Stunnel

Overview

Stunnel is a proxy designed to add TLS encryption functionality to existing clients and servers without any changes in the programs’ code.

Use the Datadog - Stunnel proxy integration to monitor potential network issues or DDoS attacks.

Setup

Installation

You must install the Datadog Agent on the server running Stunnel.

Configuration

Create a stunnel.d/conf.yaml file in the conf.d/ folder at the root of your Agent’s configuration directory to start collecting your Stunnel Proxy logs.

Log collection

Available for Agent versions >v6.0

1. Collecting logs is disabled by default in the Datadog Agent. You must enable it in the datadog.yaml file:

   logs_enabled: true
   

2. Add this configuration block to your stunnel.d/conf.yaml file to start collecting Stunnel Logs:

   logs:
       - type: file
         path: /var/log/stunnel.log
         source: stunnel
         service: '<MY_SERVICE>'
         sourcecategory: proxy
   

   Change the path and service parameter values and configure them for your environment.

3. Restart the Agent

Validation

Run the Agent’s status subcommand and look for stunnel under the Checks section.