Fix rsyslog-gnutls config files and improve comments.

author: root <root@slamuf.jones.dk> 2009-09-13 22:39:50 +0200
committer: root <root@slamuf.jones.dk> 2009-09-13 22:39:50 +0200
commit: fad935026196426beb9ddbc76abe97a744417b9e (patch)
tree: e1c86d6f5281d6c713f6bb5c4accce7f83b8da75 /rsyslog.d/local-gtls-receive.conf
parent: 876557dbdfbd4b03043dacc84d202d61ba794054 (diff)
1 files changed, 18 insertions, 2 deletions
diff --git a/rsyslog.d/local-gtls-receive.conf b/rsyslog.d/local-gtls-receive.conf
index b17d55a..1427da1 100644
--- a/rsyslog.d/local-gtls-receive.conf
+++ b/rsyslog.d/local-gtls-receive.conf
@@ -1,5 +1,21 @@
-# enable gtls reception
-$InputTCPServerRun 514
+# server reception
+
+# load support for tcp-based network reception
+$ModLoad imtcp
+
+# run driver in TLS-only mode
+$InputTCPServerStreamDriverMode 1
+
+# enable only one of below authentication schemes
+
+# client is NOT authenticated
+#$InputTCPServerStreamDriverAuthMode anon
 
 # restrict access based on client certificate
+# (adjust and add Peer lines as needed)
+$InputTCPServerStreamDriverAuthMode x509/name
 #$InputTCPServerStreamDriverPermittedPeer *.example.net
+#$InputTCPServerStreamDriverPermittedPeer foo.example.org
+
+# enable gtls reception
+$InputTCPServerRun 10514
author	root <root@slamuf.jones.dk>	2009-09-13 22:39:50 +0200
committer	root <root@slamuf.jones.dk>	2009-09-13 22:39:50 +0200
commit	fad935026196426beb9ddbc76abe97a744417b9e (patch)
tree	e1c86d6f5281d6c713f6bb5c4accce7f83b8da75 /rsyslog.d/local-gtls-receive.conf
parent	876557dbdfbd4b03043dacc84d202d61ba794054 (diff)