CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-04-24 13:42:05 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #11255 from Security-Onion-Solutions/issue/10975

Browse Source 
Issue/10975
This commit is contained in:
Josh Patterson
2023-09-05 11:57:58 -04:00
committed by GitHub
parent ba3ae92702 07ed93de19
commit 651393988a
8 changed files with 75 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files
salt/allowed_states.map.jinja
+3
View File
@@ -188,6 +188,9 @@
'docker_clean'
],
'so-desktop': [
'ssl',
'docker_clean',
'telegraf'
],
}, grain='role') %}
salt/docker_clean/init.sls
+1
View File
@@ -9,6 +9,7 @@
prune_images:
cmd.run:
- name: so-docker-prune
- order: last
{% else %}
salt/firewall/defaults.yaml
+23 -3
View File
@@ -289,6 +289,11 @@ firewall:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
desktop:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
customhostgroup0:
portgroups: []
customhostgroup1:
@@ -463,7 +468,13 @@ firewall:
- endgame
desktop:
portgroups:
- docker_registry
- influxdb
- sensoroni
- yum
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
customhostgroup0:
portgroups: []
customhostgroup1:
@@ -651,7 +662,13 @@ firewall:
- endgame
desktop:
portgroups:
- docker_registry
- influxdb
- sensoroni
- yum
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
customhostgroup0:
portgroups: []
customhostgroup1:
@@ -847,7 +864,13 @@ firewall:
- strelka_frontend
desktop:
portgroups:
- docker_registry
- influxdb
- sensoroni
- yum
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
customhostgroup0:
portgroups: []
customhostgroup1:
@@ -1205,9 +1228,6 @@ firewall:
analyst:
portgroups:
- nginx
desktop:
portgroups:
- yum
customhostgroup0:
portgroups: []
customhostgroup1:
salt/manager/tools/sbin/so-minion
+1
View File
@@ -552,6 +552,7 @@ function createRECEIVER() {
function createDESKTOP() {
add_desktop_to_minion
add_telegraf_to_minion
}
function testConnection() {
salt/telegraf/defaults.yaml
+2 -1
View File
@@ -87,4 +87,5 @@ telegraf:
- sostatus.sh
fleet:
- sostatus.sh
desktop: []
desktop:
- sostatus.sh
salt/top.sls
+19 -26
View File
@@ -28,11 +28,9 @@ base:
- motd
- salt.minion-check
- salt.lasthighstate
'not *_desktop and G@saltversion:{{saltversion}}':
- match: compound
- common
- docker
- docker_clean
'*_sensor and G@saltversion:{{saltversion}}':
- match: compound
@@ -47,7 +45,6 @@ base:
- healthcheck
- zeek
- strelka
- docker_clean
- elasticfleet.install_agent_grid
'*_eval and G@saltversion:{{saltversion}}':
@@ -57,14 +54,14 @@ base:
- ca
- ssl
- registry
- sensoroni
- manager
- backup.config_backup
- nginx
- telegraf
- influxdb
- soc
- kratos
- sensoroni
- telegraf
- firewall
- idstools
- suricata.manager
@@ -84,7 +81,6 @@ base:
- playbook
- redis
- elasticfleet
- docker_clean
'*_manager and G@saltversion:{{saltversion}}':
- match: compound
@@ -92,14 +88,14 @@ base:
- ca
- ssl
- registry
- sensoroni
- nginx
- telegraf
- influxdb
- soc
- kratos
- firewall
- manager
- sensoroni
- telegraf
- backup.config_backup
- idstools
- suricata.manager
@@ -115,7 +111,6 @@ base:
- soctopus
- playbook
- elasticfleet
- docker_clean
'*_standalone and G@saltversion:{{saltversion}}':
- match: compound
@@ -124,15 +119,15 @@ base:
- ca
- ssl
- registry
- sensoroni
- manager
- backup.config_backup
- nginx
- telegraf
- influxdb
- soc
- kratos
- firewall
- sensoroni
- telegraf
- idstools
- suricata.manager
- healthcheck
@@ -152,19 +147,17 @@ base:
- soctopus
- playbook
- elasticfleet
- docker_clean
'*_searchnode and G@saltversion:{{saltversion}}':
- match: compound
- ssl
- sensoroni
- nginx
- telegraf
- nginx
- firewall
- elasticsearch
- logstash
- elasticfleet.install_agent_grid
- docker_clean
'*_managersearch and G@saltversion:{{saltversion}}':
- match: compound
@@ -172,14 +165,14 @@ base:
- ca
- ssl
- registry
- sensoroni
- nginx
- telegraf
- influxdb
- soc
- kratos
- firewall
- manager
- sensoroni
- telegraf
- backup.config_backup
- idstools
- suricata.manager
@@ -195,15 +188,14 @@ base:
- soctopus
- playbook
- elasticfleet
- docker_clean
'*_heavynode and G@saltversion:{{saltversion}}':
- match: compound
- sensor
- ssl
- sensoroni
- nginx
- telegraf
- nginx
- firewall
- elasticsearch
- logstash
@@ -215,7 +207,6 @@ base:
- zeek
- elasticfleet.install_agent_grid
- elasticagent
- docker_clean
'*_import and G@saltversion:{{saltversion}}':
- match: compound
@@ -224,13 +215,13 @@ base:
- ca
- ssl
- registry
- sensoroni
- manager
- nginx
- telegraf
- influxdb
- soc
- kratos
- sensoroni
- telegraf
- firewall
- idstools
- suricata.manager
@@ -242,7 +233,6 @@ base:
- suricata
- zeek
- elasticfleet
- docker_clean
'*_receiver and G@saltversion:{{saltversion}}':
- match: compound
@@ -253,7 +243,6 @@ base:
- logstash
- redis
- elasticfleet.install_agent_grid
- docker_clean
'*_idh and G@saltversion:{{saltversion}}':
- match: compound
@@ -262,7 +251,6 @@ base:
- telegraf
- firewall
- elasticfleet.install_agent_grid
- docker_clean
- idh
'*_fleet and G@saltversion:{{saltversion}}':
@@ -275,7 +263,12 @@ base:
- elasticfleet
- elasticfleet.install_agent_grid
- schedule
- docker_clean
'*_desktop and G@saltversion:{{saltversion}}':
- ssl
- sensoroni
- telegraf
- elasticfleet.install_agent_grid
'J@desktop:gui:enabled:^[Tt][Rr][Uu][Ee]$ and ( G@saltversion:{{saltversion}} and G@os:OEL )':
- match: compound