CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #10427 from Security-Onion-Solutions/issue/10229

Browse Source 
Issue/10229
This commit is contained in:
Josh Patterson
2023-05-24 13:23:29 -04:00
committed by GitHub
parent 01d983fc00 5c00655ad0
commit a01704a1d7
1 changed files with 22 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
salt/suricata/defaults.yaml
View File

@@ -2,28 +2,24 @@ suricata:
enabled: False enabled: False
config: config:
threading: threading:
set-cpu-affinity: 'no' set-cpu-affinity: "no"
detect-thread-ratio: 1.0 cpu-affinity:
cpu-affinity: - management-cpu-set:
- management-cpu-set: cpu: []
cpu: [] - worker-cpu-set:
- receive-cpu-set: cpu: []
cpu: [] mode: exclusive
- worker-cpu-set: prio:
cpu: [] default: high
mode: exclusive
threads: 1
prio:
default: high
af-packet: af-packet:
interface: bond0 interface: bond0
cluster-id: 59 cluster-id: 59
cluster-type: cluster_flow cluster-type: cluster_flow
defrag: true defrag: "yes"
use-mmap: true use-mmap: "yes"
threads: 1 threads: 1
tpacket-v3: true tpacket-v3: "yes"
ring-size: 5000 ring-size: 5000
vars: vars:
address-groups: address-groups:
HOME_NET: "[192.168.0.0/16,10.0.0.0/8,172.16.0.0/12]" HOME_NET: "[192.168.0.0/16,10.0.0.0/8,172.16.0.0/12]"
@@ -69,11 +65,6 @@ suricata:
pcap-file: false pcap-file: false
community-id: true community-id: true
community-id-seed: 0 community-id-seed: 0
xff:
enabled: "no"
mode: extra-data
deployment: reverse
header: X-Forwarded-For
types: types:
- alert: - alert:
payload: "no" payload: "no"
@@ -87,6 +78,11 @@ suricata:
metadata: true metadata: true
raw: true raw: true
tagged-packets: "no" tagged-packets: "no"
xff:
enabled: "no"
mode: extra-data
deployment: reverse
header: X-Forwarded-For
unified2-alert: unified2-alert:
enabled: "no" enabled: "no"
http-log: http-log: