From 3f88f53ac00d5b6e2d105b1de23f12b50feaf696 Mon Sep 17 00:00:00 2001
From: Christos Arvanitis <christos.arvanitis@cern.ch>
Date: Mon, 28 Aug 2023 14:10:34 +0200
Subject: [PATCH] Add instructions for TLS

---
 README.md                     | 2 ++
 config/td-agent.conf.template | 6 ++++++
 2 files changed, 8 insertions(+)

diff --git a/README.md b/README.md
index 5666587..a53fcf8 100644
--- a/README.md
+++ b/README.md
@@ -236,6 +236,8 @@ for log_file in $(ls $path_logs | grep -E "pdnssoc-queries.log.[0-9]+")
 	do
     mv "$path_logs/$log_file" $path_target
     cat  "$path_target/$log_file" | nc $pdnssoc_server $pdnssoc_server_port -w 10
+    # Use the following if you send data to TLS enabled endpoint
+    cat  "$path_target/$log_file" | nc --ssl $pdnssoc_server $pdnssoc_server_port -w 10
 done
 
 rm -f $path_target/*
diff --git a/config/td-agent.conf.template b/config/td-agent.conf.template
index 4f01b25..2ec6989 100644
--- a/config/td-agent.conf.template
+++ b/config/td-agent.conf.template
@@ -28,6 +28,12 @@
   @type tcp
   port 5141
   tag pdnssocdata
+# For accepting data with TLS, enable the following
+#  <transport tls>
+#    ca_path /etc/pki/ca.pem
+#    cert_path /etc/pki/cert.pem
+#    private_key_path /etc/pki/key.pem
+#  </transport>
   <parse>
         @type regexp
         expression /(?<date>.*) client \@.* (?<client>.*)#.*: query: (?<query>\S+) .*/