Tuesday, August 16, 2016

Fluentd secure forwarding the logs

Following are the steps on FluentD server side:
·       Install fluentd secure forward plugin:
sudo /usr/sbin/td-agent-gem install fluent-plugin-secure-forward
·       Append following configuration in /etc/td-agent/td-agent.conf

<source>
  type secure_forward
  shared_key FLUENTD_SECRET
  self_hostname efk
  secure true
  ca_cert_path         /opt/ fluendconf /certificate/ca_cert.pem
  ca_private_key_path /opt/ fluendconf /certificate/ca_key.pem
  ca_private_key_passphrase passphrase_for_private_CA_secret_key
</source>

·       Generate CA certificate:
    cd /opt/td-agent/embedded/lib/ruby/gems/2.1.0/bin/     sudo ./secure-forward-ca-generate /opt/fluendconf/certificate/       passphrase_for_private_CA_secret_key
·       Restart the server
sudo service td-agent restart

Following are the steps on FluentD Agent side:

·       Install fluentd secure forward plugin:
sudo /usr/sbin/td-agent-gem install fluent-plugin-secure-forward

Append following configuration in /etc/td-agent/td-agent.conf
        <match **>
          type secure_forward
          shared_key FLUENTD_SECRET
          self_hostname ${hostname}
          secure true
          ca_cert_path /opt/ fluendconf /certificate/ca_cert.pem
         <server>
           host centralize_logging_server
         </server>
       </match>
Copy server’s ca_cert.pem file

               copy servers ca_cert.pem file to /opt/fluendconf/certificate/
Restart the server

       sudo service td-agent restart


at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Terraform Cheat Sheet [WIP]

Installing Terraform 

  • Storage Comparison
     
  • Route 53
      Route 53: It is managed DNS (Domain Name Service) DNS is a collection of rules & records which helps client to reach a server through ...
  • Terraform : Working with modules
    Terraform modules is the best way to reuse your terraform resources.  Create a following folder structure: terraform-app terraform-app/modul...