fix suricata filestream dataset

2026-02-26 00:45:34 +01:00 · 2026-02-24 12:46:20 -06:00
parent 2552a5c17d
commit 7e5daf7f7f
1 changed files with 2 additions and 2 deletions
--- a/salt/elasticfleet/files/integrations/grid-nodes_general/suricata-logs.json
+++ b/salt/elasticfleet/files/integrations/grid-nodes_general/suricata-logs.json
@@ -17,7 +17,7 @@
            "paths": [
              "/nsm/suricata/eve*.json"
            ],
-            "data_stream.dataset": "filestream.generic",
+            "data_stream.dataset": "suricata",
            "pipeline": "suricata.common",
            "parsers": "#- ndjson:\n#    target: \"\"\n#    message_key: msg\n#- multiline:\n#    type: count\n#    count_lines: 3\n",
            "exclude_files": [
@@ -41,4 +41,4 @@
    }
  },
  "force": true
-}
+}