Hi there, I need to set up some remote log forwarding - a bunch of dev machines behind a firewall forward logs to a logserver, which in turn forwards the logs it gets to an external log server.
I've successfully got log forwarding working from the dev hosts to the first log server using plain TCP, but i'd like to use TLS to get the logs from the first to the external log server. When I try with my current configs I get a segfault! :( Debug files are available if they'd help, but they are huge. config files: tcp listener on the first logserver #Load tcp module $modload imtcp # and run it, listening on port 10514 $InputTCPServerRun 10514 tls sending config: # make gtls driver the default $DefaultNetstreamDriver gtls # certificate files $DefaultNetstreamDriverCAFile /etc/rsyslog.d/ca.pem $DefaultNetstreamDriverCertFile /etc/rsyslog.d/client-cert.pem $DefaultNetstreamDriverKeyFile /etc/rsyslog.d/client-key.pem $ActionSendStreamDriverAuthMode x509/name $ActionSendStreamDriverPermittedPeer *.domainname.com $ActionSendStreamDriverMode 1 # run driver in TLS-only mode *.* @@external.logserver.domainname.com:10514 # send (all) messages So far I've been able to get these working independently, but not together. rsyslog version: rsyslog 4.2.0-2ubuntu8.1 (lucid) $ rsyslogd -v rsyslogd 4.2.0, compiled with: FEATURE_REGEXP: Yes FEATURE_LARGEFILE: Yes FEATURE_NETZIP (message compression): Yes GSSAPI Kerberos 5 support: Yes FEATURE_DEBUG (debug build, slow code): No Atomic operations supported: Yes Runtime Instrumentation (slow code): No (I've posted this to the forums, but haven't had much in the way of response) Any suggestions or help is appreciated! -- // Mike GPG: BFC7 3F32 2CCF D91F 53E1 DF88 1578 B2E4 1399 6844 _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com
