Remote CFSSL server.

The address of the remote endpoint to forward traffic over.

Optional url of remote repository

The address of the remote endpoint to forward traffic over.

The address of the remote endpoint to forward traffic over.

Header to trust for remote IP, if present

Port number for remote control operations (uses TLS over TCP).

Name of the remote read config, which if specified must be unique among remote read configs

Remote UDP port

IP address or hostname of the remote end (use 0.0.0.0 for a floating/dynamic remote endpoint).

Name of the remote write config, which if specified must be unique among remote write configs

Whether to enable remote control via nsd-control.

The port to listen to

Configuration in the journal-remote configuration file

Which protocol to listen to.

The location of the output journal

Timeout for requests to the remote read endpoint.

Whether to allow the remote address and port to change when properly encrypted packets are received.

Whether to enable receiving systemd journals from the network.

Timeout for requests to the remote write endpoint.

Open ports in the firewall for Steam Remote Play.

Cassandra ships with JMX accessible only from localhost

Whether to enable Remote Desktop support using Pipewire.

Endpoint for prometheus compatible remote_write

Endpoint for the victorialogs instance

Listen on remote and forwards traffic from local

Which interfaces NSD should bind to for remote control.

Address to listen on for remote write requests

Custom HTTP headers to be sent along with each remote read request

Set the class A subnet number to use for the internal remote DNS mapping, uses the reserved 224.x.x.x range by default.

Custom HTTP headers to be sent along with each remote write request

Periodically sign the data in the journal using Forward Secure Sealing.

Path to the server private key, which is used by the server but not by nsd-control

Section for a remote authentication round

Parameters of the endpoints to query from

Path to the server self signed certificate, which is used by the server but and by nsd-control

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

A path to a SSL secret key file in PEM format

Path to the client private key, which is used by nsd-control but not by the server

Whether to enable modification of share contents through the web ui.

Parameters of the endpoints to send samples to

ServerName extension to indicate the name of the server. http://tools.ietf.org/html/rfc4366#section-3.1

With "host", a separate output file is used, based on the hostname of the other endpoint of a connection

Path to the client certificate signed with the server certificate

Configures the remote read request's TLS settings.

Configures the remote write request's TLS settings.

Configures AWS Signature Version 4 settings.

Sets the Authorization header on every remote read request with the configured username and password. password and password_file are mutually exclusive.

The maximum file-based buffer size in bytes

Sets the Authorization header on every remote write request with the configured username and password. password and password_file are mutually exclusive.

Basic Auth username used to connect to remote_write endpoint

Basic Auth username used to connect to remote_write endpoint

Remote ZFS filesystem where snapshots should be sent.

File that contains the Basic Auth password used to connect to remote_write endpoint

File that contains the Basic Auth password used to connect to remote_write endpoint

The AWS region.

A list of remote servers to which to send each message

Configures the queue used to write to remote storage.

Sets the Authorization header on every remote read request with the configured bearer token

The named AWS profile used to authenticate.

Sets the Authorization header on every remote write request with the configured bearer token

Optional Proxy URL.

Path to the remotes control file

Optional Proxy URL.

The AWS role ARN.

Identity in CA certificate to accept for authentication

Authentication to expect from remote

Whether to enable writing to the Nix store as a remote store via SSH

The Access Key ID.

The Secret Access Key.

A path to a SSL certificate file in PEM format

Whether reads should be made for queries for time ranges that the local storage should have complete data for.

Number of samples to buffer per shard before we block reading of more samples from the WAL

Section for a certificate candidate to use for authentication

IKE identity to expect for authentication round

Optional slot number of the token that stores the certificate.

Configures the sending of series metadata to remote storage

Whether metric metadata is sent to remote storage or not.

List of certificates to accept for authentication

CA certificate to validate API server certificate with.

A path to a SSL CA certificate file in PEM format, or all

Optional numeric identifier by which authentication rounds are sorted

Section for a CA certificate to accept for authentication

Identity to use as peer identity during EAP authentication

CA certificate to validate API server certificate with.

HTTP username

HTTP password

Absolute path to the certificate to load

Optional PKCS#11 module name.

Optional slot number of the token that stores the certificate.

Key file for client cert authentication to the server.

HTTP password

HTTP username

List of CA certificates to accept for authentication

List of raw public keys to accept for authentication

Hex-encoded CKA_ID or handle of the certificate on a token or TPM, respectively

Absolute path to the certificate to load

Authorization group memberships to require

Key file for client cert authentication to the server.

Optional PKCS#11 module name.