Initial Commit

salt/bro/files/node.cfg

@@ -0,0 +1,19 @@
+{%- set interface = salt['pillar.get'](sensor:interface) %}
+{%- set lbprocs = salt['pillar.get'](sensor:lbprocs) %}
+[manager]
+type=manager
+host=localhost
+
+[proxy]
+type=proxy
+host=localhost
+
+[sotest-eth1]
+type=worker
+host=localhost
+interface=af_packet::{{ interface }}
+lb_method=custom
+lb_procs={{ lbprocs }}
+af_packet_fanout_id=23
+af_packet_fanout_mode=AF_Packet::FANOUT_HASH
+af_packet_buffer_size=128*1024*1024

salt/bro/init.sls

@@ -0,0 +1,35 @@
+# Bro Salt State
+# Add Bro User
+bro:
+  user.present:
+    - uid: 937
+    - gid: 937
+    - home: /home/bro
+
+file.directory:
+  - name: /opt/so/conf/bro
+  - user: 937
+  - group: 939
+
+file.directory:
+  - name: /opt/so/conf/bro/policy
+  - user: 937
+  - group: 939
+
+# Add the container
+
+so-bro:
+  dockerng.running:
+    - image: {{ dockerrepo }}/so-bro:{{ broversion }}
+    - hostname: bro
+    - user: bro
+    - priviledged: true
+    - binds:
+      - /nsm/bro/logs:/nsm/bro/logs:rw
+      - /nsm/bro/spool:/nsm/bro/spool:rw
+      - /opt/so/conf/bro/etc:/opt/bro/etc:ro
+      - /opt/so/conf/bro/etc/node.cfg:/opt/bro/etc/node.cfg:ro
+      - /opt/so/conf/share/bro:/opt/bro/share/bro:ro
+    - network_mode: host
+
+# Add Bro cron