diff --git a/salt/logstash/pipelines/config/so/9600_output_ossec.conf.jinja b/salt/logstash/pipelines/config/so/9600_output_ossec.conf.jinja
index b32cb44df..53dae8825 100644
--- a/salt/logstash/pipelines/config/so/9600_output_ossec.conf.jinja
+++ b/salt/logstash/pipelines/config/so/9600_output_ossec.conf.jinja
@@ -21,7 +21,7 @@ output {
     elasticsearch {
       pipeline => "%{event_type}"
       hosts => "{{ ES }}"
-      index => "so-common-%{+YYYY.MM.dd}"
+      index => "so-ossec-%{+YYYY.MM.dd}"
       template_name => "so-common"
       template => "/so-common-template.json"
       template_overwrite => true
diff --git a/salt/logstash/pipelines/config/so/9700_output_strelka.conf.jinja b/salt/logstash/pipelines/config/so/9700_output_strelka.conf.jinja
index 6c498c2bb..5da6d0b12 100644
--- a/salt/logstash/pipelines/config/so/9700_output_strelka.conf.jinja
+++ b/salt/logstash/pipelines/config/so/9700_output_strelka.conf.jinja
@@ -20,7 +20,7 @@ output {
   if [event_type] =~ "strelka" {
     elasticsearch {
       hosts => "{{ ES }}"
-      index => "so-common-%{+YYYY.MM.dd}"
+      index => "so-strelka-%{+YYYY.MM.dd}"
       template_name => "so-common"
       template => "/so-common-template.json"
       template_overwrite => true