Securing Fluentd Communications with TLS

1 hour
  • 3 Learning Objectives

About this Hands-on Lab

In this lab, you will be provided two servers that have fluentd pre installed. Your task is to send logs from `/var/log/messages` to the target fluentd server. You must also do what is required to use TLS to send the log entries. You will need to generate certificates using OpenSSL and perform all the configuration tasks required to get this up and running.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Configure source1 to Use TLS to Send Logs to the target Server

On the server source1, you need to configure the installed Fluentd so that messages from /var/log/messages are sent to the server called target. You must also configure it so that it uses TLS to send the log entries.

Configure target to Receive Logs from source1 Using TLS

You need to do what is required, including generating a certificate using SSL and adding any configuration entries to that the server called target, so it can receive log entries via TLS from the server called source1.

Check If Test Logs Are Received

Test that the changes have worked and any new entries to the /var/log/messages onsource1 are now being sent to the td-agent stdout on target.

The logger command can be used to send message to /var/log/messages.

Additional Resources

You have been told that you can secure the communications between Fluentd nodes by using TLS and certificates.

Since your organization uses Fluentd between data centers and over potentially insecure networks, you want to protect the traffic from any possible interception.

You will create two configurations, one target and one source, and configure them so that they will use TLS to communicate between them.

You will then test that they work.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?