How do I setup OpenVPN to rotate logs?

openvpn rsyslog
18,141

Solution 1

Add the contents of the following to new file /etc/rsyslog.d/20-ovpn.conf. This makes sure that log events sent to rsyslog are handled nicely.

# Create a template for the vpn log location
$template OpenVPN,"/var/log/openvpn/ovpn.log"

# Save log events where the programname starts with ovpn like ovpn-server to the 
# location mentioned in the template
:programname, startswith, "ovpn-" -?OpenVPN

# Stop processing ovpn-* log events 
:programname, startswith, "ovpn-" ~

Run this command and make sure that there is no output. 

grep ^log /etc/openvpn/server.conf

If this command outputs any lines, then your need to go into the config and comment out the log or log-append line. This will trigger the default logging that sends it to syslog.

Finally, create a new file /etc/logrotate.d/ovpn and add the contents below to that file. This will do a weekly rotation or rotate once a log file becomes 100M in size. It will keep 4 weeks and compress everything but that last two. 

/var/log/openvpn/*.log {
        weekly
        size 100M
        rotate 4
        compress
        delaycompress
        missingok
        notifempty
        create 640 syslog adm
}

Restart the rsyslog and then openvpn services to make sure these new configs take. You should see /var/log/openvpn and /var/log/openvpn/ovpn.log get created immediately by rsyslog after openvpn restarts.

Solution 2

Looks like the example above uses legacy rsyslog syntax. The documentation says this would be the current syntax:

if $programname startswith 'ovpn-' then /var/log/openvpn/ovpn.log
& ~

I tested it and it works for me(TM).

Share:
18,141

Related videos on Youtube

flickerfly
Author by

flickerfly

Updated on September 18, 2022

Comments

  • flickerfly
    flickerfly over 1 year

    I would like to rotate my openvpn logs. How can I accomplish this?

  • flickerfly
    flickerfly over 8 years
    Thanks, this will depend on what version of Ubuntu you are using. I believe it is valid for the latest LTS, but not previous unless you use a the rsyslog PPA. I do like the new syntax better.
  • Josip Rodin
    Josip Rodin over 8 years
    Truth be told, I actually tested this on Debian 7, where rsyslog is 5.8.x. But that same series is on Ubuntu 12 LTS.
  • Stéphane Chazelas
    Stéphane Chazelas over 8 years
    Confirmed to work on 14.04
  • artic sol
    artic sol over 4 years
    I also added the program openvpn: ``` if $programname startswith 'openvpn' then /var/log/openvpn/ovpn.log & ~ ```

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Can't connect to VPN after upgrading to Ubuntu 22.04
Openvpn with username and password
Is it possible to setup a VPN on Heroku?
Pre-configured EC2 VPN AMI
Pause a batch file until a host is reachable (using ping)?
rsyslog filtering and forwarding
SVN+SSH checkout over VPN using tortoise SVN, Smartsvn failing
NDK r10 b 32 bit or 64 bit or compile using both and how to achieve it
Forgot openvpn admin's password
Haproxy not logging with rsyslog