Merge remote-tracking branch 'remotes/origin/dev' into issue/739

2026-04-25 14:07:49 +02:00 · 2020-06-11 16:26:23 -04:00
parent 56a821a9be c3a2c2321d
commit 729a6998a2
17 changed files with 1023 additions and 789 deletions
@@ -10,4 +10,4 @@ if grep -q $2 "$local_salt_dir/pillar/firewall/$1.sls"; then
 else
  echo "  - $2" >> $local_salt_dir/pillar/firewall/$1.sls
  salt-call state.apply firewall queue=True
-fi
+fi
@@ -0,0 +1,62 @@
+firewall:
+  analyst:
+    ports:
+      tcp:
+        - 80
+        - 443
+      udp:
+  beats_endpoint:
+    ports:
+      tcp:
+        - 5044
+  forward_nodes:
+    ports:
+      tcp:
+        - 443
+        - 5044
+        - 5644
+        - 9822
+      udp:
+  master:
+    ports:
+      tcp:
+        - 1514
+        - 3200
+        - 3306
+        - 4200
+        - 5601
+        - 6379
+        - 8086
+        - 8090
+        - 9001
+        - 9200
+        - 9300
+        - 9400  
+        - 9500
+      udp:
+        - 1514
+  minions:
+    ports:
+      tcp:
+        - 3142
+        - 4505
+        - 4506
+        - 5000
+        - 8080
+        - 8086
+        - 55000      
+  osquery_endpoint:
+    ports:
+      tcp:
+        - 8090
+  search_nodes:
+    ports:
+      tcp:
+        - 6379
+        - 9300
+  wazuh_endpoint:
+    ports:
+      tcp:
+        - 1514
+      udp: 
+        -1514
@@ -14,7 +14,6 @@ base:

  '*_sensor':
    - static
-    - firewall.*
    - brologs
    - healthcheck.sensor
    - minions.{{ grains.id }}
@@ -22,7 +21,6 @@ base:
  '*_master or *_mastersearch':
    - match: compound
    - static
-    - firewall.*
    - data.*
    - secrets
    - minions.{{ grains.id }}
@@ -33,7 +31,6 @@ base:

  '*_eval':
    - static
-    - firewall.*
    - data.*
    - brologs
    - secrets
@@ -44,7 +41,6 @@ base:
    - logstash
    - logstash.master
    - logstash.search
-    - firewall.*
    - data.*
    - brologs
    - secrets
@@ -54,18 +50,15 @@ base:

  '*_node':
    - static
-    - firewall.*
    - minions.{{ grains.id }}

  '*_heavynode':
    - static
-    - firewall.*
    - brologs
    - minions.{{ grains.id }}

  '*_helix':
    - static
-    - firewall.*
    - fireeye
    - brologs
    - logstash
@@ -74,14 +67,12 @@ base:

  '*_fleet':
    - static
-    - firewall.*
    - data.*
    - secrets
    - minions.{{ grains.id }}

  '*_searchnode':
    - static
-    - firewall.*
    - logstash
    - logstash.search
    - minions.{{ grains.id }}