-<%- if has_variable?("syslogversion") and @syslogversion.to_s == "3.1" -%>
-@version: 3.0
-<%- elsif has_variable?("syslogversion") and @syslogversion.to_s == "3.5" -%>
+<%- if has_variable?("syslogversion") and @syslogversion.to_s == "3.5" -%>
@version: 3.5
@include "scl.conf"
<%- elsif has_variable?("syslogversion") and @syslogversion.to_s == "3.8" -%>
@version: 3.8
@include "scl.conf"
+<%- elsif has_variable?("syslogversion") and @syslogversion.to_s == "3.19" -%>
+@version: 3.19
+@include "scl.conf"
<%- else -%>
@version: 3.3
@include "scl.conf"
#sync(0);
# the number of lines fitting in the output queue
-<%- if has_variable?("syslogversion") and @syslogversion.to_s == "3.1" -%>
- log_fifo_size(2048);
-<%- else -%>
log_fifo_size(10000);
-<%- end -%>
# enable or disable directory creation for destination files
create_dirs(yes);
source s_local {
# message generated by Syslog-NG
internal();
-<%- if has_variable?("syslogversion") and @syslogversion.to_s == "3.1" -%>
- # standard Linux log source (this is the default place for the syslog()
- # function to send logs to)
- unix-stream("/dev/log");
- # messages from the kernel
- file("/proc/kmsg" program_override("kernel: "));
-<%- else -%>
system();
+<%- if has_variable?("haproxy") && @haproxy -%>
+ unix-stream("/var/lib/haproxy/dev/log");
<%- end -%>
};
-<%- if (@hostname == "lotti") || (@hostname == "lully") || (@hostname == "loghost-grnet-01") -%>
+<% if @loghosts and @loghosts.include?(@fqdn)-%>
source s_network {
tcp6(port(5140) max-connections(400)
tls( key_file("/etc/exim4/ssl/thishost.key")
)
);
};
+
+source s_network_fastly {
+ tcp6(port(5141) max-connections(100)
+ tls( key_file("/etc/exim4/ssl/thishost.key")
+ cert_file("/etc/exim4/ssl/thishost.crt")
+ peer-verify(optional-untrusted))
+ );
+};
<%- end -%>
};
<%- end -%>
-
- <%- if @hostname != "lotti" -%>
-destination loghost-lotti {
- tcp("lotti.debian.org" port (5140)
+<% if @loghosts -%>
+ <% @loghosts.each do |loghost| -%>
+destination loghost-<%= loghost %> {
+ tcp("<%= loghost %>" port (5140)
tls( key_file("/etc/ssl/private/thishost.key")
cert_file("/etc/ssl/debian/certs/thishost.crt")
ca_dir("/etc/ssl/debian/certs/")
)
);
};
- <%- end -%>
- <%- if @hostname != "lully" -%>
-destination loghost-lully {
- tcp("lully.debian.org" port (5140)
- tls( key_file("/etc/ssl/private/thishost.key")
- cert_file("/etc/ssl/debian/certs/thishost.crt")
- ca_dir("/etc/ssl/debian/certs/")
- )
- );
-};
- <%- end -%>
- <%- if @hostname != "loghost-grnet-01" -%>
-destination loghost-loghost-grnet-01 {
- tcp("loghost-grnet-01.debian.org" port (5140)
- tls( key_file("/etc/ssl/private/thishost.key")
- cert_file("/etc/ssl/debian/certs/thishost.crt")
- ca_dir("/etc/ssl/debian/certs/")
- )
- );
-};
- <%- end -%>
+ <% end -%>
+<% end -%>
log {
source(s_local);
- <%- if @hostname != "lotti" -%>
- destination(loghost-lotti);
- <%- end -%>
- <%- if @hostname != "lully" -%>
- destination(loghost-lully);
- <%- end -%>
- <%- if @hostname != "loghost-grnet-01" -%>
- destination(loghost-loghost-grnet-01);
- <%- end -%>
+<% if @loghosts -%>
+ <% @loghosts.each do |loghost| -%>
+ <%- if loghost != @fqdn -%>
+ destination(loghost-<%= loghost %>);
+ <% end -%>
+ <% end -%>
+<% end -%>
};
-
-
-<%- if (@hostname == "lotti") || (@hostname == "lully") || (@hostname == "loghost-grnet-01") -%>
+<% if @loghosts and @loghosts.include?(@fqdn)-%>
###############################################################################
########## ON LOG HOST ########################################################
###############################################################################
log { source(s_local);
source(s_network);
filter(f_syslog); destination(df_ALL_syslog); };
-<%- end -%>
+
+## syslog endpoint for fastly services:
+destination fastly { file("/var/log/fastly.log"); };
+
+log { source(s_network_fastly);
+ destination(fastly); };
+
+
+<% end -%>
projects / mirror / dsa-puppet.git / blobdiff