Merge pull request #359 from Security-Onion-Solutions/feature/strelka_ls

Add initial/basic Strelka config
2025-12-06 17:22:49 +01:00 · 2020-02-17 21:47:32 -05:00
parent 4d98670fac 50fcf8307f
commit 3eb34d9926
2 changed files with 16 additions and 0 deletions
--- a/salt/logstash/conf/pipelines/eval/7200_strelka.conf
+++ b/salt/logstash/conf/pipelines/eval/7200_strelka.conf
@@ -0,0 +1,8 @@
 filter {
  if [type] =~ "strelka" {
    json {
      source => "message"
    }
  }
 }
--- a/salt/logstash/conf/pipelines/search/7200_strelka.conf
+++ b/salt/logstash/conf/pipelines/search/7200_strelka.conf
@@ -0,0 +1,8 @@
 filter {
  if [type] =~ "strelka" {
    json {
      source => "message"
    }
  }
 }