Hello,
First of all, thanks a lot to jasper@ for creating packages for
logstash, much appreciated!
I have a question regarding certificate handling. The
/usr/local/share/examples/logstash-forwarder/logstash-forwarder.conf.example
file contains the following configuration:
===
"ssl certificate": "./lumberjack.crt",
"ssl key": "./lumberjack.key",
"ssl ca": "./lumberjack_ca.crt"
===
It appears to me only "ssl ca" is required to connect to a logstash instance.
Is there a purpose to the cert and key? I would assume this is used for client
authentication, but it does not seem to cause me any problems connecting
without them.
On a similar note, would it be good if the example filenames used in
the lumberjack{} block in logstash.conf used the same file names as is
used in the example logstash-forwarder.conf?
It seems to me the simplest way of solving the certificate stuff is to
generate the key and crt on the logstash host, and then use that same
crt file as the "ssl ca" on the logstash-forwarder host.
--
Patrik Lundin
