Logstash cheat sheet: Difference between revisions

Jump to navigation Jump to search

Logstash cheat sheet (view source)

Revision as of 08:10, 23 October 2015

577 bytes added ,  23 October 2015
→‎SSL 証明書の件
=== SSL 証明書の件 ===
[https://github.com/elastic/logstash-forwarder/blob/master/README.md#important-tlsssl-certificate-notes IMPORTANT TLS/SSL CERTIFICATE NOTES]
[http://serverfault.com/questions/633681/logstash-forwarder-is-throwing-ssl-errors Logstash-forwarder is throwing SSL errors - Server Fault]
:IP address で サーバ指定している場合は、SAN (Subject Alternative Name) の証明書を作る必要がある。
:ubuntu で openssl なら /etc/ssl/openssl.cnf の alt_names セクションに IP.n 行を追加。 v3_ca セクションを追加。
<syntaxhighlight lang="text" enclose="div">
[req]
distinguished_name = req_distinguished_name
x509_extensions = v3_req
prompt = no
 
[req_distinguished_name]
C = AU
ST = Some-State
L = Locality Name
O = Internet Widgits Pty Ltd
CN = *
 
[v3_req]
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid,issuer
basicConstraints = CA:TRUE
subjectAltName = @alt_names
 
[alt_names]
DNS.1 = *
DNS.2 = *.*
DNS.3 = *.*.*
DNS.4 = *.*.*.*
DNS.5 = *.*.*.*.*
DNS.6 = *.*.*.*.*.*
DNS.7 = *.*.*.*.*.*.*
IP.1 = 192.168.1.2
IP.2 = 127.0.0.1
Retrieved from "https://www.egrep.jp/wiki/index.php/Special:MobileDiff/3255"

Navigation menu