GSSAPI Syslog Input Module
Module Name: imgssapi
Author: varmojfekoj
Description:
Provides the ability to receive syslog messages from the
network protected via Kerberos 5 encryption and authentication. This
module also contains the functionality found in imtcp,
which can not be used if imgssapi is used.
Configuration Directives:
- InputGSSServerRun <port>
Starts a GSSAPI server on selected port - note that this runs
independently from the TCP server.
- InputGSSServerServiceName <name>
The service name to use for the GSS server.
- $InputGSSServerPermitPlainTCP on|off
Permits the server to receive plain tcp syslog (without GSS) on the
same port
- $InputTCPMaxSessions <number>
Sets the maximum number of sessions supported
Caveats/Known Bugs:
- module always binds to all interfaces
- only a single listener can be bound (one each for GSS and
plain TCP)
- duplicates imtcp
functionality and thus conflicts with it. This will change in the
future. Unfortunately, that also means that your config files
probably need to be changed in the future when that
change happens.
Sample:
This sets up a GSS server on port 1514 that also permits to
receive plain tcp syslog messages (on the same port):
[rsyslog.conf overview]
[manual index] [rsyslog site]
This documentation is part of the
rsyslog
project.
Copyright © 2008 by Rainer
Gerhards and
Adiscon.
Released under the GNU GPL version 3 or higher.