conf: Add logger example config
This commit is contained in:
parent
5da20b3dc6
commit
da8b16a160
|
@ -4,7 +4,8 @@ strongswanddir = $(strongswanconfdir)/strongswan.d
|
||||||
charonconfdir = $(strongswanddir)/charon
|
charonconfdir = $(strongswanddir)/charon
|
||||||
|
|
||||||
options = \
|
options = \
|
||||||
options/charon.opt
|
options/charon.opt \
|
||||||
|
options/charon-logging.opt
|
||||||
|
|
||||||
plugins = \
|
plugins = \
|
||||||
plugins/test.opt
|
plugins/test.opt
|
||||||
|
|
|
@ -0,0 +1,57 @@
|
||||||
|
charon.filelog {}
|
||||||
|
Section to define file loggers, see LOGGER CONFIGURATION in
|
||||||
|
**strongswan.conf**(5).
|
||||||
|
|
||||||
|
charon.filelog.<filename> { # }
|
||||||
|
<filename> is the full path to the log file.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.default = 1
|
||||||
|
Default loglevel.
|
||||||
|
|
||||||
|
Specifies the default loglevel to be used for subsystems for which no
|
||||||
|
specific loglevel is defined.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.<subsystem> = <default>
|
||||||
|
Loglevel for a specific subsystem.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.append = yes
|
||||||
|
If this option is enabled log entries are appended to the existing file.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.flush_line = no
|
||||||
|
Enabling this option disables block buffering and enables line buffering.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.ike_name = no
|
||||||
|
Prefix each log entry with the connection name and a unique numerical
|
||||||
|
identifier for each IKE_SA.
|
||||||
|
|
||||||
|
charon.filelog.<filename>.time_format
|
||||||
|
Prefix each log entry with a timestamp. The option accepts a format string
|
||||||
|
as passed to **strftime**(3).
|
||||||
|
|
||||||
|
charon.syslog {}
|
||||||
|
Section to define syslog loggers, see LOGGER CONFIGURATION in
|
||||||
|
**strongswan.conf**(5).
|
||||||
|
|
||||||
|
charon.syslog.identifier
|
||||||
|
Identifier for use with openlog(3).
|
||||||
|
|
||||||
|
Global identifier used for an **openlog**(3) call, prepended to each log
|
||||||
|
message by syslog. If not configured, **openlog**(3) is not called, so the
|
||||||
|
value will depend on system defaults (often the program name).
|
||||||
|
|
||||||
|
charon.syslog.<facility> { # }
|
||||||
|
<facility> is one of the supported syslog facilities, see LOGGER
|
||||||
|
CONFIGURATION in **strongswan.conf**(5).
|
||||||
|
|
||||||
|
charon.syslog.<facility>.default = 1
|
||||||
|
Default loglevel.
|
||||||
|
|
||||||
|
Specifies the default loglevel to be used for subsystems for which no
|
||||||
|
specific loglevel is defined.
|
||||||
|
|
||||||
|
charon.syslog.<facility>.<subsystem> = <default>
|
||||||
|
Loglevel for a specific subsystem.
|
||||||
|
|
||||||
|
charon.syslog.<facility>.ike_name = no
|
||||||
|
Prefix each log entry with the connection name and a unique numerical
|
||||||
|
identifier for each IKE_SA.
|
|
@ -62,9 +62,6 @@ charon.dos_protection = yes
|
||||||
charon.ecp_x_coordinate_only = yes
|
charon.ecp_x_coordinate_only = yes
|
||||||
Compliance with the errata for RFC 4753.
|
Compliance with the errata for RFC 4753.
|
||||||
|
|
||||||
charon.filelog
|
|
||||||
Section to define file loggers, see LOGGER CONFIGURATION
|
|
||||||
|
|
||||||
charon.flush_auth_cfg = no
|
charon.flush_auth_cfg = no
|
||||||
Free objects during authentication (might conflict with plugins).
|
Free objects during authentication (might conflict with plugins).
|
||||||
|
|
||||||
|
@ -259,10 +256,6 @@ charon.send_delay_type = 0
|
||||||
charon.send_vendor_id = no
|
charon.send_vendor_id = no
|
||||||
Send strongSwan vendor ID payload
|
Send strongSwan vendor ID payload
|
||||||
|
|
||||||
charon.syslog
|
|
||||||
Section to define syslog loggers
|
|
||||||
Section to define syslog loggers, see LOGGER CONFIGURATION
|
|
||||||
|
|
||||||
charon.threads = 16
|
charon.threads = 16
|
||||||
Number of worker threads in charon.
|
Number of worker threads in charon.
|
||||||
|
|
||||||
|
|
|
@ -1,16 +1,18 @@
|
||||||
.SH LOGGER CONFIGURATION
|
.SH LOGGER CONFIGURATION
|
||||||
The options described below provide a much more flexible way to configure
|
Options in
|
||||||
loggers for the IKEv2 daemon charon than using the
|
.BR strongswan.conf (5)
|
||||||
|
provide a much more flexible way to configure loggers for the IKE daemon charon
|
||||||
|
than using the
|
||||||
.B charondebug
|
.B charondebug
|
||||||
option in
|
option in
|
||||||
.BR ipsec.conf (5).
|
.BR ipsec.conf (5).
|
||||||
.PP
|
.PP
|
||||||
.B Please note
|
.BR Note :
|
||||||
that if any loggers are specified in strongswan.conf,
|
If any loggers are specified in strongswan.conf,
|
||||||
.B charondebug
|
.B charondebug
|
||||||
does not have any effect.
|
does not have any effect.
|
||||||
.PP
|
.PP
|
||||||
There are currently two types of loggers defined:
|
There are currently two types of loggers:
|
||||||
.TP
|
.TP
|
||||||
.B File loggers
|
.B File loggers
|
||||||
Log directly to a file and are defined by specifying the full path to the
|
Log directly to a file and are defined by specifying the full path to the
|
||||||
|
@ -29,43 +31,6 @@ section. The following facilities are currently supported:
|
||||||
.PP
|
.PP
|
||||||
Multiple loggers can be defined for each type with different log verbosity for
|
Multiple loggers can be defined for each type with different log verbosity for
|
||||||
the different subsystems of the daemon.
|
the different subsystems of the daemon.
|
||||||
.SS Options
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.default " [1]"
|
|
||||||
.TQ
|
|
||||||
.BR charon.syslog.<facility>.default
|
|
||||||
Specifies the default loglevel to be used for subsystems for which no specific
|
|
||||||
loglevel is defined.
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.<subsystem> " [<default>]"
|
|
||||||
.TQ
|
|
||||||
.BR charon.syslog.<facility>.<subsystem>
|
|
||||||
Specifies the loglevel for the given subsystem.
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.append " [yes]"
|
|
||||||
If this option is enabled log entries are appended to the existing file.
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.flush_line " [no]"
|
|
||||||
Enabling this option disables block buffering and enables line buffering.
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.ike_name " [no]"
|
|
||||||
.TQ
|
|
||||||
.BR charon.syslog.<facility>.ike_name
|
|
||||||
Prefix each log entry with the connection name and a unique numerical
|
|
||||||
identifier for each IKE_SA.
|
|
||||||
.TP
|
|
||||||
.BR charon.filelog.<filename>.time_format
|
|
||||||
Prefix each log entry with a timestamp. The option accepts a format string as
|
|
||||||
passed to
|
|
||||||
.BR strftime (3).
|
|
||||||
.TP
|
|
||||||
.BR charon.syslog.identifier
|
|
||||||
Global identifier used for an
|
|
||||||
.BR openlog (3)
|
|
||||||
call, prepended to each log message by syslog. If not configured,
|
|
||||||
.BR openlog (3)
|
|
||||||
is not called, so the value will depend on system defaults (often the program
|
|
||||||
name).
|
|
||||||
|
|
||||||
.SS Subsystems
|
.SS Subsystems
|
||||||
.TP
|
.TP
|
||||||
|
|
Loading…
Reference in New Issue