From e7225349a6133c925270c994b8735acc2d678c06 Mon Sep 17 00:00:00 2001 From: Mike Reeves Date: Wed, 5 Aug 2020 22:56:41 -0400 Subject: [PATCH] Ability to toggle between redis and minio --- pillar/logstash/manager.sls | 5 +++++ pillar/logstash/search.sls | 5 +++++ setup/so-functions | 1 + 3 files changed, 11 insertions(+) diff --git a/pillar/logstash/manager.sls b/pillar/logstash/manager.sls index 861b8f665..dcf222ae4 100644 --- a/pillar/logstash/manager.sls +++ b/pillar/logstash/manager.sls @@ -1,7 +1,12 @@ +{%- set PIPELINE = salt['pillar.get']('global:pipeline', 'minio') %} logstash: pipelines: manager: config: - so/0009_input_beats.conf - so/0010_input_hhbeats.conf + {%- if PIPELINE == "minio"%} - so/9998_output_minio.conf.jinja + {%- else %} + - so/9999_output_redis.conf.jinja + {%- endif %} \ No newline at end of file diff --git a/pillar/logstash/search.sls b/pillar/logstash/search.sls index cad849153..22f73c5d4 100644 --- a/pillar/logstash/search.sls +++ b/pillar/logstash/search.sls @@ -1,8 +1,13 @@ +{%- set PIPELINE = salt['pillar.get']('global:pipeline', 'minio') %} logstash: pipelines: search: config: + {%- if PIPELINE == "minio"%} - so/0899_input_minio.conf.jinja + {%- else %} + - so/0900_input_redis.conf.jinja + {%- endif %} - so/9000_output_zeek.conf.jinja - so/9002_output_import.conf.jinja - so/9034_output_syslog.conf.jinja diff --git a/setup/so-functions b/setup/so-functions index fdf667d76..d965a8b86 100755 --- a/setup/so-functions +++ b/setup/so-functions @@ -1049,6 +1049,7 @@ manager_global() { " wazuh: $WAZUH"\ " managerupdate: $MANAGERUPDATES"\ " imagerepo: $IMAGEREPO"\ + " pipeline: minio"\ "pcap:"\ " sensor_checkin_interval_ms: $SENSOR_CHECKIN_INTERVAL_MS"\ "strelka:"\