From a1b34e7a8840b7730817c20e3f812fe5ef9e9c39 Mon Sep 17 00:00:00 2001
From: weslambert <wlambertts@gmail.com>
Date: Wed, 2 Jun 2021 15:30:14 -0400
Subject: [PATCH] Fix Suricata index name

---
 .../pipelines/config/so/9400_output_suricata.conf.jinja         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja b/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja
index 258781f29..999b270cf 100644
--- a/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja
+++ b/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja
@@ -9,7 +9,7 @@ output {
       pipeline => "filebeat-%{[agent][version]}-suricata-%{[fileset][name]}-pipeline"
       hosts => "{{ ES }}"
       index => "so-ids"
-      template_name => "so-ids"
+      template_name => "so-ids-%{+YYYY.MM.dd}"
       template => "/templates/so-ids-template.json"
       ssl => true
       ssl_certificate_verification => false