Hello, I am trying to use rsyslog appliance docker image [rsyslog/syslog_appliance_alpine] to deploy rsyslog server and rsyslog agent in k8s.
With configmaps, service, daemonsets and deployment all pods are up and running but, the rsyslog server is not receiving logs from the agent pods [DaemonSet] from /var/log/containers/*.log [base node] I am using default ports i.e. 514 for UDP & TCP & ClusterIP for service. When I ping the server's service name from the agent pods, it is resolving to the correct IP. Port 514 is also open on server side. Same is tested from agent pods. I also tried to create a Docker image with Ubuntu 24.10 with following parameters = FROM ubuntu:24.10 RUN apt update && apt install rsyslog -y RUN echo '$ModLoad imudp \n\ $UDPServerRun 514 \n\ $ModLoad imtcp \n\ $InputTCPServerRun 514 \n\ $template RemoteStore, "/var/log/remote/%$year%/%$Month%/%$Day%/%$Hour%.log" \n\ :source, !isequal, "localhost" -?RemoteStore \n\ :source, isequal, "last" ~ ' > /etc/rsyslog.conf ENTRYPOINT ["rsyslogd", "-n"] But for this setup also, the server is unable to get logs from remote agents. Any thoughts on how to configure rsyslog server and agent in k8s cluster? I am not on famous cloud providers like AWS,GCP,Azure etc. I also tried with the images prepared by jumanjiman which are pretty outdated but those also didn't work. The logs of the nodes are not being sent from /var/log/container folder to the rsyslog server pod. Thanks & Regards, Amey. _______________________________________________ rsyslog mailing list https://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
