mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-08 18:22:47 +01:00
Telegraf Module - Initial Commit
This commit is contained in:
Mike Reeves
@@ -129,3 +129,29 @@ so-core:
|
|||||||
- 443:443
|
- 443:443
|
||||||
- watch:
|
- watch:
|
||||||
- file: /opt/so/conf/nginx/nginx.conf
|
- file: /opt/so/conf/nginx/nginx.conf
|
||||||
|
|
||||||
|
# Add Telegraf to monitor all the things.
|
||||||
|
tgraflogdir:
|
||||||
|
file.directory:
|
||||||
|
- name: /opt/so/log/telegraf
|
||||||
|
- makedirs: True
|
||||||
|
|
||||||
|
tgrafetcdir:
|
||||||
|
file.directory:
|
||||||
|
- name: /opt/so/conf/telegraf/etc
|
||||||
|
- makedirs: True
|
||||||
|
|
||||||
|
so-telegraf:
|
||||||
|
docker_container.running:
|
||||||
|
- image: soshybridhunter/so-telegraf:HH1.0.4
|
||||||
|
- hostname: telegraf
|
||||||
|
- binds:
|
||||||
|
- /opt/so/log/telegraf:/var/log/telegraf:rw
|
||||||
|
- /opt/so/conf/telegraf/etc/telegraf.conf:/etc/telegraf/relegraf.conf:ro
|
||||||
|
- /var/run/utmp:/var/run/utmp:ro
|
||||||
|
- /var/run/docker.sock:/var/run/docker.sock:ro
|
||||||
|
- /:/host:ro
|
||||||
|
- /sys:/host/sys:ro
|
||||||
|
- /proc:/host/proc:ro
|
||||||
|
- /nsm:/host/nsm:ro
|
||||||
|
- /etc:/host/etc:ro
|
||||||
|
|||||||
2276
salt/common/telegraf/etc/telegraf.conf
Normal file
2276
salt/common/telegraf/etc/telegraf.conf
Normal file
File diff suppressed because it is too large
Load Diff
@@ -144,6 +144,27 @@ enable_masternode_ES_9300_{{ip}}:
|
|||||||
- position: 1
|
- position: 1
|
||||||
- save: True
|
- save: True
|
||||||
|
|
||||||
|
enable_masternode_influxdb_8083_{{ip}}:
|
||||||
|
iptables.insert:
|
||||||
|
- table: filter
|
||||||
|
- chain: DOCKER-USER
|
||||||
|
- jump: ACCEPT
|
||||||
|
- proto: tcp
|
||||||
|
- source: {{ ip }}
|
||||||
|
- dport: 8083
|
||||||
|
- position: 1
|
||||||
|
- save: True
|
||||||
|
|
||||||
|
enable_masternode_influxdb_8086_{{ip}}:
|
||||||
|
iptables.insert:
|
||||||
|
- table: filter
|
||||||
|
- chain: DOCKER-USER
|
||||||
|
- jump: ACCEPT
|
||||||
|
- proto: tcp
|
||||||
|
- source: {{ ip }}
|
||||||
|
- dport: 8086
|
||||||
|
- position: 1
|
||||||
|
- save: True
|
||||||
|
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
|
|
||||||
@@ -194,6 +215,30 @@ enable_salt_minions_3142_{{ip}}:
|
|||||||
- position: 1
|
- position: 1
|
||||||
- save: True
|
- save: True
|
||||||
|
|
||||||
|
# Allow Influx DB access to minions so they can send in stats
|
||||||
|
|
||||||
|
enable_minion_influxdb_8083_{{ip}}:
|
||||||
|
iptables.insert:
|
||||||
|
- table: filter
|
||||||
|
- chain: DOCKER-USER
|
||||||
|
- jump: ACCEPT
|
||||||
|
- proto: tcp
|
||||||
|
- source: {{ ip }}
|
||||||
|
- dport: 8083
|
||||||
|
- position: 1
|
||||||
|
- save: True
|
||||||
|
|
||||||
|
enable_minions_influxdb_8086_{{ip}}:
|
||||||
|
iptables.insert:
|
||||||
|
- table: filter
|
||||||
|
- chain: DOCKER-USER
|
||||||
|
- jump: ACCEPT
|
||||||
|
- proto: tcp
|
||||||
|
- source: {{ ip }}
|
||||||
|
- dport: 8086
|
||||||
|
- position: 1
|
||||||
|
- save: True
|
||||||
|
|
||||||
{% endfor %}
|
{% endfor %}
|
||||||
|
|
||||||
# Allow Forward Nodes to send their beats traffic
|
# Allow Forward Nodes to send their beats traffic
|
||||||
|
|||||||
Reference in New Issue
Block a user