Ensure IPs are typed as IP and ports as integer

2025-12-06 17:22:49 +01:00 · 2020-09-29 18:20:15 +00:00
parent ebe00822f8
commit 36019727b3
2 changed files with 40 additions and 22 deletions
--- a/salt/elasticsearch/templates/so/so-common-template.json
+++ b/salt/elasticsearch/templates/so/so-common-template.json
@@ -7,6 +7,7 @@
    "number_of_shards":1,
    "index.refresh_interval":"30s",
    "index.routing.allocation.require.box_type":"hot",
+    "index.mapping.total_fields.limit": "1500",
    "analysis": {
      "analyzer": {
        "es_security_analyzer": {
@@ -41,6 +42,24 @@
       "dynamic":false,
       "date_detection":false,
       "dynamic_templates": [
+       {
+          "ip_address": {
+            "match_mapping_type": "string",
+            "path_match": "*.ip",
+            "mapping": {
+              "type": "ip"
+            }
+          }
+       },
+       {
+          "port": {
+            "match_mapping_type": "string",
+            "path_match": "*.port",
+            "mapping": {
+              "type": "integer"
+            }
+          }
+       },
       {
          "strings": {
            "match_mapping_type": "string",
@@ -59,8 +78,7 @@
             }
            }
          }
-        }
-      ],
+       }],
       "properties":{
        "@timestamp":{
          "type":"date"
--- a/salt/kibana/files/saved_objects.ndjson
+++ b/salt/kibana/files/saved_objects.ndjson