Hello everyone. I am trying to configure rsyslog to send messages to a mysql database using the ommysql plugin.
From the command line of the host running rsyslog, I am able to invoke the mysql command line utility and connect to my database that way. However, when I use the same credentials in the configuration for ommysql, the database rejects rsyslog with Access Denied errors. Both hosts are running Debian 12 bookworm. I have copied the configuration from an older host running Ubuntu 20, and I’m trying to get it to work on my new host. The old host is running rsyslog 8.2001.0 The new host is running rsyslog 8.2302.0 I eventually compared two traffic dumps in wireshark and noticed that one was using TLS and one wasn’t. Both hosts are talking on the correct port. Both the old and new host are using the same username and password, but have different hostnames. Using SHOW CREATE USER and SHOW GRANTS FOR on the database confirms to me that the old and new host have the same privileges and settings. Running `sudo /usr/sbin/rsyslogd -N1 -f ./rsyslog.conf` shows that my configuration has no errors. I tried following the steps in https://www.rsyslog.com/doc/faq/encrypt_mysql_traffic_ommysql.html to ensure TLS was enabled, but that did not work. The ommysql documentation says that it should load the default client section for MySQL configuration if $OnMySQLConfigSection is not specified, which is what contains my TLS settings. So I don’t understand why I’m not getting a connection through. If anyone has experience configuring ommysql with TLS, and can show me an example of a working configuration, that would be much appreciated. Jamie Getty DevOps Engineer [cid:[email protected]] E [email protected]<mailto:[email protected]> Research and Education Advanced Network New Zealand www.reannz.co.nz<https://www.reannz.co.nz/>
_______________________________________________ rsyslog mailing list https://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
