1 files changed, 18 insertions, 3 deletions

diff --git a/rsyslog.d/local-gtls-send.conf b/rsyslog.d/local-gtls-send.conf
index e692b07..b3ec4a4 100644
--- a/rsyslog.d/local-gtls-send.conf
+++ b/rsyslog.d/local-gtls-send.conf
@@ -1,6 +1,21 @@
+# client sending
+
+# run driver in TLS-only mode
+$ActionSendStreamDriverMode 1
+
+# enable only one of below authentication schemes
+
+# client is NOT authenticated
+# (client needs only CAFile certificate)
+#$ActionSendStreamDriverAuthMode anon
+
 # restrict access based on server certificate
-# (repeat all lines for each server)
+# (adjust Peer line as needed)
 #$ActionSendStreamDriverAuthMode x509/name
-#$ActionSendStreamDriverMode 1 # run driver in TLS-only mode
 #$ActionSendStreamDriverPermittedPeer central.example.net
-#*.* @@central.example.net:514 # forward everything to remote server
+
+# forward everything to remote server
+# (adjust as needed)
+#*.* @@central.example.net:10514
+
+# (repeat all above lines for each restricted server, not just last two)