[prev in list] [next in list] [prev in thread] [next in thread]
List: syslog-ng
Subject: Re: [syslog-ng] Syslog-ng client through a load balancer with SSL/TLS encryption
From: Scheidler, Balázs <balazs.scheidler () balabit ! com>
Date: 2016-08-18 16:23:08
Message-ID: CANWQT2Pc47E0n9-=jYOYfVFGi5nO1+sOhdH84XL+wDkd5WN5Pw () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
syslog-ng at least in its open source incarnation does not support load
balancing. the premium edition team has a feature that does fail-over to a
list of servers, but that is yet to be ported over to the OSE version, even
though the code is available.
Here's the general description on how that works:
https://www.balabit.com/documents/syslog-ng-pe-latest-guides/en/syslog-ng-pe-guide-admin/html/concepts-failover.html
This is how it can be configured in Premium Edition:
https://www.balabit.com/documents/syslog-ng-pe-latest-guides/en/syslog-ng-pe-guide-admin/html/reference-destination-network-chapter.html
On the open source side, it'd be great to have these features integrated to
the open source tree, and it is something that Balabit is working on, but
it's still time until those can be fully merged.
With all this being said, you either have the option to approach Balabit
with this request and continue the commercial route, OR help us porting the
code in question OR you can wait until we get there. I can help with any of
these :)
Cheers,
Bazsi
--
Bazsi
On Fri, Aug 12, 2016 at 12:07 AM, Lupo, Joseph <Joseph.Lupo@t-mobile.com>
wrote:
> I am trying to setup Syslog-ng to relay messages from one syslog server to
> another with a load balancer in between. I am also using TLS encryption.
> The issue I'm having right now is that when the client intiates the
> connection, it seems to lock on to a particular back end syslog server and
> send all of its messages there instead of switching off to another one. On
> its own this isn't a big problem except that if that system goes down, the
> client doesn't seem to be aware. I also haven't found a good way to force
> syslog-ng to close and re-establish its connections without fully shutting
> down the relay system. We currently have no persistence setup on the load
> balancer.
>
>
>
> Is there a way to tell the relay server to periodically reconnect? Maybe
> send a certain amount of messages or data before reconnecting so that the
> data is balanced across the backend syslog-ng servers? Also, is there a
> better way to have the relay system learn about the remote server going
> offline so it can immediately reset its connection?
>
> ____________________________________________________________
> __________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation: http://www.balabit.com/support/documentation/?
> product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
>
[Attachment #5 (text/html)]
<div dir="ltr"><div><div><div><div><div>syslog-ng at least in its open source \
incarnation does not support load balancing. the premium edition team has a feature \
that does fail-over to a list of servers, but that is yet to be ported over to the \
OSE version, even though the code is available.<br><br>Here's the general \
description on how that works:<br><br><a \
href="https://www.balabit.com/documents/syslog-ng-pe-latest-guides/en/syslog-ng-pe-gui \
de-admin/html/concepts-failover.html">https://www.balabit.com/documents/syslog-ng-pe-l \
atest-guides/en/syslog-ng-pe-guide-admin/html/concepts-failover.html</a><br><br></div>This \
is how it can be configured in Premium Edition:<br><a \
href="https://www.balabit.com/documents/syslog-ng-pe-latest-guides/en/syslog-ng-pe-gui \
de-admin/html/reference-destination-network-chapter.html">https://www.balabit.com/docu \
ments/syslog-ng-pe-latest-guides/en/syslog-ng-pe-guide-admin/html/reference-destination-network-chapter.html</a><br><br></div>On \
the open source side, it'd be great to have these features integrated to the open \
source tree, and it is something that Balabit is working on, but it's still time \
until those can be fully merged.<br><br></div>With all this being said, you either \
have the option to approach Balabit with this request and continue the commercial \
route, OR help us porting the code in question OR you can wait until we get there. I \
can help with any of these \
:)<br><br></div>Cheers,<br></div>Bazsi<br><div><div><br><div><div><br></div></div></div></div></div><div \
class="gmail_extra"><br clear="all"><div><div class="gmail_signature" \
data-smartmail="gmail_signature"><div dir="ltr">-- <br>Bazsi<br></div></div></div> \
<br><div class="gmail_quote">On Fri, Aug 12, 2016 at 12:07 AM, Lupo, Joseph <span \
dir="ltr"><<a href="mailto:Joseph.Lupo@t-mobile.com" \
target="_blank">Joseph.Lupo@t-mobile.com</a>></span> wrote:<br><blockquote \
class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc \
solid;padding-left:1ex">
<div bgcolor="white" link="#0563C1" vlink="#954F72" lang="EN-US">
<div>
<p class="MsoNormal"><span style="font-size:11.0pt">I am trying to setup Syslog-ng to \
relay messages from one syslog server to another with a load balancer in between. I \
am also using TLS encryption. The issue I'm having right now is that when the \
client intiates the connection, it seems to lock on to a particular back end syslog \
server and send all of its messages there instead of switching off to another one. \
On its own this isn't a big problem except that if that system goes down, the client \
doesn't seem to be aware. I also haven't found a good way to force syslog-ng to \
close and re-establish its connections without fully shutting down the relay system. \
We currently have no persistence setup on the load balancer.<u></u><u></u></span></p> \
<p class="MsoNormal"><span style="font-size:11.0pt"><u></u> <u></u></span></p> <p \
class="MsoNormal"><span style="font-size:11.0pt">Is there a way to tell the relay \
server to periodically reconnect? Maybe send a certain amount of messages or data \
before reconnecting so that the data is balanced across the backend syslog-ng \
servers? Also, is there a better way to have the relay system learn about the \
remote server going offline so it can immediately reset its \
connection?<u></u><u></u></span></p> </div>
</div>
<br>______________________________<wbr>______________________________<wbr>__________________<br>
Member info: <a href="https://lists.balabit.hu/mailman/listinfo/syslog-ng" \
rel="noreferrer" target="_blank">https://lists.balabit.hu/<wbr>mailman/listinfo/syslog-ng</a><br>
Documentation: <a href="http://www.balabit.com/support/documentation/?product=syslog-ng" \
rel="noreferrer" target="_blank">http://www.balabit.com/<wbr>support/documentation/?<wbr>product=syslog-ng</a><br>
FAQ: <a href="http://www.balabit.com/wiki/syslog-ng-faq" rel="noreferrer" \
target="_blank">http://www.balabit.com/wiki/<wbr>syslog-ng-faq</a><br> <br>
<br></blockquote></div><br></div>
______________________________________________________________________________
Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
Documentation: http://www.balabit.com/support/documentation/?product=syslog-ng
FAQ: http://www.balabit.com/wiki/syslog-ng-faq
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic