This is a Java plugin for Logstash for accepting messages from fluentd secure_forward output.
It is fully free and fully open source. The license is Apache 2.0, meaning you are free to use it however you want.
Messages are expected to come in the form of a MessagePack.
This plugin is largely based on tagomoris/fluent-plugin-secure-forward
Follow instructions here.
Download the latest gem from the release page and install
bin/logstash-plugin install --no-verify --local logstash-input-fluent_secure_forward-1.0.0.gemEvery default input option (besides codec) is accepted.
| Key | Type | Description | Default |
|---|---|---|---|
| host | String | Hostname to listen on | 0.0.0.0 |
| port | String | Port to listen on | 24284 |
| shared_key | String | A shared key that must match between fluentd outputs and this input. This property is required. | |
| self_hostname | String | Hostname of server, validated against client. If using a load balancer, set this to the load balancer name. | auto generated |
| ssl_version | String | SSL version to use | TLSv1.2 |
| ssl_ciphers | String | Space delimited list of ciphers to enable | |
| ssl_enable | Boolean | Whether to bind as an SSL socket or not | true |
| ssl_cert | String | SSL certificate to use. Required if ssl_enable | |
| ssl_key | String | SSL private key. Required if ssl_enable | |
| authentication | Boolean | Require a valid username/password | false |
| users | Map | A map of usernames to passwords that can be used to authenticate | {} |
Example logstash config:
inputs {
fluent_secure_forward {
host => "0.0.0.0"
port => "24224"
ssl_key => "/etc/logstash/key.pem"
ssl_cert => "/etc/logstash/cert.pem"
self_hostname => "logstash.company.com"
shared_key => "secretsharedkey"
ssl_version => "TLSv1.2"
authentication => true
users => {
username => "password"
}
}
}