Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

System / Settings / Logging - targets: add TLS transport option #4937

Closed
2 tasks done
AdSchellevis opened this issue Apr 21, 2021 · 1 comment
Closed
2 tasks done

System / Settings / Logging - targets: add TLS transport option #4937

AdSchellevis opened this issue Apr 21, 2021 · 1 comment
Assignees
@AdSchellevis
Labels
feature Adding new functionality
Milestone
21.7

Comments

@AdSchellevis
Copy link
Member

Important notices

Before you add a new report, we ask you kindly to acknowledge the following:

Is your feature request related to a problem? Please describe.

Currently we support syslog over udp and tcp, one feature requested from time to time is to allow sending encrypted messages as well.

Describe the solution you like

Add TLS as target option in syslog ng, using the certificate store available in OPNsense. (https://www.syslog-ng.com/technical-documents/doc/syslog-ng-open-source-edition/3.17/administration-guide/55)

Describe alternatives you considered

pushing syslog traffic into a (vpn) tunnel, but this doesn't seem to be a workable solution for all use-cases.

Additional context

none
@AdSchellevis AdSchellevis added the feature Adding new functionality label Apr 21, 2021
@AdSchellevis AdSchellevis self-assigned this Apr 21, 2021
@fichtner fichtner added this to the 21.7 milestone Apr 21, 2021
@AdSchellevis
Copy link
Member Author

AdSchellevis commented Apr 30, 2021
edited
Loading

to test, opnsense-patch 64c2e02 2b976a4 and restart the syslog-ng service (System -> Diagnostics -> Services)

AdSchellevis added a commit that referenced this issue Apr 30, 2021
@AdSchellevis
System / Settings / Logging - targets: TLS trasnport, fix previous for
2b976a4 
…#4937

(use generic system ca file)
AdSchellevis added a commit to opnsense/docs that referenced this issue Apr 30, 2021
@AdSchellevis
System / Settings / Logging - targets: add TLS transport option
e5b998f 
for  opnsense/core#4937
fichtner pushed a commit that referenced this issue Jun 15, 2021
@AdSchellevis @fichtner
System / Settings / Logging - targets: add TLS transport option
95bb3c7 
PR: #4937

(cherry picked from commit 64c2e02)
(cherry picked from commit 2b976a4)
AdSchellevis added a commit that referenced this issue Aug 15, 2021
@AdSchellevis
System / Settings / Logging - targets: add TLS transport option
b511517 
closes #4937
AdSchellevis added a commit that referenced this issue Aug 15, 2021
@AdSchellevis
System / Settings / Logging - targets: TLS trasnport, fix previous for
cfd595c 
…#4937

(use generic system ca file)
oshogbo pushed a commit to DynFi/opnsense-core that referenced this issue Mar 3, 2022
@AdSchellevis
System / Settings / Logging - targets: add TLS transport option
eb9e54a 
closes opnsense/core#4937
oshogbo pushed a commit to DynFi/opnsense-core that referenced this issue Mar 3, 2022
@AdSchellevis
System / Settings / Logging - targets: TLS trasnport, fix previous for
0686e0d 
…opnsense/core#4937

(use generic system ca file)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@AdSchellevis AdSchellevis

Labels
feature Adding new functionality
Milestone
21.7
Development

No branches or pull requests
2 participants
@fichtner @AdSchellevis