TLS config for syslog-ng outputs

For details on how TLS configuration works in syslog-ng, see the AxoSyslog Core documentation.

Configuration

ca_dir (*secret.Secret, optional)

The name of a directory that contains a set of trusted CA certificates in PEM format. For details, see the AxoSyslog Core documentation

Default: -

ca_file (*secret.Secret, optional)

The name of a file that contains a set of trusted CA certificates in PEM format. (Optional) For details, see the AxoSyslog Core documentation

Default: -

key_file (*secret.Secret, optional)

The name of a file that contains an unencrypted private key in PEM format, suitable as a TLS key. For details, see the AxoSyslog Core documentation

Default: -

cert_file (*secret.Secret, optional)

Name of a file, that contains an X.509 certificate (or a certificate chain) in PEM format, suitable as a TLS certificate, matching the private key set in the key-file() option. For details, see the AxoSyslog Core documentation

Default: -

peer_verify (*bool, optional)

Verification method of the peer. For details, see the AxoSyslog Core documentation

Default: -

use-system-cert-store (*bool, optional)

Use the certificate store of the system for verifying HTTPS certificates. For details, see the AxoSyslog Core documentation

Default: -

cipher-suite (string, optional)

Description: Specifies the cipher, hash, and key-exchange algorithms used for the encryption, for example, ECDHE-ECDSA-AES256-SHA384. The list of available algorithms depends on the version of OpenSSL used to compile syslog-ng OSE

Default: -

Last modified December 27, 2023: Version number bumps (00b4afd)