CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Bro Salt Module - Enable Bro Docker

Browse Source
This commit is contained in:
Mike Reeves
2018-03-06 15:05:28 -05:00
parent 7ade618870
commit 9a83af4a03
1 changed files with 28 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
salt/bro/init.sls
View File

@@ -14,6 +14,21 @@ bropolicydir:
- group: 939
- makedirs: True
# Bro Log Directory
brologdir:
file.directory:
- name: /nsm/bro/logs
- user: 937
- group: 939
- makedirs: True
# Bro Spool Directory
brospooldir:
file.directory:
- name: /nsm/bro/spool
- user: 937
- makedirs: true
# Sync the policies
bropolicysync:
file.recurse:
@@ -43,16 +58,16 @@ nodecfgsync:
# Add the container
#so-bro:
# dockerng.running:
# - image: dockerrepo/so-bro:
# - hostname: bro
# - user: bro
# - priviledged: true
# - binds:
# - /nsm/bro/logs:/nsm/bro/logs:rw
# - /nsm/bro/spool:/nsm/bro/spool:rw
# - /opt/so/conf/bro/etc:/opt/bro/etc:ro
# - /opt/so/conf/bro/etc/node.cfg:/opt/bro/etc/node.cfg:ro
# - /opt/so/conf/share/bro:/opt/bro/share/bro:ro
# - network_mode: host
so-bro:
dockerng.running:
- image: dockerrepo/so-bro:
- hostname: bro
- user: bro
- priviledged: true
- binds:
- /nsm/bro/logs:/nsm/bro/logs:rw
- /nsm/bro/spool:/nsm/bro/spool:rw
- /opt/so/conf/bro/local.bro:/opt/bro/share/bro/site/local.bro:ro
- /opt/so/conf/bro/node.cfg:/opt/bro/etc/node.cfg:ro
- /opt/so/conf/bro/policy:/opt/bro/share/bro/policy:ro
- network_mode: host