Enable Splunk log fowarding

2023-08-21 17:36:17 -04:00 · 2023-08-21 17:36:17 -04:00 · 02046fdc0c
commit 02046fdc0c
parent 71c79dc48b
1 changed files with 16 additions and 16 deletions
--- a/roles/base/files/rsyslog/rsyslog.conf.log01.iad2.fedoraproject.org
+++ b/roles/base/files/rsyslog/rsyslog.conf.log01.iad2.fedoraproject.org
@ -164,22 +164,22 @@ kern.*						?r_kern;TraditionalFormat
 #*.* @@splunk-syslog.corp.redhat.com:6514
 #*.* @@10.31.20.29:6514

-# $DefaultNetstreamDriverCAFile /etc/pki/tls/certs/2022-IT-Root-CA.pem
-# *.* action(
-#     type="omfwd"
-#     target="10.31.20.29"
-#     port="6514"
-#     protocol="tcp"
-#     queue.filename="fwdRule1"       # unique name prefix for spool files
-#     queue.maxdiskspace="1g"         # 1gb space limit (use as much as possible)
-#     queue.saveonshutdown="on"       # save messages to disk on shutdown
-#     queue.type="LinkedList"         # run asynchronously
-#     queue.size="100000"
-#     action.resumeRetryCount="10"    # 10 retries if host is down
-#     StreamDriver="gtls"
-#     StreamDriverMode="1"
-#     StreamDriverAuthMode="anon"     # not authenticated
-# )
+ $DefaultNetstreamDriverCAFile /etc/pki/tls/certs/2022-IT-Root-CA.pem
+ *.* action(
+     type="omfwd"
+     target="10.31.20.29"
+     port="6514"
+     protocol="tcp"
+     queue.filename="fwdRule1"       # unique name prefix for spool files
+     queue.maxdiskspace="1g"         # 1gb space limit (use as much as possible)
+     queue.saveonshutdown="on"       # save messages to disk on shutdown
+     queue.type="LinkedList"         # run asynchronously
+     queue.size="100000"
+     action.resumeRetryCount="10"    # 10 retries if host is down
+     StreamDriver="gtls"
+     StreamDriverMode="1"
+     StreamDriverAuthMode="anon"     # not authenticated
+ )