Yes, I did. On Sat, Sep 15, 2018, 10:16 PM Joe Blow <[email protected]> wrote:
> Did you read the link? It has mention of being able to use GTLS in > protocol. > > <snip> > > StreamDriver > <https://www.rsyslog.com/doc/v8-stable/configuration/modules/omfwd.html#streamdriver> > type default mandatory obsolete legacy directive > word none no $ActionSendStreamDriver > > Choose the stream driver to be used. Default is plain tcp, but you can > also choose “ossl” or “gtls” for TLS encryption. > </snip> > > Cheers, > > JB > > On Sat, Sep 15, 2018 at 10:48 AM Muhammad Asif <[email protected]> > wrote: > >> Hi, >> No friend. We are using java keystore and truststore on server. Can we >> use gtls in omfwd. >> >> On Sat, Sep 15, 2018, 6:35 PM Joe Blow <[email protected]> wrote: >> >>> Can you use RELP? If so, this should work: >>> >>> action(type="omrelp" >>> target="1.1.1.1" >>> port="20514" >>> tls="on" >>> tls.caCert="/root/certs/ca.pem" >>> tls.myCert="/root/certs/fe-cert.pem" >>> tls.myPrivKey="/root/certs/fe-key.pem" >>> tls.authmode="name" >>> tls.permittedpeer=["your.permitted.peer"] >>> queue.type="linkedlist" >>> queue.filename="rsyslog.rsysq" >>> queue.maxdiskspace="20g" >>> queue.maxfilesize="2048m" >>> queue.saveonshutdown="on" >>> action.resumeretrycount="-1" >>> ) >>> >>> >>> action(type="omrelp" >>> target="2.2.2.2" >>> port="10514" >>> tls="on" >>> tls.caCert="/root/other_certs/ca.pem" >>> tls.myCert="/root/other_certs/fe-cert.pem" >>> tls.myPrivKey="/root/other_certs/fe-key.pem" >>> tls.authmode="name" >>> tls.permittedpeer=["your.permitted.peer"] >>> queue.type="linkedlist" >>> queue.filename="rsyslog.rsysq" >>> queue.maxdiskspace="20g" >>> queue.maxfilesize="2048m" >>> queue.saveonshutdown="on" >>> action.resumeretrycount="-1" >>> ) >>> >>> I'd suggest leaving those legacy directives in the past. The new action >>> directives are easier to use, but just take a little getting used to. Look >>> at omfwd if you don't want to use relp, the directives will be very similar. >>> >>> https://www.rsyslog.com/doc/v8-stable/configuration/modules/omfwd.html >>> >>> Cheers, >>> >>> JB >>> >>> On Sat, Sep 15, 2018 at 7:50 AM Muhammad Asif via rsyslog < >>> [email protected]> wrote: >>> >>>> Hi Geeks, >>>> >>>> My rsyslog server need to send logs to two different servers from same >>>> directory. Problem is certificate (.pem file) is different for both >>>> receiving servers. How can i achieve that. >>>> To send one server, I am doing like this. >>>> >>>> $DefaultNetstreamDriver gtls >>>> $DefaultNetstreamDriverCAFile /etc/pki/rsyslog/collector.pem >>>> $ActionSendStreamDriverAuthMode anon >>>> $ActionSendStreamDriverMode 1 >>>> >>>> >>>> $template msgonly,"%msg%\n" >>>> module(load="imfile" PollingInterval="10") >>>> >>>> input(type="imfile" File="/opt/adap/out/*.log" Tag="") >>>> >>>> *.* @@172.20.16.45:5170;msgonly >>>> >>>> >>>> Regards >>>> Asif >>>> _______________________________________________ >>>> rsyslog mailing list >>>> http://lists.adiscon.net/mailman/listinfo/rsyslog >>>> http://www.rsyslog.com/professional-services/ >>>> What's up with rsyslog? Follow https://twitter.com/rgerhards >>>> NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a >>>> myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if >>>> you DON'T LIKE THAT. >>>> >>> _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
