Fix Suricata index name

2025-12-06 09:12:45 +01:00 · 2021-06-02 15:30:14 -04:00
parent 9c9bcac61b
commit a1b34e7a88
1 changed files with 1 additions and 1 deletions
--- a/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja
+++ b/salt/logstash/pipelines/config/so/9400_output_suricata.conf.jinja
@@ -9,7 +9,7 @@ output {
      pipeline => "filebeat-%{[agent][version]}-suricata-%{[fileset][name]}-pipeline"
      hosts => "{{ ES }}"
      index => "so-ids"
-      template_name => "so-ids"
+      template_name => "so-ids-%{+YYYY.MM.dd}"
      template => "/templates/so-ids-template.json"
      ssl => true
      ssl_certificate_verification => false