Hi everybody,
I am trying to get a Synology NAS to send its internal logs to a VM
running rsyslog via TCP and TLS. The transmission works fine using UDP
but once I enable encryption in the Synology, I am getting a (not very
helpful) error message (see attached).
Eventually I recorded the traffic with tcpdump on the VM running rsyslog
and I see the a repeating pattern (second attachment).
As you can see, the connection is reset after an internal error by the
Synology box which happens right after the server HELLO. To me it looks
like the rsyslog server is doing a certificate request for client auth
but that is not supported by the Synology and so it crashes (I can only
upload a CA to verify the server certificate but not a client cert).
How can I disable this behavior? I am using StreamDriver.Authmode="anon"
which should disable the client certificate request.
Please find attached the rsyslog.conf in question.
Thank you very much in advance
OS: Fedora 35
Packages:
rsyslog.x86_64 8.2204.0-1.fc35 @updates-testing
rsyslog-gnutls.x86_64 8.2204.0-1.fc35 @updates-testing
rsyslog-openssl.x86_64 8.2204.0-1.fc35 @updates-testing
I am trying to get a Synology NAS to send its internal logs to a VM
running rsyslog via TCP and TLS. The transmission works fine using UDP
but once I enable encryption in the Synology, I am getting a (not very
helpful) error message (see attached).
Eventually I recorded the traffic with tcpdump on the VM running rsyslog
and I see the a repeating pattern (second attachment).
As you can see, the connection is reset after an internal error by the
Synology box which happens right after the server HELLO. To me it looks
like the rsyslog server is doing a certificate request for client auth
but that is not supported by the Synology and so it crashes (I can only
upload a CA to verify the server certificate but not a client cert).
How can I disable this behavior? I am using StreamDriver.Authmode="anon"
which should disable the client certificate request.
Please find attached the rsyslog.conf in question.
Thank you very much in advance
OS: Fedora 35
Packages:
rsyslog.x86_64 8.2204.0-1.fc35 @updates-testing
rsyslog-gnutls.x86_64 8.2204.0-1.fc35 @updates-testing
rsyslog-openssl.x86_64 8.2204.0-1.fc35 @updates-testing