Hello,
I'm using logstash to receive logs from some equipments,
I'm using these 3 input : UDP, TCP and beats.
TCP will replace UDP to encrypt logs trafic but I have a problem with the TCP input :
tcp {
type => "log-synology"
host => "<DNS record to the host>"
port => 5140
ssl_enable => true
ssl_certificate => "<fullchain.pem path>"
ssl_key => "<privkey.pem path>"
}
It's a signed Let's Encrypt Certificate and the encryption works well with the beats input.
Here is the error when receiving logs :
[nioEventLoopGroup-2-1] tcp - null: closing due: io.netty.handler.codec.DecoderException: javax.net.ssl.SSLHandshakeException: Insufficient buffer remaining for AEAD cipher fragment (2). Needs to be more than tag size (16)
Someone know that problem ?
Environnment :
Ubuntu 22.04.3 LTS
Elasticsearch version 8.13.2
logstash version 8.13.2
java 21.0.3 2024-04-16 LTS Java(TM) SE Runtime Environment (build 21.0.3+7-LTS-152) Java HotSpot(TM) 64-Bit Server VM (build 21.0.3+7-LTS-152, mixed mode, sharing)