System logging 400 Log to system console (/dev/console) #include Log to remote host Invalid host (FQDN or IP address) ipv4 Remote syslog server IPv4 address ipv6 Remote syslog server IPv6 address hostname Remote syslog server FQDN #include Logging format Allows for the transmission of multi-line messages (TCP only) Use RFC 5424 format (with RFC 3339 timestamp and timezone) #include 514 #include #include #include Transport Layer Security (TLS) options for secure syslog #include #include Specify the authentication and verification method for the remote peer's certificate during the TLS handshake anon fingerprint certvalid name anon Allow encrypted connection without verifying the peer's identity (anonymous TLS) fingerprint Authenticate peer by matching its certificate fingerprint to a configured, permitted list (`permitted-peer` option) certvalid Authenticate peer if it presents a certificate signed by a trusted CA name Authenticate peer by verifying its certificate subject name against a configured value (`permitted-peer` option) (anon|fingerprint|certvalid|name) anon Allowed peer certificate fingerprint or subject name txt Peer fingerprint - SHA1:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX or subject name - logs.example.com Log to standard system location /var/log/messages #include Mark messages sent to syslog #include Mark message interval u32:1-65535 Time in seconds Port number must be in range 1 to 65535 1200 Always include domain portion in hostname