From c0721b3ac2df3068b81ee2701a098d2042e3769d Mon Sep 17 00:00:00 2001 From: Leonardo Di Donato Date: Wed, 25 Sep 2019 11:35:48 +0000 Subject: [PATCH] docs: document gRPC server and gRPC output service config options Co-authored-by: Lorenzo Fontana Signed-off-by: Leonardo Di Donato --- falco.yaml | 10 +++++++++- 1 file changed, 9 insertions(+), 1 deletion(-) diff --git a/falco.yaml b/falco.yaml index 5ef62edc..2ebacd12 100644 --- a/falco.yaml +++ b/falco.yaml @@ -168,6 +168,11 @@ http_output: enabled: false url: http://some.url +# gRPC server configuration. +# The gRPC server is secure by default (mutual TLS) so you need to generate certificates and update their paths here. +# By default the gRPC server is off. +# You can configure the address to bind and expose it. +# By modifying the threadiness configuration you can fine-tune the number of threads (and context) it will use. grpc: enabled: false bind_address: "0.0.0.0:5060" @@ -176,5 +181,8 @@ grpc: cert_chain: "/etc/falco/certs/server.crt" root_certs: "/etc/falco/certs/ca.crt" +# gRPC output service. +# By default it is off. +# By enabling this all the output events will be kept in memory until you read them with a gRPC client. grpc_output: - enabled: true \ No newline at end of file + enabled: false \ No newline at end of file