Configuring TLS on rsyslog
Introduction
This document explains how to configure rsyslog to support TLS connections, which is necessary for sending logs to Coralogix syslog endpoints.
Prerequisites
- Ubuntu 22.04 (or newer)
Configuration
STEP 1. Install the gtls driver and ca-certificates:
STEP 2. Modify the rsyslog configuration file:
$DefaultNetstreamDriver gtls $DefaultNetstreamDriverCAFile /etc/ssl/certs/ca-certificates.crt $ActionSendStreamDriverMode 1 $ActionSendStreamDriverAuthMode x509/name $ActionSendStreamDriverPermittedPeer *.coralogix.com $template CoralogixSyslogFormat,"{\"fields\": {\"private_key\":\"xxxx\",\"application_name\":\"vagrant\",\"subsystem_name\":\"syslog\"},\"message\": {\"message\":\"%msg:::json%\"}}\n" *.* @@syslog.<span class="domain-value"></span>:6514;CoralogixSyslogFormat
STEP 3. Restart rsyslog:
Troubleshooting
STEP 1. Check the status of the rsyslog service:
STEP 2. Check for any errors in the journalctl logs:
Support
Need help?
Our world-class customer success team is available 24/7 to walk you through your setup and answer any questions that may come up.
Feel free to reach out to us via our in-app chat or by emailing [email protected].
Next Syslog 
Theme 
Light
light
dark
Light light dark
User Guides
Integrations
OpenTelemetry
Developer Portal