Update index pattern in various template definitions to match new data stream naming convention

2025-12-06 09:12:45 +01:00 · 2023-01-23 21:52:44 +00:00
parent 40c6b380df
commit 51692ac66c
1 changed files with 10 additions and 10 deletions
--- a/salt/elasticsearch/defaults.yaml
+++ b/salt/elasticsearch/defaults.yaml
@@ -1165,7 +1165,7 @@ elasticsearch:
      index_template:
        data_stream: {}
        index_patterns:
-          - logs-*_so
+          - logs-*-so*
        template:
          mappings:
            dynamic_templates:
@@ -1418,7 +1418,7 @@ elasticsearch:
      index_sorting: False
      index_template:
        index_patterns:
-          - so-elasticsearch*
+          - logs-elasticsearch-default*
        template:
          mappings:
            dynamic_templates:
@@ -2171,7 +2171,7 @@ elasticsearch:
      index_template:
        data_stream: {}
        index_patterns:
-          - logs-*-suricata_so
+          - logs-suricata-so*
        template:
          mappings:
            dynamic_templates:
@@ -2339,7 +2339,7 @@ elasticsearch:
      index_template:
        data_stream: {}
        index_patterns:
-          - logs-*-import_so
+          - logs-import-so*
        template:
          mappings:
            dynamic_templates:
@@ -2678,7 +2678,7 @@ elasticsearch:
      index_sorting: False
      index_template:
        index_patterns:
-          - logs-*-kratos_so
+          - logs-kratos-so*
        template:
          mappings:
            dynamic_templates:
@@ -2755,7 +2755,7 @@ elasticsearch:
      index_sorting: False
      index_template:
        index_patterns:
-          - so-logstash*
+          - logs-logstash-default*
        template:
          mappings:
            dynamic_templates:
@@ -3676,7 +3676,7 @@ elasticsearch:
      index_sorting: False
      index_template:
        index_patterns:
-          - so-redis*
+          - logs-redis-default*
        template:
          mappings:
            dynamic_templates:
@@ -4178,7 +4178,7 @@ elasticsearch:
      index_template:
        data_stream: {}
        index_patterns:
-          - logs-*-strelka_so
+          - logs-strelka-so*
        template:
          mappings:
            dynamic_templates:
@@ -4263,7 +4263,7 @@ elasticsearch:
      index_sorting: False
      index_template:
        index_patterns:
-          - so-syslog*
+          - logs-syslog-so*
        template:
          mappings:
            dynamic_templates:
@@ -4432,7 +4432,7 @@ elasticsearch:
      index_template:
        data_stream: {}
        index_patterns:
-          - logs-*-zeek_so
+          - logs-zeek-so*
        template:
          mappings:
            dynamic_templates: