CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-02-17 04:33:32 +01:00
Code Issues Packages Projects Releases Wiki Activity

define and assign elastic_agent_update port

Browse Source
This commit is contained in:
m0duspwnens
2023-05-03 12:40:56 -04:00
parent 767c922083 a57ba7e35d
commit b0bd64bc10
10 changed files with 105 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
salt/firewall/defaults.yaml
View File

@@ -78,6 +78,10 @@ firewall:
tcp:
- 5055
udp: []
elastic_agent_update:
tcp:
- 8443
udp: []
endgame:
tcp:
- 3765
@@ -205,6 +209,7 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
strelka_frontend:
portgroups:
- strelka_frontend
@@ -273,10 +278,12 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
elastic_agent_endpoint:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
customhostgroup0:
portgroups: []
customhostgroup1:
@@ -356,12 +363,14 @@ firewall:
- docker_registry
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
sensor:
portgroups:
- beats_5044
- beats_5644
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
- yum
- docker_registry
- influxdb
@@ -376,6 +385,7 @@ firewall:
- influxdb
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
heavynode:
portgroups:
- redis
@@ -387,6 +397,7 @@ firewall:
- influxdb
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
self:
portgroups:
- syslog
@@ -406,6 +417,7 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
endgame:
portgroups:
- endgame
@@ -488,12 +500,14 @@ firewall:
- docker_registry
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
sensor:
portgroups:
- beats_5044
- beats_5644
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
- yum
- docker_registry
- influxdb
@@ -507,6 +521,7 @@ firewall:
- influxdb
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
heavynode:
portgroups:
- redis
@@ -517,6 +532,7 @@ firewall:
- influxdb
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
self:
portgroups:
- syslog
@@ -533,6 +549,7 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
endgame:
portgroups:
- endgame
@@ -628,6 +645,7 @@ firewall:
- elasticsearch_node
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
- endgame
- strelka_frontend
fleet:
@@ -642,6 +660,7 @@ firewall:
- beats_5056
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
sensor:
portgroups:
- docker_registry
@@ -653,6 +672,7 @@ firewall:
- beats_5056
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
searchnode:
portgroups:
- docker_registry
@@ -687,6 +707,7 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
endgame:
portgroups:
- endgame
@@ -1005,6 +1026,7 @@ firewall:
portgroups:
- elastic_agent_control
- elastic_agent_data
- elastic_agent_update
analyst:
portgroups:
- nginx

3
salt/firewall/soc_firewall.yaml
View File

@@ -106,6 +106,9 @@ firewall:
elastic_agent_data:
tcp: *tcpsettings
udp: *udpsettings
elastic_agent_update:
tcp: *tcpsettings
udp: *udpsettings
endgame:
tcp: *tcpsettings
udp: *udpsettings