From: Martin Zobel-Helas <zobel@debian.org>
Date: Sun, 20 Jun 2010 09:14:13 +0000 (+0200)
Subject: remote sysloging config for the clients, fix typo and keep hostnames
X-Git-Url: https://git.donarmstrong.com/?p=dsa-puppet.git;a=commitdiff_plain;h=17435cfa3bab96c9f5c74e95abcf7aabc6d9e920

remote sysloging config for the clients, fix typo and keep hostnames
Signed-off-by: Martin Zobel-Helas <zobel@debian.org>
---

diff --git a/templates/syslog-ng.conf.erb b/templates/syslog-ng.conf.erb
index f21ccc5f..86430df5 100644
--- a/templates/syslog-ng.conf.erb
+++ b/templates/syslog-ng.conf.erb
@@ -81,6 +81,12 @@ options {
 	# we tell the syslog-ng that if a hostname match this regexp than that
 	# is not a real hostname.
 	bad_hostname("^gconfd$");
+
+<% if hostname == "heininen" -%>
+	# we trust our mutual authenticated syslog clients
+	keep_hostname(yes);
+<%end%>
+
 };
 
 
@@ -123,7 +129,7 @@ source s_all {
 source s_network {
 	tcp6(port(5140)
 		tls( key_file("/etc/exim4/ssl/thishost.key")
-		     cert_file("/etc/exim4/ssl/thishost.cert")
+		     cert_file("/etc/exim4/ssl/thishost.crt")
 		     ca_dir("/etc/exim4/ssl/")
 		)
 	);
@@ -445,13 +451,19 @@ log {
 };
 <%end%>
 
-<% if hostname == "corelli" -%>
-destination loghost-paganini {
-	udp("192.168.2.10",port(514));
+<% if hostname != "heininen" -%>
+ <% if syslogversion == "3" %>
+destination loghost-heininen {
+	tcp6("heininen.debian.org" port (5140)
+		tls( key_file("/etc/ssl/debian/keys/thishost.key")
+		     cert_file("/etc/ssl/debian/certs/thishost.crt")
+		     ca_dir("/etc/ssl/debian/certs/")
+		)
+	)
 };
-
 log {
 	source(s_all);
-	destination(loghost-paganini);
+	destination(loghost-heininen);
 };
+ <%end%>
 <%end%>