mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 17:22:49 +01:00
Curator - Remove Curator files from ES module
This commit is contained in:
Wes Lambert
@@ -1,30 +0,0 @@
|
|||||||
---
|
|
||||||
# Remember, leave a key empty if there is no value. None will be a string,
|
|
||||||
# not a Python "NoneType"
|
|
||||||
#
|
|
||||||
# Also remember that all examples have 'disable_action' set to True. If you
|
|
||||||
# want to use this action as a template, be sure to set this to False after
|
|
||||||
# copying it.
|
|
||||||
actions:
|
|
||||||
1:
|
|
||||||
action: close
|
|
||||||
description: >-
|
|
||||||
Close indices older than 2 days (based on index name), for logstash-
|
|
||||||
prefixed indices.
|
|
||||||
options:
|
|
||||||
delete_aliases: False
|
|
||||||
timeout_override:
|
|
||||||
continue_if_exception: False
|
|
||||||
disable_action: False
|
|
||||||
filters:
|
|
||||||
- filtertype: pattern
|
|
||||||
kind: prefix
|
|
||||||
value: logstash-
|
|
||||||
exclude:
|
|
||||||
- filtertype: age
|
|
||||||
source: name
|
|
||||||
direction: older
|
|
||||||
timestring: '%Y.%m.%d'
|
|
||||||
unit: days
|
|
||||||
unit_count: 2
|
|
||||||
exclude:
|
|
||||||
@@ -1,23 +0,0 @@
|
|||||||
---
|
|
||||||
# Remember, leave a key empty if there is no value. None will be a string,
|
|
||||||
# not a Python "NoneType"
|
|
||||||
#
|
|
||||||
# Also remember that all examples have 'disable_action' set to True. If you
|
|
||||||
# want to use this action as a template, be sure to set this to False after
|
|
||||||
# copying it.
|
|
||||||
actions:
|
|
||||||
1:
|
|
||||||
action: delete_indices
|
|
||||||
description: >-
|
|
||||||
Delete indices when $disk_space value (in GB) is exceeded.
|
|
||||||
options:
|
|
||||||
ignore_empty_list: True
|
|
||||||
disable_action: False
|
|
||||||
filters:
|
|
||||||
- filtertype: pattern
|
|
||||||
kind: prefix
|
|
||||||
value: logstash-
|
|
||||||
- filtertype: space
|
|
||||||
source: creation_date
|
|
||||||
use_age: True
|
|
||||||
disk_space: 43
|
|
||||||
@@ -1,22 +0,0 @@
|
|||||||
---
|
|
||||||
# Remember, leave a key empty if there is no value. None will be a string,
|
|
||||||
# not a Python "NoneType"
|
|
||||||
client:
|
|
||||||
hosts:
|
|
||||||
- elasticsearch
|
|
||||||
port: 9200
|
|
||||||
url_prefix:
|
|
||||||
use_ssl: False
|
|
||||||
certificate:
|
|
||||||
client_cert:
|
|
||||||
client_key:
|
|
||||||
ssl_no_validate: False
|
|
||||||
http_auth:
|
|
||||||
timeout: 30
|
|
||||||
master_only: False
|
|
||||||
|
|
||||||
logging:
|
|
||||||
loglevel: INFO
|
|
||||||
logfile: '/var/log/curator/curator.log'
|
|
||||||
logformat: default
|
|
||||||
blacklist: ['elasticsearch', 'urllib3']
|
|
||||||
Reference in New Issue
Block a user