your message is badly linewrapped, can you please try again?
also note that while you can ping between the systems, that doesn't mean that
port 514 (TCP or UDP) can get through, either due to firewalls at the network
layer or iptables on the systems
David Lang
On Tue, 28 May 2024, Kathy Lyons via rsyslog wrote:
Date: Tue, 28 May 2024 17:34:59 -0400
From: Kathy Lyons via rsyslog <rsyslog@lists.adiscon.com>
To: rsyslog@lists.adiscon.com
Cc: Kathy Lyons <lyonsf...@gmail.com>
Subject: [rsyslog] unencrypted rsyslog through a wireguard terminal
We have a server and two clients with wireguard on them. The server is
10.10.10.1, the first client is 10.10.10.2 and the second client is
10.10.10.3. The tunnel works and I can ping from server -> clients and vice
versa.
I now want to send logs from both clients to the server. The server then
forwards all logs to another server. For the rsyslog portion, I do not need
or want data traversing the tunnel to be encrypted. As of now I cannot get an
established, unencrypted TCP connection from either client to the server.
Here are my configs - what am I doing wrong?
*Server:*
|global(defaultNetStreamDriver="ptcp") - I've tried both with and without
this line $ModLoad imtcp $InputTCPServerStreamDriverAuthMode anon
$InputTCPServerStreamDriverMode 0 $InputTCPServerRun 6514 $template LDSTag,
"<%PRI>%TIMESTAMP [nameofsystem] %syslog% %msg%" # 10.50.x.x is where the
server sends its local data and that of the clients via udp port 514 if
$fromhost-ip <> '127.0.0.1' then @10.50.x.x;LDSTag &stop
auth.*;authpriv.*;cron.*;daemon.*;kern.*;local0.*;local4.* @10.50.x.x;LDSTag
|
*Here is my client setup:*
|global(defaultNetStreamDriver="ptcp") - I've tried both with and without
this line $ModLoad imtcp $template LDSTag,"<%PRI>%TIMESTAMP [PUBLIC_IP]
%syslog% %msg%" #Send Settings $ActionWriteAllMarkMessages on
$ActionSendStreamDriverPermittedPeer "10.10.10.1" $ActionSendStreamDriverMode
0 auth.*;authpriv.*;cron.*;daemon.*;kern.*;local0.*;local4.*
@@10.10.10.10.1:6514;LDSTmpl |
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T
LIKE THAT.
_______________________________________________
rsyslog mailing list
https://lists.adiscon.net/mailman/listinfo/rsyslog
http://www.rsyslog.com/professional-services/
What's up with rsyslog? Follow https://twitter.com/rgerhards
NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of
sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE
THAT.
