[syslog-ng] IPv6 TLS source question
Balazs Scheidler
bazsi77 at gmail.com
Wed Jun 26 20:43:20 CEST 2013
Syslog-ng version?
IIRC there were related fixes in 3.4.
On Jun 26, 2013 6:12 PM, "Jeff Lange" <jlange6648 at gmail.com> wrote:
> I'm attempting to setup a TCP IPv6 source declaration that uses TLS but
> syslog-ng is not happy with the configuration file.
>
> The following is what I use for IPv4 and it works fine:
>
> source s_tls
> {
> syslog( ip(0.0.0.0) port(6514)
> transport( "tls" )
> tls (
> key_file("/srv/syslog-ng/certs/priv-key.pem")
> cert_file("/srv/syslog-ng/certs/id-cert.pem")
> ca_dir("/srv/syslog-ng/certs")
> cipher_suite("SHA256:!aNULL:!eNULL:!ECDH:!DSS")
> )
> );
> };
>
> However the following is not valid:
>
> source s_tls6 {
> syslog( ip("::") port(6515)
> transport( "tls" )
> tls (
> key_file("/srv/syslog-ng/certs/priv-key.pem")
> cert_file("/srv/syslog-ng/certs/id-cert.pem")
> ca_dir("/srv/syslog-ng/certs")
> cipher_suite("SHA256:!aNULL:!eNULL:!ECDH:!DSS")
> )
> );
> };
>
> I've tried the ip with and without quotes with no luck. What am I doing
> wrong?
>
> Thanks
> -Jeff
>
>
> ______________________________________________________________________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation:
> http://www.balabit.com/support/documentation/?product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20130626/51f7b8ac/attachment.htm
More information about the syslog-ng
mailing list