Merge pull request #13165 from Security-Onion-Solutions/TOoSmOotH-patch-3

Update defaults.yaml
2025-12-06 09:12:45 +01:00 · 2024-06-07 15:38:01 -04:00
parent fb07ff65c9 4057238185
commit 657995d744
1 changed files with 20 additions and 6 deletions
--- a/salt/firewall/defaults.yaml
+++ b/salt/firewall/defaults.yaml
@@ -1267,32 +1267,46 @@ firewall:
      chain:
        DOCKER-USER:
          hostgroups:
            desktop:
              portgroups:
                - elastic_agent_data
            fleet:
              portgroups:
-                - beats_5056
+                - elastic_agent_data
            idh:
              portgroups:
                - elastic_agent_data
            sensor:
              portgroups:
                - beats_5044
                - beats_5644
                - elastic_agent_data
            searchnode:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
            standalone:
              portgroups:
                - redis
                - elastic_agent_data
            manager:
              portgroups:
                - elastic_agent_data
            managersearch:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
            self:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
            beats_endpoint:
              portgroups:
                - beats_5044
            beats_endpoint_ssl:
              portgroups:
                - beats_5644
            elastic_agent_endpoint:
              portgroups:
                - elastic_agent_data
            endgame:
              portgroups:
                - endgame