support for modifying nic channels

2025-12-06 17:22:49 +01:00 · 2025-08-27 14:51:57 -04:00
parent ccd79c814d
commit 0858160be2
6 changed files with 36 additions and 3 deletions
--- a/salt/manager/tools/sbin/so-minion
+++ b/salt/manager/tools/sbin/so-minion
@@ -454,6 +454,7 @@ function add_sensor_to_minion() {
        echo "sensor:"
        echo "  interface: '$INTERFACE'"
        echo "  mtu: 9000"
+		echo "  channels: 1"
        echo "zeek:"
        echo "  enabled: True"
        echo "  config:"
--- a/salt/sensor/defaults.yaml
+++ b/salt/sensor/defaults.yaml
@@ -0,0 +1,4 @@
+sensor:
+  interface: bond0
+  mtu: 9000
+  channels: 1
--- a/salt/sensor/init.sls
+++ b/salt/sensor/init.sls
@@ -9,6 +9,8 @@
 #    in the software, and you may not remove or obscure any functionality in the
 #    software that is protected by the license key."

+{% from 'sensor/map.jinja' import SENSORMERGED %}
+
 {% if 'vrt' in salt['pillar.get']('features') and salt['grains.get']('salt-cloud', {}) %}

 include:
@@ -28,3 +30,18 @@ execute_checksum:
    - name: /etc/NetworkManager/dispatcher.d/pre-up.d/99-so-checksum-offload-disable
    - onchanges:
      - file: offload_script
+
+combine_bond_script:
+  file.managed:
+    - name: /usr/sbin/so-combine-bond
+    - source: salt://sensor/tools/sbin_jinja/so-combine-bond
+    - mode: 755
+    - template: jinja
+    - defaults:
+         CHANNELS: {{ SENSORMERGED.channels }}
+
+execute_combine_bond:
+  cmd.run:
+    - name: /usr/sbin/so-combine-bond
+    - onchanges:
+      - file: combine_bond_script
--- a/salt/sensor/map.jinja
+++ b/salt/sensor/map.jinja
@@ -0,0 +1,7 @@
+{# Copyright Security Onion Solutions LLC and/or licensed to Security Onion Solutions LLC under one
+   or more contributor license agreements. Licensed under the Elastic License 2.0 as shown at 
+   https://securityonion.net/license; you may not use this file except in compliance with the
+   Elastic License 2.0. #}
+
+{% import_yaml 'sensor/defaults.yaml' as SENSORDEFAULTS %}
+{% set SENSORMERGED = salt['pillar.get']('sensor', SENSORDEFAULTS.sensor, merge=True) %}
--- a/salt/sensor/soc_sensor.yaml
+++ b/salt/sensor/soc_sensor.yaml
@@ -7,3 +7,9 @@ sensor:
    description: Maximum Transmission Unit (MTU) of the sensor monitoring interface.
    helpLink: network.html
    readonly: True
+  channels:
+    description: Set the size of the nic channels. This is rarely changed from 1 
+    helpLink: network.html
+    forcedType: int
+    node: True
+    advanced: True
--- a/salt/sensor/tools/sbin_jinja/so-combine-bond
+++ b/salt/sensor/tools/sbin_jinja/so-combine-bond
@@ -5,10 +5,8 @@

 . /usr/sbin/so-common

-{% set NICCHANNELS = salt['pillar.get']('sensor:channels', '1') %}
-
 # Number of channels to set
-CHANNELS={{ NICCHANNELS }}
+CHANNELS={{ CHANNELS }}

 # Exit on any error
 set -e