
|
|
#
|
|
## set up the action
|
|
#$DefaultNetstreamDriver gtls # use gtls netstream driver
|
|
#$ActionSendStreamDriverMode 1 # require TLS for the connection
|
|
#$ActionSendStreamDriverAuthMode anon # server is NOT authenticated
|
|
#*.* @@(o)server.example.net:10514 # send (all) messages
|
|
|