Nagios Support Forum

Support for Nagios products and services
https://support.nagios.com/forum/

rsyslog with SELinux enforcing

https://support.nagios.com/forum/viewtopic.php?t=54980

Page 1 of 1

rsyslog with SELinux enforcing

Posted: Thu Aug 01, 2019 7:37 am
by nagioscarnovale
Hey everyone,

My security manager wants to implement SELINUX=enforcing

But when I launch the ./setup-linux.sh I see the following WARNING.


[root@client]# ./setup-linux.sh -s nagioslogserver -p 5544
Detected rsyslog 8.24.0
Detected rsyslog work directory /var/lib/rsyslog
Destination Log Server: nagioslogserver:5544
Creating /etc/rsyslog.d/99-nagioslogserver.conf...
==============================! WARNING !====================================
SELinux is enforcing. This may prevent rsyslog from forwarding messages.
If log messages do not reach Log Server from this host, ensure SELInux is
configured to allow rsyslog forwarding.
=============================================================================
rsyslog configuration check passed.
Restarting rsyslog service with 'service'...
Redirecting to /bin/systemctl restart rsyslog.service
Okay.
rsyslog is running with the new configuration.
Visit your Nagios Log Server dashboard to verify that logs are being received.
[root@client]#

Is there an official procedure to solve this problem?

I thank everyone in advance

Nicola

Re: rsyslog with SELinux enforcing

Posted: Thu Aug 01, 2019 3:36 pm
by cdienger
There isn't an official procedure, but this may be helpful in determining what(if anything) needs to be altered on system with it enabled:

https://access.redhat.com/documentation ... udit2allow
All times are UTC-05:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited