CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Suricata Salt Module - Add updated salt states

Browse Source
This commit is contained in:
Mike Reeves
2018-02-23 16:33:58 -05:00
parent caf40b7271
commit df9fc87a3f
1 changed files with 24 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

44
salt/suricata/init.sls
View File

@@ -14,33 +14,37 @@
# along with this program. If not, see <http://www.gnu.org/licenses/>. # along with this program. If not, see <http://www.gnu.org/licenses/>.
# Suricata # Suricata
ppdir: suridir:
file.directory: file.directory:
- name: /opt/so/pulledpork - name: /opt/so/conf/suricata
- user: 939 - user: 940
- group: 939 - group: 940
rulesdir: suriruledir:
file.directory: file.directory:
- name: /opt/so/rules/nids - name: /opt/so/conf/suricata/rules
- user: 939 - user: 940
- group: 939 - group: 940
- makedirs: True - makedirs: True
ruleslink: surirulesync:
file.symlink: file.recurse:
- name: /opt/so/saltstack/salt/pulledpork/rules - name: /opt/so
- target: /opt/so/rules/nids
toosmooth/so-pulledpork:test2: suriconfigsync:
docker_image.present file.recurse:
- name: /opt/so/conf/suricata
- source: salt://pulledpork/rules
- user: 940
- group: 940
so-pulledpork: so-suricata:
docker_container.running: docker_container.running:
- image: toosmooth/so-pulledpork:test2 - image: toosmooth/so-suricata:test2
- hostname: so-pulledpork - hostname: so-suricata
- user: socore - user: suricata
- priviledged: True
- binds: - binds:
- /opt/so/pulledpork/etc:/opt/pulledpork/etc:ro - /opt/so/suricata/conf/rules:/usr/local/etc/suricata/rules:ro
- /opt/so/rules/nids:/opt/so/rules/nids:rw - /opt/so/rules/nids:/opt/so/rules/nids:rw
- network_mode: so-elastic-net - network_mode: host