I feel I must be missing something fundamental. Is there a way to restrict message acceptance (on the server side) to certain clients? within greylog itself? Or is it presumed this is done by the firewall / reverse proxy?
My simple case is a couple of VPS servers that I’d like to have sending messages. Could be GELF (HTTP or UDP). The greylog server is elsewhere tho, so the comms at this stage I intend to go over public internet. I’d rather not expose a general message reception port without some kind of authentication.
It seems that there is little in the way of auth built into GL, which make me think I’m missing something! The only thing I have found really so far in the docs mentions using a password protected TLS cert (I was hoping for something simpler, like basic auth over HTTPS).
Tips / ideas appreciated! Thank you!