1SYSTEMD-JOURNAL-UPLOAD(8)   systemd-journal-upload   SYSTEMD-JOURNAL-UPLOAD(8)
2
3
4

NAME

6       systemd-journal-upload - Send journal messages over the network
7

SYNOPSIS

9       systemd-journal-upload [OPTIONS...] [-u/--url=URL] [SOURCES...]
10

DESCRIPTION

12       systemd-journal-upload will upload journal entries to the URL specified
13       with --url. Unless limited by one of the options specified below, all
14       journal entries accessible to the user the program is running as will
15       be uploaded, and then the program will wait and send new entries as
16       they become available.
17

OPTIONS

19       -u, --url=[https://]URL, --url=[http://]URL
20           Upload to the specified address.  URL may specify either just the
21           hostname or both the protocol and hostname.  https is the default.
22
23       --system, --user
24           Limit uploaded entries to entries from system services and the
25           kernel, or to entries from services of current user. This has the
26           same meaning as --system and --user options for journalctl(1). If
27           neither is specified, all accessible entries are uploaded.
28
29       -m, --merge
30           Upload entries interleaved from all available journals, including
31           other machines. This has the same meaning as --merge option for
32           journalctl(1).
33
34       -D, --directory=DIR
35           Takes a directory path as argument. Upload entries from the
36           specified journal directory DIR instead of the default runtime and
37           system journal paths. This has the same meaning as --directory
38           option for journalctl(1).
39
40       --file=GLOB
41           Takes a file glob as an argument. Upload entries from the specified
42           journal files matching GLOB instead of the default runtime and
43           system journal paths. May be specified multiple times, in which
44           case files will be suitably interleaved. This has the same meaning
45           as --file option for journalctl(1).
46
47       --cursor=
48           Upload entries from the location in the journal specified by the
49           passed cursor. This has the same meaning as --cursor option for
50           journalctl(1).
51
52       --after-cursor=
53           Upload entries from the location in the journal after the location
54           specified by the this cursor. This has the same meaning as
55           --after-cursor option for journalctl(1).
56
57       --save-state[=PATH]
58           Upload entries from the location in the journal after the location
59           specified by the cursor saved in file at PATH
60           (/var/lib/systemd/journal-upload/state by default). After an entry
61           is successfully uploaded, update this file with the cursor of that
62           entry.
63
64       -h, --help
65           Print a short help text and exit.
66
67       --version
68           Print a short version string and exit.
69

EXIT STATUS

71       On success, 0 is returned; otherwise, a non-zero failure code is
72       returned.
73

EXAMPLES

75       Example 1. Setting up certificates for authentication
76
77       Certificates signed by a trusted authority are used to verify that the
78       server to which messages are uploaded is legitimate, and vice versa,
79       that the client is trusted.
80
81       A suitable set of certificates can be generated with openssl:
82
83           openssl req -newkey rsa:2048 -days 3650 -x509 -nodes \
84                 -out ca.pem -keyout ca.key -subj '/CN=Certificate authority/'
85
86           cat >ca.conf <<EOF
87           [ ca ]
88           default_ca = this
89
90           [ this ]
91           new_certs_dir = .
92           certificate = ca.pem
93           database = ./index
94           private_key = ca.key
95           serial = ./serial
96           default_days = 3650
97           default_md = default
98           policy = policy_anything
99
100           [ policy_anything ]
101           countryName             = optional
102           stateOrProvinceName     = optional
103           localityName            = optional
104           organizationName        = optional
105           organizationalUnitName  = optional
106           commonName              = supplied
107           emailAddress            = optional
108           EOF
109
110           touch index
111           echo 0001 > serial
112
113           SERVER=server
114           CLIENT=client
115
116           openssl req -newkey rsa:1024 -nodes -out $SERVER.csr -keyout $SERVER.key -subj "/CN=$SERVER/"
117           openssl ca -batch -config ca.conf -notext -in $SERVER.csr -out $SERVER.pem
118
119           openssl req -newkey rsa:1024 -nodes -out $CLIENT.csr -keyout $CLIENT.key -subj "/CN=$CLIENT/"
120           openssl ca -batch -config ca.conf -notext -in $CLIENT.csr -out $CLIENT.pem
121
122       Generated files ca.pem, server.pem, and server.key should be installed
123       on server, and ca.pem, client.pem, and client.key on the client. The
124       location of those files can be specified using TrustedCertificateFile=,
125       ServerCertificateFile=, ServerKeyFile=, in
126       /etc/systemd/journal-remote.conf and /etc/systemd/journal-upload.conf
127       respectively. The default locations can be queried by using
128       systemd-journal-remote --help and systemd-journal-upload --help.
129

SEE ALSO

131       systemd-journal-remote(8), journalctl(1), systemd-journald.service(8),
132       systemd-journal-gatewayd.service(8)
133
134
135
136systemd 219                                          SYSTEMD-JOURNAL-UPLOAD(8)
Impressum