diff options
| author | root <root@slamuf.jones.dk> | 2009-03-04 20:03:11 +0100 |
|---|---|---|
| committer | root <root@slamuf.jones.dk> | 2009-03-04 20:03:11 +0100 |
| commit | 685f630a421c28e0f1863f9386c43b55fac36a8e (patch) | |
| tree | f7918bb339a83ab2e39554fbb8f4fbf86529f194 /rsyslog.d/local-gtls-common.conf | |
| parent | 0e86e9149f814cdb30fb5db0f1a1b8bb6d2b6ea3 (diff) | |
Rename rsyslog config snippets for proper load ordering.
Diffstat (limited to 'rsyslog.d/local-gtls-common.conf')
| -rw-r--r-- | rsyslog.d/local-gtls-common.conf | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/rsyslog.d/local-gtls-common.conf b/rsyslog.d/local-gtls-common.conf new file mode 100644 index 0000000..aef8117 --- /dev/null +++ b/rsyslog.d/local-gtls-common.conf @@ -0,0 +1,21 @@ +# enable gtls driver and make it the default +$ModLoad imtcp +$DefaultNetstreamDriver gtls + +# certificate files +$DefaultNetstreamDriverCAFile /etc/ssl/certs/ca-certificates.crt +$DefaultNetstreamDriverCertFile /etc/ssl/certs/rsyslog.pem +$DefaultNetstreamDriverKeyFile /etc/ssl/private/rsyslog.pem + +$InputTCPServerStreamDriverAuthMode x509/name +$InputTCPServerStreamDriverMode 1 # run driver in TLS-only mode + +# sample reception (repeat last line for each client) +#$InputTCPServerRun 514 +#$InputTCPServerStreamDriverPermittedPeer *.example.net + +# sample sending (repeat all lines for each server) +#$ActionSendStreamDriverAuthMode x509/name +#$ActionSendStreamDriverMode 1 # run driver in TLS-only mode +#$ActionSendStreamDriverPermittedPeer central.example.net +#*.* @@central.example.net:514 # forward everything to remote server |