CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-08 18:22:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

LS salt module - Change rulefile

Browse Source
This commit is contained in:
Mike Reeves
2018-02-15 14:28:44 -05:00
parent 0c77882640
commit 3fc9b1106f
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
salt/logstash/init.sls
View File

@@ -84,7 +84,7 @@ lslogdir:
{% if freq == '0' and dstats == '0' %} {% if freq == '0' and dstats == '0' %}
/opt/so/conf/logstash/rulesets: /opt/so/conf/logstash/rulesets.txt:
file.managed: file.managed:
- contents: - contents:
- FREQ=0 - FREQ=0
@@ -103,7 +103,7 @@ removedstats2:
- name: /opt/so/conf/logstash/pipeline/8008_postprocess_dns_whois_age.conf - name: /opt/so/conf/logstash/pipeline/8008_postprocess_dns_whois_age.conf
{% elif freq == '1' and dstats == '0' %} {% elif freq == '1' and dstats == '0' %}
/opt/so/conf/logstash/rulesets: /opt/so/conf/logstash/rulesets.txt:
file.managed: file.managed:
- contents: - contents:
- FREQ=1 - FREQ=1
@@ -117,14 +117,14 @@ removedstats2:
- name: /opt/so/conf/logstash/pipeline/8008_postprocess_dns_whois_age.conf - name: /opt/so/conf/logstash/pipeline/8008_postprocess_dns_whois_age.conf
{% elif freq == '1' and dstats == '1' %} {% elif freq == '1' and dstats == '1' %}
/opt/so/conf/logstash/rulesets: /opt/so/conf/logstash/rulesets.txt:
file.managed: file.managed:
- contents: - contents:
- FREQ=1 - FREQ=1
- DSTATS=1 - DSTATS=1
{% elif freq == '0' and dstats == '1' %} {% elif freq == '0' and dstats == '1' %}
/opt/so/conf/logstash/rulesets: /opt/so/conf/logstash/rulesets.txt:
file.managed: file.managed:
- contents: - contents:
- FREQ=0 - FREQ=0
@@ -159,7 +159,7 @@ so-logstash:
- /opt/so/conf/logstash/logstash-template.json:/logstash-template.json:ro - /opt/so/conf/logstash/logstash-template.json:/logstash-template.json:ro
- /opt/so/conf/logstash/beats-template.json:/beats-template.json:ro - /opt/so/conf/logstash/beats-template.json:/beats-template.json:ro
- /opt/so/conf/logstash/pipeline:/usr/share/logstash/pipeline:rw - /opt/so/conf/logstash/pipeline:/usr/share/logstash/pipeline:rw
- /opt/so/conf/logstash/rulesets:/usr/share/logstash/rulesets:ro - /opt/so/conf/logstash/rulesets.txt:/usr/share/logstash/rulesets.txt:ro
- /opt/so/rules:/etc/nsm/rules:ro - /opt/so/rules:/etc/nsm/rules:ro
- /nsm/import:/nsm/import:ro - /nsm/import:/nsm/import:ro
- /nsm/logstash:/usr/share/logstash/data:rw - /nsm/logstash:/usr/share/logstash/data:rw