rsyslog-clientconf.go

package opnborg

import (
	"errors"
	"strings"
)

// checkRSysLogConfig
func checkRSysLogConfig(server string, config *OPNCall, opn *Opnsense) error {

	// setup target
	_ = getLogConf(strings.Split(config.RSysLog.Server, ":"))
	srv := strings.Split(config.RSysLog.Server, ":")

	// compare
	if err := compareLogConf(server, srv, opn); err != nil {
		// cleanup
		// configure
		return err
	}

	return nil
}

// compareLogConf
func compareLogConf(server string, srv []string, opn *Opnsense) error {

	// compare
	if opn.OPNsense.Syslog.Destinations.Destination.Enabled != "1" {
		details := server + " -> have: " + opn.OPNsense.Syslog.Destinations.Destination.Enabled + " need: 1"
		return errors.New("[TARGET-REMOTE-SYSLOG-SERVER-ENABLED] " + details)
	}
	if opn.OPNsense.Syslog.Destinations.Destination.Transport != "udp4" {
		details := server + " -> have: " + opn.OPNsense.Syslog.Destinations.Destination.Transport + " need: udp4"
		return errors.New("[TARGET-REMOTE-SYSLOG-HOSTNAME] " + details)
	}
	if opn.OPNsense.Syslog.Destinations.Destination.Hostname != srv[0] {
		details := server + " -> have: " + opn.OPNsense.Syslog.Destinations.Destination.Hostname + " need: " + srv[0]
		return errors.New("[TARGET-REMOTE-SYSLOG-HOSTNAME] " + details)
	}
	if opn.OPNsense.Syslog.Destinations.Destination.Port != srv[1] {
		details := server + " -> have: " + opn.OPNsense.Syslog.Destinations.Destination.Port + " need: " + srv[1]
		return errors.New("[TARGET-REMOTE-SYSLOG-PORT] " + details)
	}
	if opn.OPNsense.Syslog.Destinations.Destination.Rfc5424 != "1" {
		details := server + " -> have: " + opn.OPNsense.Syslog.Destinations.Destination.Rfc5424 + " need: 1"
		return errors.New("[TARGET-REMOTE-SYSLOG-PORT] " + details)
	}
	return nil
}

// getLogConf return an OPNSense RSysLog Configuration Object
func getLogConf(srv []string) *Opnsense {
	opn := new(Opnsense)
	opn.OPNsense.Syslog.Destinations.Destination.Uuid = "ce2c4ccb-77da-4e3f-96bd-7c3fca832bc7"
	opn.OPNsense.Syslog.Destinations.Destination.Enabled = "1"
	opn.OPNsense.Syslog.Destinations.Destination.Transport = "udp4"
	opn.OPNsense.Syslog.Destinations.Destination.Level = "notice,warn,err,crit,alert,emerg"
	opn.OPNsense.Syslog.Destinations.Destination.Hostname = srv[0]
	opn.OPNsense.Syslog.Destinations.Destination.Port = srv[1]
	opn.OPNsense.Syslog.Destinations.Destination.Certificate = ""
	opn.OPNsense.Syslog.Destinations.Destination.Rfc5424 = "1"
	opn.OPNsense.Syslog.Destinations.Destination.Description = "automatic rsyslog configuration by opnborg"
	opn.OPNsense.Syslog.Destinations.Destination.Facility = "kern,user,mail,daemon,auth,syslog,lpr,news,uucp,cron,authpriv,ftp,ntp,security,console,local0,local1,local2,local3,local4,local5,local6,local7"
	opn.OPNsense.Syslog.Destinations.Destination.Program = "audit,named,configd.py,dhcpd,dhcrelay,dnsmasq,filterlog,firewall,dpinger,haproxy,charon,kea-ctrl-agent,kea-dhcp4,kea-dhcp6,lighttpd,monit,nginx,ntp,ntpd,ntpdate,openvpn,pkg,pkg-static,captiveportal,ppp,unbound,bgpd,miniupnpd,olsrd,ospfd,routed,zebra,(squid-1),suricata,wireguard,hostapd"
	return opn
}