On 11/24/2015 12:21 PM, Girish Kumar wrote:
I want to use syslog over TLS that is over TCP . As of now in my project syslogd daemon is used. I am planning to use stunnel to achieve this.
I doubt that you're actually running the original (UCB, if memory serves well) syslogd. syslog-ng and rsyslog are the two implementations in wide use now. (journald doesn't seem to support anything even remotely resembling the syslog protocol.) https://en.wikipedia.org/wiki/Syslog-ng https://en.wikipedia.org/wiki/Rsyslog For your reference, rsyslog can be configured to communicate via TCP, encrypted and auth'd by GnuTLS, *and* cache the data on the sending side when the connection temporarily fails. (Back when I set up the platform in question, it could not yet combine encryption and RELP, though. Maybe it can today.) https://en.wikipedia.org/wiki/Reliable_Event_Logging_Protocol
I have few questions. Please clarify * To support stunnel, syslogd should be on TCP and not on UDP?
Yes.
* Is stunnel is a daemon ?
That's how you should set it up for your needs, yes. Kind regards, Jochen Bern Systemingenieur -- LINworks GmbH Fon: +49 6151 9067-231 Fax: +49 6151 9067-299 E-Mail: Jochen.Bern@LINworks.de Web: http://www.LINworks.de/ NEC IT Infrastrukturprodukte vom Deutschland Distributor Server, Storage, Virtualisierung, Management Software Shop: http://www.NEC-Store.de/ Briefanschrift: Postfach 10 01 21 · 64201 Darmstadt · DE Hausanschrift: Robert-Koch-Straße 9 · 64331 Weiterstadt · DE Geschäftsführer: Metin Dogan, Nils Manegold, Oliver Michel Unternehmenssitz: Weiterstadt Register: Amtsgericht Darmstadt, HRB 85202 MAX21-Unternehmensgruppe