Merge pull request #438 from Security-Onion-Solutions/fix/elastic_fixes

Fix/elastic fixes
2025-12-09 10:42:54 +01:00 · 2020-03-18 16:18:55 -04:00
parent 8bd3c3f333 7a71a2c459
commit 029c1791a2
3 changed files with 8 additions and 12 deletions
--- a/salt/filebeat/etc/filebeat.yml
+++ b/salt/filebeat/etc/filebeat.yml
@@ -226,7 +226,7 @@ output.elasticsearch:
  # Client Certificate Key
  #ssl.key: "/usr/share/filebeat/filebeat.key"

-
+setup.template.enabled: false
  # A dictionary of settings to place into the settings.index dictionary
  # of the Elasticsearch template. For more details, please check
  # https://www.elastic.co/guide/en/elasticsearch/reference/current/mapping.html
--- a/salt/logstash/pipelines/templates/so/so-beats-template.json
+++ b/salt/logstash/pipelines/templates/so/so-beats-template.json
@@ -2,8 +2,7 @@
  "index_patterns": [
    "so-beats-*"
  ],
-  "mappings": {
-    "doc": {
+    "mappings": {
      "_meta": {
        "version": "6.1.3"
      },
@@ -1265,12 +1264,11 @@
                  "ignore_above": 1024,
                  "type": "keyword"
                }
-              }
-            }
-          }
-        }
-      }
-    }
+             }
+           }
+         }
+       }
+     }
  },
  "order": 1,
  "settings": {
--- a/salt/logstash/pipelines/templates/so/so-common-template.json
+++ b/salt/logstash/pipelines/templates/so/so-common-template.json
@@ -8,7 +8,6 @@
    "index.refresh_interval":"30s"
  },
  "mappings":{
-    "doc":{
       "dynamic": false,
       "date_detection": false,
       "properties":{
@@ -349,7 +348,6 @@
          "type":"object",
          "dynamic": true
        }
-      }
-    }
+     }
  }
 }