setup papertrail logging on managed hosts and sslproxy container

roles/ns.xai-corp.net/tasks/main.yml

@@ -6,6 +6,7 @@
   apt:
     name: "{{ item }}"
     update_cache: yes
+    cache_valid_time: 86400
     state: latest
   with_items:
     - bind9

roles/rsyslog/tasks/main.yml

@@ -3,6 +3,22 @@
 
 - debug: var=rsyslog
 
+- name: remove packages
+  apt:
+    state: present
+    name: "{{item}}"
+    update_cache: yes
+    cache_valid_time: 86400
+  with_items:
+    - rsyslog-gnutls
+
+- name: copy tls certs for papertrail
+  get_url:
+    url: https://papertrailapp.com/tools/papertrail-bundle.pem
+    dest: /etc/papertrail-bundle.pem
+    force: yes
+    mode: 0644
+
 - name: copy custom configs
   template:
     src: "{{ item }}.j2"

roles/rsyslog/templates/48-ship2papertrail.j2

@@ -0,0 +1,7 @@
+$DefaultNetstreamDriverCAFile /etc/papertrail-bundle.pem # trust these CAs
+$ActionSendStreamDriver gtls # use gtls netstream driver
+$ActionSendStreamDriverMode 1 # require TLS
+$ActionSendStreamDriverAuthMode x509/name # authenticate by hostname
+$ActionSendStreamDriverPermittedPeer *.papertrailapp.com
+
+*.*    @@logs6.papertrailapp.com:38577