Did you read the link? It has mention of being able to use GTLS in protocol.
<snip> StreamDriver <https://www.rsyslog.com/doc/v8-stable/configuration/modules/omfwd.html#streamdriver> type default mandatory obsolete legacy directive word none no $ActionSendStreamDriver Choose the stream driver to be used. Default is plain tcp, but you can also choose “ossl” or “gtls” for TLS encryption. </snip> Cheers, JB On Sat, Sep 15, 2018 at 10:48 AM Muhammad Asif <[email protected]> wrote: > Hi, > No friend. We are using java keystore and truststore on server. Can we use > gtls in omfwd. > > On Sat, Sep 15, 2018, 6:35 PM Joe Blow <[email protected]> wrote: > >> Can you use RELP? If so, this should work: >> >> action(type="omrelp" >> target="1.1.1.1" >> port="20514" >> tls="on" >> tls.caCert="/root/certs/ca.pem" >> tls.myCert="/root/certs/fe-cert.pem" >> tls.myPrivKey="/root/certs/fe-key.pem" >> tls.authmode="name" >> tls.permittedpeer=["your.permitted.peer"] >> queue.type="linkedlist" >> queue.filename="rsyslog.rsysq" >> queue.maxdiskspace="20g" >> queue.maxfilesize="2048m" >> queue.saveonshutdown="on" >> action.resumeretrycount="-1" >> ) >> >> >> action(type="omrelp" >> target="2.2.2.2" >> port="10514" >> tls="on" >> tls.caCert="/root/other_certs/ca.pem" >> tls.myCert="/root/other_certs/fe-cert.pem" >> tls.myPrivKey="/root/other_certs/fe-key.pem" >> tls.authmode="name" >> tls.permittedpeer=["your.permitted.peer"] >> queue.type="linkedlist" >> queue.filename="rsyslog.rsysq" >> queue.maxdiskspace="20g" >> queue.maxfilesize="2048m" >> queue.saveonshutdown="on" >> action.resumeretrycount="-1" >> ) >> >> I'd suggest leaving those legacy directives in the past. The new action >> directives are easier to use, but just take a little getting used to. Look >> at omfwd if you don't want to use relp, the directives will be very similar. >> >> https://www.rsyslog.com/doc/v8-stable/configuration/modules/omfwd.html >> >> Cheers, >> >> JB >> >> On Sat, Sep 15, 2018 at 7:50 AM Muhammad Asif via rsyslog < >> [email protected]> wrote: >> >>> Hi Geeks, >>> >>> My rsyslog server need to send logs to two different servers from same >>> directory. Problem is certificate (.pem file) is different for both >>> receiving servers. How can i achieve that. >>> To send one server, I am doing like this. >>> >>> $DefaultNetstreamDriver gtls >>> $DefaultNetstreamDriverCAFile /etc/pki/rsyslog/collector.pem >>> $ActionSendStreamDriverAuthMode anon >>> $ActionSendStreamDriverMode 1 >>> >>> >>> $template msgonly,"%msg%\n" >>> module(load="imfile" PollingInterval="10") >>> >>> input(type="imfile" File="/opt/adap/out/*.log" Tag="") >>> >>> *.* @@172.20.16.45:5170;msgonly >>> >>> >>> Regards >>> Asif >>> _______________________________________________ >>> rsyslog mailing list >>> http://lists.adiscon.net/mailman/listinfo/rsyslog >>> http://www.rsyslog.com/professional-services/ >>> What's up with rsyslog? Follow https://twitter.com/rgerhards >>> NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad >>> of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you >>> DON'T LIKE THAT. >>> >> _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
