Manage rsyslog and rsyslog.d in Debian-like systems.
None
-
rsyslog_repeated_msg_reduction
: [default:true
]: Repeated message reduction -
rsyslog_file_owner
: [default:syslog
,root
on Debian]: Set the file owner for dynaFiles newly created -
rsyslog_file_group
: [default:adm
]: Set the file group for dynaFiles newly created -
rsyslog_file_create_mode
: [default:0640
]: The creation mode with which rsyslogd creates new files -
rsyslog_dir_create_mode
: [default:0755
]: The creation mode with which rsyslogd creates new directories -
rsyslog_umask
: [default:0022
]: The default rsyslogd processes' umask -
rsyslog_priv_drop_to_user
: [default:syslog
, not used on Debian]: Name of the user rsyslog should run under after startup -
rsyslog_priv_drop_to_group
: [default:syslog
, not used on Debian]: Name of the group rsyslog should run under after startup -
rsyslog_rsyslog_d_files
[default:{}
]:/etc/rsyslog.d/*
file(s) declarations -
rsyslog_rsyslog_d_files.key
: The name of the rsyslog configuration file (e.g50-default
) -
rsyslog_rsyslog_d_files.key.state
[default:present
]: State -
rsyslog_rsyslog_d_files.key.validate
[default:true
]: Whether this configuration should be validated before it is applied -
rsyslog_rsyslog_d_files.key.settings
[default:[]
]: Settings declarations -
rsyslog_rsyslog_d_files.key.rules
[default:{}
]: Rule declarations -
rsyslog_rsyslog_d_files.key.rules.{n}.rule
[required]: Rule declaration -
rsyslog_rsyslog_d_files.key.rules.{n}.logpath
[required]: Path of the log file -
rsyslog_rsyslog_d_files.key.directives
[default:[]
]: Directive declarations
None
---
- hosts: all
roles:
- rsyslog
---
- hosts: all
roles:
- rsyslog
vars:
rsyslog_repeated_msg_reduction: true
rsyslog_file_owner: syslog
rsyslog_file_group: adm
rsyslog_file_create_mode: '0640'
rsyslog_dir_create_mode: '0755'
rsyslog_umask: '0022'
rsyslog_priv_drop_to_user: syslog
rsyslog_priv_drop_to_group: syslog
rsyslog_rsyslog_d_files:
20-ufw:
rules:
- rule: ':msg,contains,"[UFW "'
logpath: '/var/log/ufw.log'
postfix: "{{ rsyslog_rsyslog_d_presets_postfix }}"
49-haproxy:
settings:
# Create an additional socket in haproxy's chroot in order to allow logging via
# /dev/log to chroot'ed HAProxy processes
- '$AddUnixListenSocket /var/lib/haproxy/dev/log'
rules:
# Send HAProxy messages to a dedicated logfile
- rule: ':programname, startswith, "haproxy"'
logpath: '/var/log/haproxy.log'
directives:
- '&~'
MIT
- Mark van Driel
- Mischa ter Smitten
Are welcome!