logging-log4j-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Blake Day <bl...@chewy.com>
Subject Re: RFC5424 over TCP without TLS
Date Tue, 19 Jan 2016 17:02:00 GMT
Yes, this worked brilliantly. Thanks! And thanks for the quick response from both of you guys.




On 1/18/16, 11:41 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:

>Ah, right, so one can just configure a <SocketAppender> with a
><Rfc5424Layout> configured in a non-standard way with useTlsMessageFormat =
>"false".
>
>Gary
>
>On Mon, Jan 18, 2016 at 8:35 PM, Ralph Goers <ralph.goers@dslextreme.com>
>wrote:
>
>> As I have stated before, that’s because the SyslogAppender is really
>> nothing more than the SocketAppender with one of the two Syslog Layouts
>> hardwired to it.
>>
>> Ralph
>>
>> > On Jan 18, 2016, at 6:24 PM, Gary Gregory <garydgregory@gmail.com>
>> wrote:
>> >
>> > Hm, yeah, you cannot pass a layout to a SyslogAppender. Dead end there.
>> >
>> > Gary
>> >
>> > On Mon, Jan 18, 2016 at 5:02 PM, Blake Day <blake@chewy.com <mailto:
>> blake@chewy.com>> wrote:
>> >
>> >> So you mean a <SocketAppender>?  The layout is “hardcoded” on
>> >> SyslogAppender.
>> >>
>> >>
>> >>
>> >>
>> >> On 1/18/16, 7:42 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:
>> >>
>> >>> What about using a <SyslogAppender> with a <Rfc5424Layout>?
>> >>>
>> >>> Gary
>> >>>
>> >>> On Mon, Jan 18, 2016 at 3:17 PM, Blake Day <blake@chewy.com> wrote:
>> >>>
>> >>>> It was worth a look, but no. SocketAppender creates an
>> SslSocketManager
>> >>>> when protocol = SSL.
>> >>>>
>> >>>>
>> >>>>
>> >>>>
>> >>>> On 1/18/16, 5:46 PM, "Gary Gregory" <garydgregory@gmail.com>
wrote:
>> >>>>
>> >>>>> I think you might be able to "cheat" by saying protocol="SSL"
on the
>> >>>>> appender...
>> >>>>>
>> >>>>> Gary
>> >>>>>
>> >>>>> On Mon, Jan 18, 2016 at 2:07 PM, Blake Day <blake@chewy.com>
wrote:
>> >>>>>
>> >>>>>> Hi all,
>> >>>>>>
>> >>>>>> We are trying to achieve RFC5424 message formats over TCP
transport
>> >>>>>> without TLS.
>> >>>>>>
>> >>>>>> As you may know, SyslogAppender uses an instance of Rfc5424Layout
to
>> >>>>>> provide the logging layout.  That layout takes a parameter
called
>> >>>>>> “useTlsMessageFormat”, which SyslogAppender sets based
on whether
>> >> TLS is
>> >>>>>> configured.  When true, the layout wraps the log event in
a
>> >>>>>> TlsSyslogFrame.  TlsSyslogFrame simply prepends a length
to the full
>> >> log
>> >>>>>> message, but that length is required by syslog-ng to frame
RFC5424
>> >>>>>> messages.  While the RFC for TCP-based transport of the
RFC5424
>> >> format
>> >>>> does
>> >>>>>> not allow for non-TLS connections, some users (like us)
would like
>> to
>> >>>> adopt
>> >>>>>> the RFC5424 format over TCP *without* TLS.  We believe,
but have not
>> >>>>>> tested, that we could do this by simply adding a configuration
>> >>>> parameter to
>> >>>>>> the SyslogAppender that allows us to override useTlsMessageFormat
to
>> >>>> true.
>> >>>>>>
>> >>>>>> Any thoughts on this change?  Have we overlooked an obvious
>> >> alternative
>> >>>> to
>> >>>>>> achieving RFC5424 over TCP without TLS?
>> >>>>>>
>> >>>>>> Thanks,
>> >>>>>>
>> >>>>>> Michael Day
>> >>>>>>
>> >>>>>>
>> >>>>>
>> >>>>>
>> >>>>> --
>> >>>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
>> >>>>> Java Persistence with Hibernate, Second Edition
>> >>>>> <http://www.manning.com/bauer3/>
>> >>>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
>> >>>>> Spring Batch in Action <http://www.manning.com/templier/>
>> >>>>> Blog: http://garygregory.wordpress.com
>> >>>>> Home: http://garygregory.com/
>> >>>>> Tweet! http://twitter.com/GaryGregory
>> >>>>
>> >>>
>> >>>
>> >>>
>> >>> --
>> >>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
>> >>> Java Persistence with Hibernate, Second Edition
>> >>> <http://www.manning.com/bauer3/>
>> >>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
>> >>> Spring Batch in Action <http://www.manning.com/templier/>
>> >>> Blog: http://garygregory.wordpress.com
>> >>> Home: http://garygregory.com/
>> >>> Tweet! http://twitter.com/GaryGregory
>> >>
>> >
>> >
>> >
>> > --
>> > E-Mail: garydgregory@gmail.com <mailto:garydgregory@gmail.com> |
>> ggregory@apache.org <mailto:ggregory@apache.org>
>> > Java Persistence with Hibernate, Second Edition
>> > <http://www.manning.com/bauer3/ <http://www.manning.com/bauer3/>>
>> > JUnit in Action, Second Edition <http://www.manning.com/tahchiev/ <
>> http://www.manning.com/tahchiev/>>
>> > Spring Batch in Action <http://www.manning.com/templier/ <
>> http://www.manning.com/templier/>>
>> > Blog: http://garygregory.wordpress.com <
>> http://garygregory.wordpress.com/>
>> > Home: http://garygregory.com/ <http://garygregory.com/>
>> > Tweet! http://twitter.com/GaryGregory <http://twitter.com/GaryGregory>
>>
>
>
>
>-- 
>E-Mail: garydgregory@gmail.com | ggregory@apache.org
>Java Persistence with Hibernate, Second Edition
><http://www.manning.com/bauer3/>
>JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
>Spring Batch in Action <http://www.manning.com/templier/>
>Blog: http://garygregory.wordpress.com
>Home: http://garygregory.com/
>Tweet! http://twitter.com/GaryGregory
Mime
View raw message