-
-
Notifications
You must be signed in to change notification settings - Fork 40
/
Copy pathmain.yml
99 lines (78 loc) · 3.35 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
---
# defaults file for rsyslog
# To configure a server to receive logs, set rsyslog_receiver to yes.
rsyslog_receiver: false
# To forward logs to another server, set rsyslog_remote to the hostname or
# the ipaddress of the receiving rsyslog server.
# Not setting this variable will not forward logs.
# rsyslog_remote: server1.example.com
# If rsylog_remote is set, sets the "selector" pattern for determining which
# messages to send to the remote server. Default "*.*" sends everything.
# See `man rsyslog.conf`.
rsyslog_remote_selector: "*.*"
# If rsylog_remote is set, use TCP if yes. UDP if no.
rsyslog_remote_tcp: true
# If rsylog_remote is set, destination port to use.
rsyslog_remote_port: 514
# Set the mode for new directories; only available in legacy template.
rsyslog_dircreatemode: "0700"
# Set the mode for new files; only available in legacy template.
rsyslog_filecreatemode: "0644"
# Set the mods enabled
rsyslog_mods:
- imuxsock
- imjournal
# Configure rsyslog minimally (may be in conflict with custom configuration files)
rsyslog_deploy_default_config: true
# Default rsyslogd rules
rsyslog_default_rules:
- { rule: '*.info;mail.none;authpriv.none;cron.none', logpath: '/var/log/messages' }
- { rule: 'authpriv.*', logpath: '/var/log/secure' }
- { rule: 'mail.*', logpath: '-/var/log/maillog' }
- { rule: 'cron.*', logpath: '/var/log/cron' }
- { rule: '*.emerg', logpath: ':omusrmsg:*' }
- { rule: 'uucp,news.crit', logpath: '/var/log/spooler' }
- { rule: 'local7.*', logpath: '/var/log/boot.log' }
# Use the (obsolete) legacy, pre-v6 configuration file format, or the more
# modern # 'advanced' configuration file format available in v6 and up. The
# default is to use the 'legacy' format to not change config files for
# existing users of this role out of the blue.
# More information on the different formats on the rsyslog website:
# https://www.rsyslog.com/doc/v8-stable/configuration/conf_formats.html
rsyslog_config_file_format: legacy
# The rule conf to name to add to /etc/rsyslog.d/
# rsyslog_forward_rule_name: <to fill>
# Configure the rsyslog package to be `present`, or set to `latest` to install
# the latest available version.
rsyslog_package_state: present
# if set to false (legacy default to remain compatible to sysklogd), the domain
# part from a name that is within the same domain as the receiving system is
# stripped. If set to on, full names are always used.
rsyslog_preservefqdn: false
# Configure additional config files in /etc/rsyslog.d
# Example:
# rsyslog_rsyslog_d_files:
# 000-splunk:
# content: |
# auth,authpriv.* action(type="omfwd"
# target="splunk"
# port="514"
# protocol="tcp")
rsyslog_rsyslog_d_files: []
# Avoid sd_journal_get_cursor() failed: Cannot assign requested address messages
# due to logrotate
rsyslog_workaroundjournalbug: false
# Turns off message reception via local log socket
rsyslog_imuxsock_syssock: false
# Install additional rsyslog packages
# Example for installing rsyslog-elastisearch:
# rsyslog_features:
# - gnutls
# - elastisearch
rsyslog_features: []
# Default destination of rsyslog config file
rsyslog_dest_conf_file: "/etc/rsyslog.conf"
# Enable / Disable option OmitLocalLogging
rsyslog_omit_local_logging: true
# Allow using the traditional file format.
rsyslog_traditional_file_format: true