CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-09 18:52:52 +01:00
Code Issues Packages Projects Releases Wiki Activity

final logstash tweaks

Browse Source
This commit is contained in:
Mike Reeves
2020-08-05 16:40:21 -04:00
parent cd766753eb
commit 633c100ace
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
salt/logstash/init.sls
View File

@@ -167,7 +167,7 @@ so-logstash:
- /etc/pki/filebeat.crt:/usr/share/logstash/filebeat.crt:ro - /etc/pki/filebeat.crt:/usr/share/logstash/filebeat.crt:ro
- /etc/pki/filebeat.p8:/usr/share/logstash/filebeat.key:ro - /etc/pki/filebeat.p8:/usr/share/logstash/filebeat.key:ro
- /etc/pki/ca.crt:/usr/share/filebeat/ca.crt:ro - /etc/pki/ca.crt:/usr/share/filebeat/ca.crt:ro
- /etc/pki/ca.crt:/etc/ssl/certs/ca.crt:ro - /etc/ssl/certs/intca.crt:/etc/ssl/certs/ca.crt:ro
{%- if grains['role'] == 'so-eval' %} {%- if grains['role'] == 'so-eval' %}
- /nsm/zeek:/nsm/zeek:ro - /nsm/zeek:/nsm/zeek:ro
- /nsm/suricata:/suricata:ro - /nsm/suricata:/suricata:ro

2
salt/logstash/pipelines/config/so/0899_input_minio.conf.jinja
View File

@@ -13,7 +13,7 @@ input {
endpoint => "https://{{ MANAGER }}:9595" endpoint => "https://{{ MANAGER }}:9595"
bucket => "logstash" bucket => "logstash"
delete => true delete => true
interval => 10 interval => 5
codec => json codec => json
additional_settings => { additional_settings => {
"force_path_style" => true "force_path_style" => true