From 9a50832669878d65c279b0b7bb979ace6067ce74 Mon Sep 17 00:00:00 2001 From: doug Date: Tue, 29 Nov 2022 07:16:30 -0500 Subject: [PATCH] fix more typos --- .../files/ingest/zeek.bsap_ip_header | 12 +++++----- .../files/ingest/zeek.bsap_ip_unknown | 8 +++---- .../files/ingest/zeek.bsap_serial_header | 24 +++++++++---------- .../files/ingest/zeek.bsap_serial_rdb | 14 +++++------ .../files/ingest/zeek.bsap_serial_rdb_ext | 18 +++++++------- .../files/ingest/zeek.bsap_serial_unknown | 8 +++---- 6 files changed, 42 insertions(+), 42 deletions(-) diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_ip_header b/salt/elasticsearch/files/ingest/zeek.bsap_ip_header index 59f7bca04..b92d7f233 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_ip_header +++ b/salt/elasticsearch/files/ingest/zeek.bsap_ip_header @@ -1,10 +1,10 @@ { "description" : "zeek.bsap_ip_header", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.num_msg", "target_field": "bsap.number.messages", "ignore_missing": true } }, - { "rename": { "field": "message2.type_name", "target_field": "bsap.message.type", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.num_msg", "target_field": "bsap.number.messages", "ignore_missing": true } }, + { "rename": { "field": "message2.type_name", "target_field": "bsap.message.type", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] -} \ No newline at end of file +} diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_ip_unknown b/salt/elasticsearch/files/ingest/zeek.bsap_ip_unknown index 2e94f55b5..15d9a8fd9 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_ip_unknown +++ b/salt/elasticsearch/files/ingest/zeek.bsap_ip_unknown @@ -1,9 +1,9 @@ { "description" : "zeek.bsap_ip_unknown", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.data", "target_field": "bsap.ip.unknown.data", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.data", "target_field": "bsap.ip.unknown.data", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] } diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_serial_header b/salt/elasticsearch/files/ingest/zeek.bsap_serial_header index 8647e94c8..e4262b3c3 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_serial_header +++ b/salt/elasticsearch/files/ingest/zeek.bsap_serial_header @@ -1,17 +1,17 @@ { "description" : "zeek.bsap_serial_header", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.ser", "target_field": "bsap.message.serial.number", "ignore_missing": true } }, - { "rename": { "field": "message2.dadd", "target_field": "bsap.destination.address", "ignore_missing": true } }, - { "rename": { "field": "message2.sadd", "target_field": "bsap.source.address", "ignore_missing": true } }, - { "rename": { "field": "message2.ctl", "target_field": "bsap.control.byte", "ignore_missing": true } }, - { "rename": { "field": "message2.dfun", "target_field": "bsap.destination.function", "ignore_missing": true } }, - { "rename": { "field": "message2.seq", "target_field": "bsap.message.sequence", "ignore_missing": true } }, - { "rename": { "field": "message2.sfun", "target_field": "bsap.source.function", "ignore_missing": true } }, - { "rename": { "field": "message2.nsb", "target_field": "bsap.node.status.byte", "ignore_missing": true } }, - { "rename": { "field": "message2.type_name", "target_field": "bsap.message.type", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.ser", "target_field": "bsap.message.serial.number", "ignore_missing": true } }, + { "rename": { "field": "message2.dadd", "target_field": "bsap.destination.address", "ignore_missing": true } }, + { "rename": { "field": "message2.sadd", "target_field": "bsap.source.address", "ignore_missing": true } }, + { "rename": { "field": "message2.ctl", "target_field": "bsap.control.byte", "ignore_missing": true } }, + { "rename": { "field": "message2.dfun", "target_field": "bsap.destination.function", "ignore_missing": true } }, + { "rename": { "field": "message2.seq", "target_field": "bsap.message.sequence", "ignore_missing": true } }, + { "rename": { "field": "message2.sfun", "target_field": "bsap.source.function", "ignore_missing": true } }, + { "rename": { "field": "message2.nsb", "target_field": "bsap.node.status.byte", "ignore_missing": true } }, + { "rename": { "field": "message2.type_name", "target_field": "bsap.message.type", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] } diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb b/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb index 71e0ad9e1..f45d8c0cd 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb +++ b/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb @@ -1,11 +1,11 @@ { "description" : "zeek.bsap_serial_rdb", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.func_code", "target_field": "bsap.rdb.function", "ignore_missing": true } }, - { "rename": { "field": "message2.variables", "target_field": "bsap.vector.variables", "ignore_missing": true } }, - { "rename": { "field": "message2.variable_value", "target_field": "bsap.vector.value", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.func_code", "target_field": "bsap.rdb.function", "ignore_missing": true } }, + { "rename": { "field": "message2.variables", "target_field": "bsap.vector.variables", "ignore_missing": true } }, + { "rename": { "field": "message2.variable_value", "target_field": "bsap.vector.value", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] -} \ No newline at end of file +} diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb_ext b/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb_ext index 9809d68a0..a1a08e6b7 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb_ext +++ b/salt/elasticsearch/files/ingest/zeek.bsap_serial_rdb_ext @@ -1,13 +1,13 @@ { "description" : "zeek.bsap_serial_rdb_ext", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.dfun", "target_field": "bsap.destination.function", "ignore_missing": true } }, - { "rename": { "field": "message2.seq", "target_field": "bsap.message.sequence", "ignore_missing": true } }, - { "rename": { "field": "message2.nsb", "target_field": "bsap.node.status.byte", "ignore_missing": true } }, - { "rename": { "field": "message2.extfun", "target_field": "bsap.extenstion.function", "ignore_missing": true } }, - { "rename": { "field": "message2.data", "target_field": "bsap.extenstion.function.data", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.dfun", "target_field": "bsap.destination.function", "ignore_missing": true } }, + { "rename": { "field": "message2.seq", "target_field": "bsap.message.sequence", "ignore_missing": true } }, + { "rename": { "field": "message2.nsb", "target_field": "bsap.node.status.byte", "ignore_missing": true } }, + { "rename": { "field": "message2.extfun", "target_field": "bsap.extension.function", "ignore_missing": true } }, + { "rename": { "field": "message2.data", "target_field": "bsap.extension.function.data", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] -} \ No newline at end of file +} diff --git a/salt/elasticsearch/files/ingest/zeek.bsap_serial_unknown b/salt/elasticsearch/files/ingest/zeek.bsap_serial_unknown index 2b9331c93..ea0c5e471 100644 --- a/salt/elasticsearch/files/ingest/zeek.bsap_serial_unknown +++ b/salt/elasticsearch/files/ingest/zeek.bsap_serial_unknown @@ -1,9 +1,9 @@ { "description" : "zeek.bsap_serial_unknown", "processors" : [ - { "remove": { "field": ["host"], "ignore_failure": true } }, - { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, - { "rename": { "field": "message2.data", "target_field": "bsap.serial.unknown.data", "ignore_missing": true } }, - { "pipeline": { "name": "zeek.common" } } + { "remove": { "field": ["host"], "ignore_failure": true } }, + { "json": { "field": "message", "target_field": "message2", "ignore_failure": true } }, + { "rename": { "field": "message2.data", "target_field": "bsap.serial.unknown.data", "ignore_missing": true } }, + { "pipeline": { "name": "zeek.common" } } ] }