docker-openldap icon indicating copy to clipboard operation
docker-openldap copied to clipboard
verified publisher icon osixia

Disable access log for k8s health check

Open jdomag opened this issue 4 years ago • 1 comments

I use liveness and readiness probe of tcp on port 389. Even if I set `--loglevel none' the logs are still there flooding my log server. Any idea how to disable those?

6040e4fe conn=2585 fd=13 ACCEPT from IP=100.98.117.1:52186 (IP=0.0.0.0:389)
6040e4fe conn=2585 fd=13 closed (connection lost)
6040e4fe conn=2586 fd=13 ACCEPT from IP=100.98.117.1:52192 (IP=0.0.0.0:389)
6040e4fe conn=2586 fd=13 closed (connection lost)
6040e500 conn=2587 fd=13 ACCEPT from IP=100.98.117.1:52222 (IP=0.0.0.0:389)
6040e500 conn=2587 fd=13 closed (connection lost)
6040e501 conn=2588 fd=13 ACCEPT from IP=100.96.123.0:27846 (IP=0.0.0.0:389)
6040e501 conn=2589 fd=14 ACCEPT from IP=100.96.18.0:31255 (IP=0.0.0.0:389)
6040e501 conn=2590 fd=16 ACCEPT from IP=100.98.58.0:36664 (IP=0.0.0.0:389)
6040e501 conn=2591 fd=15 ACCEPT from IP=100.98.75.0:26479 (IP=0.0.0.0:389)
6040e501 conn=2589 fd=14 closed (connection lost)
6040e501 conn=2590 fd=16 closed (connection lost)
6040e501 conn=2591 fd=15 closed (connection lost)
6040e501 conn=2593 fd=16 ACCEPT from IP=100.98.98.0:55938 (IP=0.0.0.0:389)
6040e501 conn=2592 fd=14 ACCEPT from IP=100.98.111.0:55728 (IP=0.0.0.0:389)
6040e501 conn=2594 fd=18 ACCEPT from IP=100.97.235.0:65500 (IP=0.0.0.0:389)
6040e501 conn=2588 fd=13 closed (connection lost)
6040e501 conn=2593 fd=16 closed (connection lost)
6040e501 conn=2592 fd=14 closed (connection lost)
6040e501 conn=2594 fd=18 closed (connection lost)
6040e502 conn=2595 fd=13 ACCEPT from IP=100.98.117.1:52266 (IP=0.0.0.0:389)
6040e502 conn=2595 fd=13 closed (connection lost)
6040e503 conn=2596 fd=13 ACCEPT from IP=100.98.117.1:52300 (IP=0.0.0.0:389)
6040e503 conn=2596 fd=13 closed (connection lost)
6040e504 conn=2597 fd=13 ACCEPT from IP=100.98.117.1:52312 (IP=0.0.0.0:389)
6040e504 conn=2597 fd=13 closed (connection lost)
6040e504 conn=2598 fd=13 ACCEPT from IP=100.98.117.1:15662 (IP=0.0.0.0:389)
6040e504 conn=2598 fd=13 closed (connection lost)
6040e505 conn=2599 fd=13 ACCEPT from IP=100.97.252.0:35203 (IP=0.0.0.0:389)
6040e505 conn=2600 fd=14 ACCEPT from IP=100.98.93.0:62129 (IP=0.0.0.0:389)
6040e505 conn=2601 fd=15 ACCEPT from IP=100.98.90.0:33103 (IP=0.0.0.0:389)
6040e505 conn=2599 fd=13 closed (connection lost)
6040e505 conn=2602 fd=13 ACCEPT from IP=100.96.235.0:25254 (IP=0.0.0.0:389)
6040e505 conn=2600 fd=14 closed (connection lost)
6040e505 conn=2601 fd=15 closed (connection lost)
6040e505 conn=2602 fd=13 closed (connection lost)
6040e505 conn=2603 fd=13 ACCEPT from IP=100.98.116.0:39394 (IP=0.0.0.0:389)
6040e505 conn=2603 fd=13 closed (connection lost)
6040e505 conn=2604 fd=13 ACCEPT from IP=100.98.108.0:19337 (IP=0.0.0.0:389)
6040e505 conn=2604 fd=13 closed (connection lost)
6040e506 conn=2605 fd=13 ACCEPT from IP=100.98.117.1:52346 (IP=0.0.0.0:389)
6040e506 conn=2605 fd=13 closed (connection lost)

jdomag avatar Mar 04 '21 13:03 jdomag

Hi,

the --loglevel <level> option only affects the "custom" scripts created by osixia (e.g. startup.sh). If you want to change the log level of the LDAP process (slapd) itself, you have to use the LDAP_LOG_LEVEL environment variable, see here.

koelle25 avatar Apr 08 '21 19:04 koelle25