Project

General

Profile

Actions
Copy link

Feature #9563

closed

Syslog-ng TLS support

Added by Ken-ichi Sasaki almost 5 years ago. Updated over 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Renato Botelho
Category:
syslog-ng
Target version:
-
Start date:
05/29/2019
Due date:
% Done:

100%

Estimated time:
Plus Target Version:

Description

Hi,

I'm trying to send syslog over TLS. Added syslog-ng package and configure TLS. But syslog-ng does not start. I found it's bug of syslog-ng 3.14 and need to upgrade to 3.15 or after. Do you have schedule to upgrade package of syslog-ng?

Thanks,

cat /usr/local/etc/syslog-ng.conf
  1. This file is automatically generated by pfSense
  2. Do not edit manually !
    @version:3.14
    destination Fluentd { tcp("192.168.1.20" port(10514) tls(ca_dir("/usr/local/etc/syslog-ng/ssl"))); };
    destination _DEFAULT { file("/var/syslog-ng/default.log"); };
    log { source(_DEFAULT); destination(Fluentd); };
    log { source(_DEFAULT); destination(_DEFAULT); };
    source _DEFAULT { internal(); syslog(transport(udp) port(5140) ip(127.0.0.1)); };

/usr/local/sbin/syslog-ng d
[2019-05-29T12:49:47.808547] nanosleep() is not accurate enough to introduce minor stalls on the reader side, multi-threaded performance may be affected;
[2019-05-29T12:49:47.810824] Registering candidate plugin; module='appmodel', context='root', name='application'
[2019-05-29T12:49:47.810891] Registering candidate plugin; module='appmodel', context='parser', name='app-parser'
[2019-05-29T12:49:47.810930] Registering candidate plugin; module='syslogformat', context='format', name='syslog'
[2019-05-29T12:49:47.810936] Registering candidate plugin; module='syslogformat', context='parser', name='syslog-parser'
[2019-05-29T12:49:47.810941] Registering candidate plugin; module='add-contextual-data', context='parser', name='add_contextual_data'
[2019-05-29T12:49:47.810947] Registering candidate plugin; module='cef', context='template-func', name='format-cef-extension'
[2019-05-29T12:49:47.810952] Registering candidate plugin; module='date', context='parser', name='date-parser'
[2019-05-29T12:49:47.810957] Registering candidate plugin; module='disk-buffer', context='inner-dest', name='disk_buffer'
[2019-05-29T12:49:47.810962] Registering candidate plugin; module='afsocket', context='source', name='unix-stream'
[2019-05-29T12:49:47.810998] Registering candidate plugin; module='afsocket', context='destination', name='unix-stream'
[2019-05-29T12:49:47.811016] Registering candidate plugin; module='afsocket', context='source', name='unix-dgram'
[2019-05-29T12:49:47.811021] Registering candidate plugin; module='afsocket', context='destination', name='unix-dgram'
[2019-05-29T12:49:47.811026] Registering candidate plugin; module='afsocket', context='source', name='tcp'
[2019-05-29T12:49:47.811031] Registering candidate plugin; module='afsocket', context='destination', name='tcp'
[2019-05-29T12:49:47.811036] Registering candidate plugin; module='afsocket', context='source', name='tcp6'
[2019-05-29T12:49:47.811041] Registering candidate plugin; module='afsocket', context='destination', name='tcp6'
[2019-05-29T12:49:47.811045] Registering candidate plugin; module='afsocket', context='source', name='udp'
[2019-05-29T12:49:47.811050] Registering candidate plugin; module='afsocket', context='destination', name='udp'
[2019-05-29T12:49:47.811074] Registering candidate plugin; module='afsocket', context='source', name='udp6'
[2019-05-29T12:49:47.811079] Registering candidate plugin; module='afsocket', context='destination', name='udp6'
[2019-05-29T12:49:47.811083] Registering candidate plugin; module='afsocket', context='source', name='syslog'
[2019-05-29T12:49:47.811088] Registering candidate plugin; module='afsocket', context='destination', name='syslog'
[2019-05-29T12:49:47.811093] Registering candidate plugin; module='afsocket', context='source', name='network'
[2019-05-29T12:49:47.811098] Registering candidate plugin; module='afsocket', context='destination', name='network'
[2019-05-29T12:49:47.811103] Registering candidate plugin; module='afsocket', context='source', name='systemd-syslog'
[2019-05-29T12:49:47.811107] Registering candidate plugin; module='affile', context='source', name='file'
[2019-05-29T12:49:47.811139] Registering candidate plugin; module='affile', context='source', name='pipe'
[2019-05-29T12:49:47.811158] Registering candidate plugin; module='affile', context='source', name='wildcard_file'
[2019-05-29T12:49:47.811164] Registering candidate plugin; module='affile', context='source', name='stdin'
[2019-05-29T12:49:47.811169] Registering candidate plugin; module='affile', context='destination', name='file'
[2019-05-29T12:49:47.811173] Registering candidate plugin; module='affile', context='destination', name='pipe'
[2019-05-29T12:49:47.811178] Registering candidate plugin; module='afprog', context='source', name='program'
[2019-05-29T12:49:47.811183] Registering candidate plugin; module='afprog', context='destination', name='program'
[2019-05-29T12:49:47.811188] Registering candidate plugin; module='afuser', context='destination', name='usertty'
[2019-05-29T12:49:47.811193] Registering candidate plugin; module='csvparser', context='parser', name='csv-parser'
[2019-05-29T12:49:47.811197] Registering candidate plugin; module='system-source', context='source', name='system'
[2019-05-29T12:49:47.811202] Registering candidate plugin; module='linux-kmsg-format', context='format', name='linux-kmsg'
[2019-05-29T12:49:47.811207] Registering candidate plugin; module='basicfuncs', context='template-func', name='grep'
[2019-05-29T12:49:47.811212] Registering candidate plugin; module='basicfuncs', context='template-func', name='if'
[2019-05-29T12:49:47.811217] Registering candidate plugin; module='basicfuncs', context='template-func', name='or'
[2019-05-29T12:49:47.811221] Registering candidate plugin; module='basicfuncs', context='template-func', name='context-lookup'
[2019-05-29T12:49:47.811244] Registering candidate plugin; module='basicfuncs', context='template-func', name='context-length'
[2019-05-29T12:49:47.811250] Registering candidate plugin; module='basicfuncs', context='template-func', name='context-values'
[2019-05-29T12:49:47.811255] Registering candidate plugin; module='basicfuncs', context='template-func', name='echo'
[2019-05-29T12:49:47.811260] Registering candidate plugin; module='basicfuncs', context='template-func', name='length'
[2019-05-29T12:49:47.811265] Registering candidate plugin; module='basicfuncs', context='template-func', name='substr'
[2019-05-29T12:49:47.811269] Registering candidate plugin; module='basicfuncs', context='template-func', name='strip'
[2019-05-29T12:49:47.811274] Registering candidate plugin; module='basicfuncs', context='template-func', name='sanitize'
[2019-05-29T12:49:47.811279] Registering candidate plugin; module='basicfuncs', context='template-func', name='lowercase'
[2019-05-29T12:49:47.811284] Registering candidate plugin; module='basicfuncs', context='template-func', name='uppercase'
[2019-05-29T12:49:47.811326] Registering candidate plugin; module='basicfuncs', context='template-func', name='replace-delimiter'
[2019-05-29T12:49:47.811352] Registering candidate plugin; module='basicfuncs', context='template-func', name='padding'
[2019-05-29T12:49:47.811358] Registering candidate plugin; module='basicfuncs', context='template-func', name='binary'
[2019-05-29T12:49:47.811363] Registering candidate plugin; module='basicfuncs', context='template-func', name='dirname'
[2019-05-29T12:49:47.811367] Registering candidate plugin; module='basicfuncs', context='template-func', name='basename'
[2019-05-29T12:49:47.811372] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-concat'
[2019-05-29T12:49:47.811380] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-head'
[2019-05-29T12:49:47.811385] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-nth'
[2019-05-29T12:49:47.811390] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-tail'
[2019-05-29T12:49:47.811395] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-slice'
[2019-05-29T12:49:47.811400] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-count'
[2019-05-29T12:49:47.811404] Registering candidate plugin; module='basicfuncs', context='template-func', name='list-append'
[2019-05-29T12:49:47.811429] Registering candidate plugin; module='basicfuncs', context='template-func', name='+'
[2019-05-29T12:49:47.811433] Registering candidate plugin; module='basicfuncs', context='template-func', name=''
[2019-05-29T12:49:47.811438] Registering candidate plugin; module='basicfuncs', context='template-func', name='*'
[2019-05-29T12:49:47.811444] Registering candidate plugin; module='basicfuncs', context='template-func', name='/'
[2019-05-29T12:49:47.811484] Registering candidate plugin; module='basicfuncs', context='template-func', name='%'
[2019-05-29T12:49:47.811499] Registering candidate plugin; module='basicfuncs', context='template-func', name='sum'
[2019-05-29T12:49:47.811505] Registering candidate plugin; module='basicfuncs', context='template-func', name='min'
[2019-05-29T12:49:47.811510] Registering candidate plugin; module='basicfuncs', context='template-func', name='max'
[2019-05-29T12:49:47.811515] Registering candidate plugin; module='basicfuncs', context='template-func', name='average'
[2019-05-29T12:49:47.811520] Registering candidate plugin; module='basicfuncs', context='template-func', name='ipv4-to-int'
[2019-05-29T12:49:47.811525] Registering candidate plugin; module='basicfuncs', context='template-func', name='indent-multi-line'
[2019-05-29T12:49:47.811529] Registering candidate plugin; module='basicfuncs', context='template-func', name='env'
[2019-05-29T12:49:47.811534] Registering candidate plugin; module='basicfuncs', context='template-func', name='template'
[2019-05-29T12:49:47.811539] Registering candidate plugin; module='cryptofuncs', context='template-func', name='uuid'
[2019-05-29T12:49:47.811562] Registering candidate plugin; module='cryptofuncs', context='template-func', name='hash'
[2019-05-29T12:49:47.811568] Registering candidate plugin; module='cryptofuncs', context='template-func', name='sha1'
[2019-05-29T12:49:47.811575] Registering candidate plugin; module='cryptofuncs', context='template-func', name='sha256'
[2019-05-29T12:49:47.811580] Registering candidate plugin; module='cryptofuncs', context='template-func', name='sha512'
[2019-05-29T12:49:47.811585] Registering candidate plugin; module='cryptofuncs', context='template-func', name='md4'
[2019-05-29T12:49:47.811589] Registering candidate plugin; module='cryptofuncs', context='template-func', name='md5'
[2019-05-29T12:49:47.811594] Registering candidate plugin; module='dbparser', context='parser', name='db-parser'
[2019-05-29T12:49:47.811599] Registering candidate plugin; module='dbparser', context='parser', name='grouping-by'
[2019-05-29T12:49:47.811631] Registering candidate plugin; module='afstomp', context='destination', name='stomp'
[2019-05-29T12:49:47.811637] Registering candidate plugin; module='pseudofile', context='destination', name='pseudofile'
[2019-05-29T12:49:47.811652] Registering candidate plugin; module='graphite', context='template-func', name='graphite_output'
[2019-05-29T12:49:47.811658] Registering candidate plugin; module='kvformat', context='parser', name='kv-parser'
[2019-05-29T12:49:47.811663] Registering candidate plugin; module='kvformat', context='parser', name='linux-audit-parser'
[2019-05-29T12:49:47.811668] Registering candidate plugin; module='kvformat', context='template-func', name='format-welf'
[2019-05-29T12:49:47.811673] Registering candidate plugin; module='map-value-pairs', context='parser', name='map_value_pairs'
[2019-05-29T12:49:47.811679] Registering candidate plugin; module='snmptrapd-parser', context='parser', name='snmptrapd-parser'
[2019-05-29T12:49:47.811684] Registering candidate plugin; module='stardate', context='template-func', name='stardate'
[2019-05-29T12:49:47.811688] Registering candidate plugin; module='tfgetent', context='template-func', name='getent'
[2019-05-29T12:49:47.811693] Registering candidate plugin; module='tags-parser', context='parser', name='tags-parser'
[2019-05-29T12:49:47.811698] Registering candidate plugin; module='xml', context='parser', name='xml'
[2019-05-29T12:49:47.811703] Registering candidate plugin; module='json-plugin', context='parser', name='json-parser'
[2019-05-29T12:49:47.811710] Registering candidate plugin; module='json-plugin', context='template-func', name='format_json'
[2019-05-29T12:49:47.812563] Compiling #unnamed sequence [log] at [/usr/local/etc/syslog-ng.conf:6:7]
[2019-05-29T12:49:47.812676] Compiling _DEFAULT reference [source] at [/usr/local/etc/syslog-ng.conf:6:7]
[2019-05-29T12:49:47.812741] Compiling _DEFAULT sequence [source] at [/usr/local/etc/syslog-ng.conf:8:1]
[2019-05-29T12:49:47.812817] Compiling #unnamed junction [log] at [/usr/local/etc/syslog-ng.conf:8:18]
[2019-05-29T12:49:47.812879] Compiling #unnamed single [log] at [/usr/local/etc/syslog-ng.conf:8:19]
[2019-05-29T12:49:47.812963] Compiling #unnamed single [log] at [/usr/local/etc/syslog-ng.conf:8:31]
[2019-05-29T12:49:47.813031] Compiling Fluentd reference [destination] at [/usr/local/etc/syslog-ng.conf:6:25]
[2019-05-29T12:49:47.813107] Compiling Fluentd sequence [destination] at [/usr/local/etc/syslog-ng.conf:4:1]
[2019-05-29T12:49:47.813157] Compiling #unnamed junction [log] at [/usr/local/etc/syslog-ng.conf:4:22]
[2019-05-29T12:49:47.813232] Compiling #unnamed single [log] at [/usr/local/etc/syslog-ng.conf:4:23]
[2019-05-29T12:49:47.813298] Compiling #unnamed sequence [log] at [/usr/local/etc/syslog-ng.conf:7:7]
[2019-05-29T12:49:47.813374] Compiling _DEFAULT reference [source] at [/usr/local/etc/syslog-ng.conf:7:7]
[2019-05-29T12:49:47.813439] Compiling _DEFAULT reference [destination] at [/usr/local/etc/syslog-ng.conf:7:25]
[2019-05-29T12:49:47.813506] Compiling _DEFAULT sequence [destination] at [/usr/local/etc/syslog-ng.conf:5:1]
[2019-05-29T12:49:47.813567] Compiling #unnamed junction [log] at [/usr/local/etc/syslog-ng.conf:5:23]
[2019-05-29T12:49:47.813632] Compiling #unnamed single [log] at [/usr/local/etc/syslog-ng.conf:5:24]
[2019-05-29T12:49:47.814044] Error setting up TLS session context; tls_error='(null):(null):(null)'
[2019-05-29T12:49:47.814091] Error initializing message pipeline; plugin name='tcp', location='/usr/local/etc/syslog-ng.conf:4:23'

Actions
Copy link
 #2

Updated by Jim Pingle over 4 years ago

  • Status changed from New to Pull Request Review
Actions
Copy link
 #3

Updated by Jim Pingle over 4 years ago

  • Tracker changed from Bug to Feature
  • Affected Version deleted (2.4.4-p1)
Actions
Copy link
 #4

Updated by Renato Botelho over 4 years ago

  • Status changed from Pull Request Review to Feedback
  • Assignee set to Renato Botelho
  • % Done changed from 0 to 100

PR has been merged. Thanks!

Actions
Copy link
 #5

Updated by Azamat Khakimyanov over 3 years ago

  • Status changed from Feedback to Resolved

Tested on 2.5.0-DEVELOPMENT (amd64)
built on Tue Nov 17 01:02:10 EST 2020
FreeBSD 12.2-STABLE

I've run Syslog-ng Server (syslog-ng-3.29.1_2) on 2.5-DEV (KVM IP: 192.168.122.147)
Source { internal(); syslog(transport(tls) port(6514) tls(
key-file('/var/etc/syslog-ng/syslog-ng.key')
cert-file('/var/etc/syslog-ng/syslog-ng.cert')
ca-dir('/var/etc/syslog-ng/ca.d')) ip(192.168.122.147)); };

and Syslog-ng Client (syslog-ng-3.25.1) on 2.4.5_p1 (KVM IP: 192.168.122.40)
Destination {
syslog("192.168.122.147" port(6514)
transport("tls")
tls(
key-file('/usr/local/etc/syslog-ng/SyslogClientCert.key')
cert-file('/usr/local/etc/syslog-ng/SyslogClientCert.crt')
ca-dir('/usr/local/etc/syslog-ng/ca.d'))
);
};
and I received syslog messages from Syslog-ng client and I saw all these messages in 'default.log' on Syslog-ng Server.

This feature request can be marked resolved.

Actions
Copy link

Also available in: Atom PDF