Puppet Class: profile::syslog::centralserver
- Defined in:
- modules/profile/manifests/syslog/centralserver.pp
Overview
Setup rsyslog as a receiver of cluster wide syslog messages.
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 |
# File 'modules/profile/manifests/syslog/centralserver.pp', line 3
class profile::syslog::centralserver (
Integer $log_retention_days = lookup('profile::syslog::centralserver::log_retention_days'),
Boolean $use_kafka_relay = lookup('profile::syslog::centralserver::use_kafka_relay', {'default_value' => true}),
){
ferm::service { 'rsyslog-receiver_udp':
proto => 'udp',
port => 514,
notrack => true,
srange => '($DOMAIN_NETWORKS $MGMT_NETWORKS)',
}
ferm::service { 'rsyslog-receiver_tcp':
proto => 'tcp',
port => 6514,
notrack => true,
srange => '($DOMAIN_NETWORKS $MGMT_NETWORKS)',
}
class { 'rsyslog::receiver':
log_retention_days => $log_retention_days,
}
if $use_kafka_relay {
ferm::service { 'rsyslog-netdev_kafka_relay_udp':
proto => 'udp',
port => 10514,
notrack => true,
srange => '($DOMAIN_NETWORKS $MGMT_NETWORKS $NETWORK_INFRA)',
}
class { 'profile::rsyslog::netdev_kafka_relay': }
}
monitoring::service { "syslog::centralserver ${::hostname} syslog-tls":
description => 'rsyslog TLS listener on port 6514',
check_command => "check_ssl_on_host_port!${::fqdn}!${::fqdn}!6514",
notes_url => 'https://wikitech.wikimedia.org/wiki/Logs',
}
mtail::program { 'kernel':
ensure => present,
source => 'puppet:///modules/mtail/programs/kernel.mtail',
notify => Service['mtail'],
}
mtail::program { 'systemd':
ensure => present,
source => 'puppet:///modules/mtail/programs/systemd.mtail',
notify => Service['mtail'],
}
mtail::program { 'ulogd':
ensure => present,
source => 'puppet:///modules/mtail/programs/ulogd.mtail',
notify => Service['mtail'],
}
}
|