[syslog-ng] IPv6 TLS source question

Jeff Lange jlange6648 at gmail.com
Wed Jun 26 21:02:54 CEST 2013 

I've observed this in both 3.3.x and 3.4.2 (ubuntu 12.04 x86_64)

-Jeff


On Wed, Jun 26, 2013 at 2:43 PM, Balazs Scheidler <bazsi77 at gmail.com> wrote:

> Syslog-ng version?
>
> IIRC there were related fixes in 3.4.
> On Jun 26, 2013 6:12 PM, "Jeff Lange" <jlange6648 at gmail.com> wrote:
>
>> I'm attempting to setup a TCP IPv6 source declaration that uses TLS but
>> syslog-ng is not happy with the configuration file.
>>
>> The following is what I use for IPv4 and it works fine:
>>
>> source s_tls
>> {
>>   syslog( ip(0.0.0.0) port(6514)
>>     transport( "tls" )
>>     tls (
>>       key_file("/srv/syslog-ng/certs/priv-key.pem")
>>       cert_file("/srv/syslog-ng/certs/id-cert.pem")
>>       ca_dir("/srv/syslog-ng/certs")
>>       cipher_suite("SHA256:!aNULL:!eNULL:!ECDH:!DSS")
>>     )
>>    );
>> };
>>
>> However the following is not valid:
>>
>> source s_tls6 {
>>   syslog( ip("::") port(6515)
>>     transport( "tls" )
>>     tls (
>>       key_file("/srv/syslog-ng/certs/priv-key.pem")
>>       cert_file("/srv/syslog-ng/certs/id-cert.pem")
>>       ca_dir("/srv/syslog-ng/certs")
>>       cipher_suite("SHA256:!aNULL:!eNULL:!ECDH:!DSS")
>>     )
>>   );
>> };
>>
>> I've tried the ip with and without quotes with no luck. What am I doing
>> wrong?
>>
>> Thanks
>> -Jeff
>>
>>
>> ______________________________________________________________________________
>> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
>> Documentation:
>> http://www.balabit.com/support/documentation/?product=syslog-ng
>> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>>
>>
>>
>
> ______________________________________________________________________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation:
> http://www.balabit.com/support/documentation/?product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20130626/b3e88f6a/attachment.htm

More information about the syslog-ng mailing list