logging-log4j-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ralph Goers <ralph.go...@dslextreme.com>
Subject Re: RFC5424 over TCP without TLS
Date Tue, 19 Jan 2016 04:35:30 GMT
As I have stated before, that’s because the SyslogAppender is really nothing more than the
SocketAppender with one of the two Syslog Layouts hardwired to it.

Ralph

> On Jan 18, 2016, at 6:24 PM, Gary Gregory <garydgregory@gmail.com> wrote:
> 
> Hm, yeah, you cannot pass a layout to a SyslogAppender. Dead end there.
> 
> Gary
> 
> On Mon, Jan 18, 2016 at 5:02 PM, Blake Day <blake@chewy.com <mailto:blake@chewy.com>>
wrote:
> 
>> So you mean a <SocketAppender>?  The layout is “hardcoded” on
>> SyslogAppender.
>> 
>> 
>> 
>> 
>> On 1/18/16, 7:42 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:
>> 
>>> What about using a <SyslogAppender> with a <Rfc5424Layout>?
>>> 
>>> Gary
>>> 
>>> On Mon, Jan 18, 2016 at 3:17 PM, Blake Day <blake@chewy.com> wrote:
>>> 
>>>> It was worth a look, but no. SocketAppender creates an SslSocketManager
>>>> when protocol = SSL.
>>>> 
>>>> 
>>>> 
>>>> 
>>>> On 1/18/16, 5:46 PM, "Gary Gregory" <garydgregory@gmail.com> wrote:
>>>> 
>>>>> I think you might be able to "cheat" by saying protocol="SSL" on the
>>>>> appender...
>>>>> 
>>>>> Gary
>>>>> 
>>>>> On Mon, Jan 18, 2016 at 2:07 PM, Blake Day <blake@chewy.com> wrote:
>>>>> 
>>>>>> Hi all,
>>>>>> 
>>>>>> We are trying to achieve RFC5424 message formats over TCP transport
>>>>>> without TLS.
>>>>>> 
>>>>>> As you may know, SyslogAppender uses an instance of Rfc5424Layout
to
>>>>>> provide the logging layout.  That layout takes a parameter called
>>>>>> “useTlsMessageFormat”, which SyslogAppender sets based on whether
>> TLS is
>>>>>> configured.  When true, the layout wraps the log event in a
>>>>>> TlsSyslogFrame.  TlsSyslogFrame simply prepends a length to the full
>> log
>>>>>> message, but that length is required by syslog-ng to frame RFC5424
>>>>>> messages.  While the RFC for TCP-based transport of the RFC5424
>> format
>>>> does
>>>>>> not allow for non-TLS connections, some users (like us) would like
to
>>>> adopt
>>>>>> the RFC5424 format over TCP *without* TLS.  We believe, but have
not
>>>>>> tested, that we could do this by simply adding a configuration
>>>> parameter to
>>>>>> the SyslogAppender that allows us to override useTlsMessageFormat
to
>>>> true.
>>>>>> 
>>>>>> Any thoughts on this change?  Have we overlooked an obvious
>> alternative
>>>> to
>>>>>> achieving RFC5424 over TCP without TLS?
>>>>>> 
>>>>>> Thanks,
>>>>>> 
>>>>>> Michael Day
>>>>>> 
>>>>>> 
>>>>> 
>>>>> 
>>>>> --
>>>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
>>>>> Java Persistence with Hibernate, Second Edition
>>>>> <http://www.manning.com/bauer3/>
>>>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
>>>>> Spring Batch in Action <http://www.manning.com/templier/>
>>>>> Blog: http://garygregory.wordpress.com
>>>>> Home: http://garygregory.com/
>>>>> Tweet! http://twitter.com/GaryGregory
>>>> 
>>> 
>>> 
>>> 
>>> --
>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org
>>> Java Persistence with Hibernate, Second Edition
>>> <http://www.manning.com/bauer3/>
>>> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/>
>>> Spring Batch in Action <http://www.manning.com/templier/>
>>> Blog: http://garygregory.wordpress.com
>>> Home: http://garygregory.com/
>>> Tweet! http://twitter.com/GaryGregory
>> 
> 
> 
> 
> -- 
> E-Mail: garydgregory@gmail.com <mailto:garydgregory@gmail.com> | ggregory@apache.org
<mailto:ggregory@apache.org>
> Java Persistence with Hibernate, Second Edition
> <http://www.manning.com/bauer3/ <http://www.manning.com/bauer3/>>
> JUnit in Action, Second Edition <http://www.manning.com/tahchiev/ <http://www.manning.com/tahchiev/>>
> Spring Batch in Action <http://www.manning.com/templier/ <http://www.manning.com/templier/>>
> Blog: http://garygregory.wordpress.com <http://garygregory.wordpress.com/>
> Home: http://garygregory.com/ <http://garygregory.com/>
> Tweet! http://twitter.com/GaryGregory <http://twitter.com/GaryGregory>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message