CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

add firewall rules for syslog

Browse Source
This commit is contained in:
m0duspwnens
2020-10-21 11:20:34 -04:00
parent e2d95e0deb
commit 5f43380aa0
1 changed files with 23 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
salt/firewall/assigned_hostgroups.map.yaml
View File

@@ -424,6 +424,12 @@ role:
elasticsearch_rest: elasticsearch_rest:
portgroups: portgroups:
- {{ portgroups.elasticsearch_rest }} - {{ portgroups.elasticsearch_rest }}
self:
portgroups:
- {{ portgroups.syslog}}
syslog:
portgroups:
- {{ portgroups.syslog }}
INPUT: INPUT:
hostgroups: hostgroups:
anywhere: anywhere:
@@ -437,6 +443,14 @@ role:
- {{ portgroups.all }} - {{ portgroups.all }}
sensor: sensor:
chain: chain:
DOCKER-USER:
hostgroups:
self:
portgroups:
- {{ portgroups.syslog}}
syslog:
portgroups:
- {{ portgroups.syslog }}
INPUT: INPUT:
hostgroups: hostgroups:
anywhere: anywhere:
@@ -463,6 +477,12 @@ role:
elasticsearch_rest: elasticsearch_rest:
portgroups: portgroups:
- {{ portgroups.elasticsearch_rest }} - {{ portgroups.elasticsearch_rest }}
self:
portgroups:
- {{ portgroups.syslog}}
syslog:
portgroups:
- {{ portgroups.syslog }}
INPUT: INPUT:
hostgroups: hostgroups:
anywhere: anywhere:
@@ -533,6 +553,9 @@ role:
self: self:
portgroups: portgroups:
- {{ portgroups.syslog}} - {{ portgroups.syslog}}
syslog:
portgroups:
- {{ portgroups.syslog }}
beats_endpoint: beats_endpoint:
portgroups: portgroups:
- {{ portgroups.beats_5044 }} - {{ portgroups.beats_5044 }}