CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-01-03 14:53:34 +01:00
Code Issues Packages Projects Releases Wiki Activity

Suricata Meta Data Option

Browse Source
This commit is contained in:
Mike Reeves
2018-11-13 11:25:30 -05:00
parent 62d28942f8
commit a70b7ed3de
4 changed files with 1933 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
salt/filebeat/etc/filebeat.yml
View File

@@ -1,5 +1,6 @@
{%- set MASTER = grains['master'] %}
{%- set HOSTNAME = salt['grains.get']('host', '') %}
{%- set BROVER = salt['pillar.get']('static:broversion', 'COMMUNITY') %}
name: {{ HOSTNAME }}
@@ -10,7 +11,7 @@ filebeat.modules:
# List of prospectors to fetch data.
filebeat.prospectors:
#------------------------------ Log prospector --------------------------------
{%- if BROVER != SURICATA %}
{%- for LOGNAME in salt['pillar.get']('brologs:enabled', '') %}
- type: log
paths:
@@ -23,6 +24,7 @@ filebeat.prospectors:
close_removed: false
{%- endfor %}
{%- endif %}
- type: log
paths:

1928
salt/suricata/files/suricataMETA.yaml Normal file
View File

File diff suppressed because it is too large Load Diff