CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-01 17:07:50 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add filebeat modules

Browse Source
This commit is contained in:
Mike Reeves
2021-05-04 10:50:13 -04:00
parent d4e8ea8e72
commit 0622c77a7f
68 changed files with 2237 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
salt/filebeat/modules/checkpoint.yml.disabled
+24
View File
@@ -0,0 +1,24 @@
# Module: checkpoint
# Docs: https://www.elastic.co/guide/en/beats/filebeat/7.x/filebeat-module-checkpoint.html
- module: checkpoint
firewall:
enabled: true
# Set which input to use between syslog (default) or file.
#var.input: syslog
# The interface to listen to UDP based syslog traffic. Defaults to
# localhost. Set to 0.0.0.0 to bind to all available interfaces.
#var.syslog_host: localhost
# The UDP port to listen for syslog traffic. Defaults to 9001.
#var.syslog_port: 9001
# Set internal security zones. used to override parsed network.direction
# based on zone egress and ingress
#var.internal_zones: [ "Internal" ]
# Set external security zones. used to override parsed network.direction
# based on zone egress and ingress
#var.external_zones: [ "External" ]