--- /dev/null
+# Log syslog messages matching 'ovpn-' or 'openvpn' to /var/log/openvpn/openvpn.log
+if $programname startswith 'ovpn-' or $programname startswith 'openvpn' then /var/log/openvpn/openvpn.log
+
+# Stop processing matched logs (don't log them anywhere else)
+if $programname startswith 'ovpn-' or $programname startswith 'openvpn' then stop
--- /dev/null
+---
+- name: Create log directory
+ file:
+ path: /var/log/openvpn
+ state: directory
+
+- name: Set log dir SELinux context
+ command: restorecon -R /var/log/openvpn
+
+- name: Write logrotate conf file
+ copy:
+ src: files/openvpn.logrotate
+ dest: /etc/logrotate.d/openvpn
+ notify: restart rsyslog
+
+- name: Write rsyslog conf file
+ copy:
+ src: files/openvpn.rsyslog
+ dest: /etc/rsyslog.d/20-openvpn.conf
+ notify: restart rsyslog
no_log: true
notify: restart openvpn
+# Configure logging
+- import_tasks: logging.yml
+ tags:
+ - logging
+
- name: Make sure OpenVPN service is running and enabled
service:
name: "openvpn@{{ openvpn_server_name }}"
state: started
enabled: yes
-
-- name: Write logrotate conf file
- copy:
- src: files/openvpn.logrotate
- dest: /etc/logrotate.d/openvpn
projects / ceph-cm-ansible.git / commitdiff