CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

Custom pipeline configuration

Browse Source
This commit is contained in:
Wes
2024-01-31 20:17:33 +00:00
parent bc75be9402
commit 1853dc398b
1 changed files with 18 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
salt/logstash/defaults.yaml
View File

@@ -42,6 +42,24 @@ logstash:
custom2: [] custom2: []
custom3: [] custom3: []
custom4: [] custom4: []
pipeline_config:
custom01: |-
filter {
if [event][module] =~ "zeek" {
mutate {
add_tag => ["network_stuff"]
}
}
}
custom02: PLACEHOLDER
custom03: PLACEHOLDER
custom04: PLACEHOLDER
custom05: PLACEHOLDER
custom06: PLACEHOLDER
custom07: PLACEHOLDER
custom08: PLACEHOLDER
custom09: PLACEHOLDER
custom10: PLACEHOLDER
settings: settings:
lsheap: 500m lsheap: 500m
config: config: