CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Improve filebeat config indentation

Browse Source
This commit is contained in:
Jason Ertel
2020-06-30 14:57:34 -04:00
parent 930f15eea5
commit a3deb868ad
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
salt/filebeat/etc/filebeat.yml
View File

@@ -128,9 +128,9 @@ filebeat.inputs:
imported: true imported: true
processors: processors:
- dissect: - dissect:
tokenizer: "/nsm/import/%{import_id}/zeek/logs/%{import_source}" tokenizer: "/nsm/import/%{import_id}/zeek/logs/%{import_source}"
field: "source" field: "source"
target_prefix: "" target_prefix: ""
- drop_fields: - drop_fields:
fields: ["source", "prospector", "input", "offset", "beat"] fields: ["source", "prospector", "input", "offset", "beat"]
@@ -166,9 +166,9 @@ filebeat.inputs:
imported: true imported: true
processors: processors:
- dissect: - dissect:
tokenizer: "/nsm/import/%{import_id}/suricata/%{import_source}" tokenizer: "/nsm/import/%{import_id}/suricata/%{import_source}"
field: "source" field: "source"
target_prefix: "" target_prefix: ""
- drop_fields: - drop_fields:
fields: ["source", "prospector", "input", "offset", "beat"] fields: ["source", "prospector", "input", "offset", "beat"]