Merge branch 'dev' of https://github.com/Security-Onion-Solutions/securityonion-saltstack into dev

2025-12-29 12:23:38 +01:00 · 2020-04-09 11:16:50 -04:00
parent 5692f2a672 422f4c928c
commit 69dca74afd
4 changed files with 18 additions and 9 deletions
--- a/pillar/docker/config.sls
+++ b/pillar/docker/config.sls
@@ -1,4 +1,5 @@
-{% set OSQUERY = salt['pillar.get']('master:osquery', '0') %}
+{%- set FLEETMASTER = salt['pillar.get']('static:fleet_master', False) -%}
+{%- set FLEETNODE = salt['pillar.get']('static:fleet_node', False) -%}
 {% set WAZUH = salt['pillar.get']('master:wazuh', '0') %}
 {% set THEHIVE = salt['pillar.get']('master:thehive', '0') %}
 {% set PLAYBOOK = salt['pillar.get']('master:playbook', '0') %}
@@ -7,7 +8,6 @@
 {% set BROVER = salt['pillar.get']('static:broversion', 'COMMUNITY') %}
 {% set GRAFANA = salt['pillar.get']('master:grafana', '0') %}

-
 eval:
  containers:
    - so-core
@@ -20,7 +20,7 @@ eval:
    - so-soc
    - so-kratos
    - so-idstools
-    {% if OSQUERY != '0' %}
+    {% if FLEETMASTER %}
    - so-mysql
    - so-fleet
    - so-redis
@@ -100,7 +100,7 @@ master_search:
    - so-elastalert
    - so-filebeat
    - so-soctopus
-    {% if OSQUERY != '0' %}
+    {% if FLEETMASTER %}
    - so-mysql
    - so-fleet
    - so-redis
@@ -143,7 +143,7 @@ master:
    - so-kibana
    - so-elastalert
    - so-filebeat
-    {% if OSQUERY != '0' %}
+    {% if FLEETMASTER %}
    - so-mysql
    - so-fleet
    - so-redis
@@ -199,4 +199,13 @@ warm_node:
    - so-core
    - so-telegraf
    - so-elasticsearch
-    
+fleet:
+  containers:
+    {% if FLEETNODE %}
+    - so-mysql
+    - so-fleet
+    - so-redis
+    - so-filebeat
+    - so-core
+    - so-telegraf
+    {% endif %}
--- a/salt/_modules/telegraf.py
+++ b/salt/_modules/telegraf.py
@@ -6,7 +6,7 @@ import socket

 def send(data):

-  mainint = __salt__['pillar.get']('node:mainint')
+  mainint = __salt__['pillar.get']('sensor:mainint', __salt__['pillar.get']('master:mainint'))
  mainip = __salt__['grains.get']('ip_interfaces').get(mainint)[0]
  dstport = 8094

--- a/salt/common/telegraf/etc/telegraf.conf
+++ b/salt/common/telegraf/etc/telegraf.conf
@@ -498,7 +498,7 @@
 [[inputs.disk]]
  ## By default stats will be gathered for all mount points.
  ## Set mount_points will restrict the stats to only the specified mount points.
-  mount_points = ["/","/nsm"]
+  mount_points = ["/", "/host/nsm"]

  ## Ignore mount points by filesystem type.
  #ignore_fs = ["tmpfs", "devtmpfs", "devfs", "overlay", "aufs", "squashfs"]
--- a/setup/so-functions
+++ b/setup/so-functions
@@ -947,7 +947,7 @@ network_setup() {
        fi

        echo "... Copying 99-so-checksum-offload-disable";
-        cp "$SCRIPTDIR/install_scripts/99-so-checksum-offload-disable" /etc/NetworkManager/dispatcher.d/pre-up.d/99-so-checksum-offload-disable ;
+        cp "$SCRIPTDIR"/install_scripts/99-so-checksum-offload-disable /etc/NetworkManager/dispatcher.d/pre-up.d/99-so-checksum-offload-disable ;

        echo "... Modifying 99-so-checksum-offload-disable";
        sed -i "s/\$MAININT/${MAININT}/g" /etc/NetworkManager/dispatcher.d/pre-up.d/99-so-checksum-offload-disable;