TLS config for syslog-ng outputs

For details on how TLS configuration works in syslog-ng, see the AxoSyslog Core documentation.

Configuration

ca_dir (*secret.Secret, optional)

The name of a directory that contains a set of trusted CA certificates in PEM format. For details, see the AxoSyslog Core documentation.

ca_file (*secret.Secret, optional)

The name of a file that contains a set of trusted CA certificates in PEM format. (Optional) For details, see the AxoSyslog Core documentation.

cert_file (*secret.Secret, optional)

Name of a file, that contains an X.509 certificate (or a certificate chain) in PEM format, suitable as a TLS certificate, matching the private key set in the key-file() option. For details, see the AxoSyslog Core documentation.

cipher-suite (string, optional)

Description: Specifies the cipher, hash, and key-exchange algorithms used for the encryption, for example, ECDHE-ECDSA-AES256-SHA384. The list of available algorithms depends on the version of OpenSSL used to compile syslog-ng.

key_file (*secret.Secret, optional)

The name of a file that contains an unencrypted private key in PEM format, suitable as a TLS key. For details, see the AxoSyslog Core documentation.

peer_verify (*bool, optional)

Verification method of the peer. For details, see the AxoSyslog Core documentation.

ssl_version (string, optional)

Configure required TLS version. Accepted values: [sslv3, tlsv1, tlsv1_0, tlsv1_1, tlsv1_2, tlsv1_3]

use-system-cert-store (*bool, optional)

Use the certificate store of the system for verifying HTTPS certificates. For details, see the AxoSyslog Core documentation.

GrpcTLS

ca_file (*secret.Secret, optional)

The name of a file that contains a set of trusted CA certificates in PEM format. For details, see the AxoSyslog Core documentation.

cert_file (*secret.Secret, optional)

Name of a file that contains an X.509 certificate (or a certificate chain) in PEM format, suitable as a TLS certificate, matching the private key set in the key-file() option. For details, see the AxoSyslog Core documentation.

key_file (*secret.Secret, optional)

The name of a file that contains an unencrypted private key in PEM format, suitable as a TLS key. For details, see the AxoSyslog Core documentation.

Last modified June 3, 2024: [4.6] Blog link fix (cc4602a)