Merge pull request #13165 from Security-Onion-Solutions/TOoSmOotH-patch-3

Update defaults.yaml
2025-12-06 17:22:49 +01:00 · 2024-06-07 15:38:01 -04:00
parent fb07ff65c9 4057238185
commit 657995d744
1 changed files with 20 additions and 6 deletions
--- a/salt/firewall/defaults.yaml
+++ b/salt/firewall/defaults.yaml
@@ -1267,32 +1267,46 @@ firewall:
      chain:
        DOCKER-USER:
          hostgroups:
+            desktop:
+              portgroups:
+                - elastic_agent_data
            fleet:
              portgroups:
-                - beats_5056
+                - elastic_agent_data
+            idh:
+              portgroups:
+                - elastic_agent_data
            sensor:
              portgroups:
-                - beats_5044
-                - beats_5644
                - elastic_agent_data
            searchnode:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
+            standalone:
+              portgroups:
+                - redis
+                - elastic_agent_data
+            manager:
+              portgroups:
+                - elastic_agent_data
            managersearch:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
            self:
              portgroups:
                - redis
-                - beats_5644
+                - elastic_agent_data
            beats_endpoint:
              portgroups:
                - beats_5044
            beats_endpoint_ssl:
              portgroups:
                - beats_5644
+            elastic_agent_endpoint:
+              portgroups:
+                - elastic_agent_data
            endgame:
              portgroups:
                - endgame