CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 01:32:47 +01:00
Code Issues Packages Projects Releases Wiki Activity

testing defaults.yaml

Browse Source
This commit is contained in:
m0duspwnens
2021-09-09 08:55:36 -04:00
parent a27569f20b
commit f06ab8b77d
2 changed files with 213 additions and 216 deletions
Download Patch File Download Diff File Expand all files Collapse all files

426
salt/elasticsearch/defaults.yaml
View File

@@ -56,17 +56,7 @@ elasticsearch:
close: 45 close: 45
delete: 365 delete: 365
cluster_settings:
persistent:
cluster:
remote:
default-cluster-name:
seeds:
- 127.0.0.1:9300
transient:
{}
defaults:
cluster: cluster:
max_voting_config_exclusions: 10 max_voting_config_exclusions: 10
auto_shrink_voting_configuration: true auto_shrink_voting_configuration: true
@@ -86,9 +76,9 @@ elasticsearch:
read_only: false read_only: false
remote: remote:
node: node:
attr: attr: ""
initial_connect_timeout: 30s initial_connect_timeout: 30s
connect: true #connect: true #DEPRECATION
connections_per_cluster: 3 connections_per_cluster: 3
follower_lag: follower_lag:
timeout: 90000ms timeout: 90000ms
@@ -99,16 +89,16 @@ elasticsearch:
allocation: allocation:
node_concurrent_incoming_recoveries: 2 node_concurrent_incoming_recoveries: 2
include: include:
_tier: _tier: ""
node_initial_primaries_recoveries: 4 node_initial_primaries_recoveries: 4
same_shard: same_shard:
host: false host: false
total_shards_per_node: -1 total_shards_per_node: "-1"
require: require:
_tier: _tier: ""
shard_state: #shard_state: #DEPRECATION
reroute: #reroute: #DEPRECATION
priority: NORMAL #priority: NORMAL #DEPRECATION
type: balanced type: balanced
disk: disk:
threshold_enabled: true threshold_enabled: true
@@ -119,7 +109,7 @@ elasticsearch:
low: 95% low: 95%
enable_for_single_data_node: false enable_for_single_data_node: false
flood_stage.frozen: 95% flood_stage.frozen: 95%
include_relocations: true #include_relocations: true #DEPRECATION
reroute_interval: 60s reroute_interval: 60s
awareness: awareness:
attributes: [] attributes: []
@@ -133,7 +123,7 @@ elasticsearch:
cluster_concurrent_rebalance: 2 cluster_concurrent_rebalance: 2
node_concurrent_recoveries: 2 node_concurrent_recoveries: 2
exclude: exclude:
_tier: _tier: ""
indices: indices:
tombstones: tombstones:
size: 500 size: 500
@@ -148,7 +138,7 @@ elasticsearch:
publish: publish:
timeout: 30000ms timeout: 30000ms
info_timeout: 10000ms info_timeout: 10000ms
name: default-cluster-name name: {{ grains.host }} # Will change if true cluster
fault_detection: fault_detection:
leader_check: leader_check:
interval: 1000ms interval: 1000ms
@@ -158,10 +148,10 @@ elasticsearch:
interval: 1000ms interval: 1000ms
timeout: 10000ms timeout: 10000ms
retry_count: 3 retry_count: 3
join: #join: #DEPRECATION
timeout: 60000ms #timeout: 60000ms #DEPRECATION
max_shards_per_node: 1000 max_shards_per_node: 1000
initial_master_nodes: [] #initial_master_nodes: [] # ERROR setting [cluster.initial_master_nodes] is not allowed when [discovery.type] is set to [single-node]
snapshot: snapshot:
info: info:
max_concurrent_fetches: 5 max_concurrent_fetches: 5
@@ -176,9 +166,9 @@ elasticsearch:
level: INFO level: INFO
bootstrap: bootstrap:
memory_lock: false memory_lock: false
system_call_filter: true #system_call_filter: true #DEPRECATION
ctrlhandler: true ctrlhandler: true
processors: 8 #processors: 8 #DEPRECATION
ingest: ingest:
user_agent: user_agent:
cache_size: 1000 cache_size: 1000
@@ -198,14 +188,14 @@ elasticsearch:
- 0.0.0.0 - 0.0.0.0
tcp: tcp:
reuse_address: true reuse_address: true
keep_count: -1 keep_count: "-1"
connect_timeout: 30s #connect_timeout: 30s #DEPRECATION
keep_interval: -1 keep_interval: "-1"
no_delay: true no_delay: true
keep_alive: true keep_alive: true
receive_buffer_size: -1b receive_buffer_size: "-1b"
keep_idle: -1 keep_idle: "-1"
send_buffer_size: -1b send_buffer_size: "-1b"
bind_host: bind_host:
- 0.0.0.0 - 0.0.0.0
server: true server: true
@@ -215,15 +205,15 @@ elasticsearch:
overhead: 2.0 overhead: 2.0
publish_host: publish_host:
- 0.0.0.0 - 0.0.0.0
pidfile: pidfile: ""
path: path:
data: [] data: []
logs: /var/log/elasticsearch logs: /var/log/elasticsearch
shared_data: shared_data: ""
home: /usr/share/elasticsearch home: /usr/share/elasticsearch
repo: [] repo: []
search: search:
default_search_timeout: -1 default_search_timeout: "-1"
highlight: highlight:
term_vector_multi_value: true term_vector_multi_value: true
default_allow_partial_results: true default_allow_partial_results: true
@@ -234,10 +224,10 @@ elasticsearch:
keep_alive_interval: 1m keep_alive_interval: 1m
remote: remote:
node: node:
attr: attr: ""
initial_connect_timeout: 30s #initial_connect_timeout: 30s #DEPRECATION
connect: true #connect: true #DEPRECATION
connections_per_cluster: 3 #connections_per_cluster: 3 #DEPRECATION
default_keep_alive: 5m default_keep_alive: 5m
max_keep_alive: 24h max_keep_alive: 24h
aggs: aggs:
@@ -262,9 +252,9 @@ elasticsearch:
wait_for_metadata_timeout: 60s wait_for_metadata_timeout: 60s
repositories: repositories:
fs: fs:
compress: false #compress: false #DEPRECATION
chunk_size: 9223372036854775807b chunk_size: 9223372036854775807b
location: location: ""
url: url:
supported_protocols: supported_protocols:
- http - http
@@ -297,32 +287,32 @@ elasticsearch:
queue_capacity: 1024 queue_capacity: 1024
max_concurrent_policy_executions: 50 max_concurrent_policy_executions: 50
xpack: xpack:
flattened: #flattened: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
watcher: watcher:
execution: execution:
scroll: scroll:
size: 0 size: 0
timeout: timeout: ""
default_throttle_period: 5s default_throttle_period: 5s
internal: internal:
ops: ops:
bulk: bulk:
default_timeout: default_timeout: ""
index: index:
default_timeout: default_timeout: ""
search: search:
default_timeout: default_timeout: ""
thread_pool: thread_pool:
queue_size: 1000 queue_size: 1000
size: 40 size: 40
index: index:
rest: rest:
direct_access: direct_access: ""
use_ilm_index_management: true use_ilm_index_management: true
history: #history: #DEPRECATION
cleaner_service: #cleaner_service: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
trigger: trigger:
schedule: schedule:
ticker: ticker:
@@ -330,11 +320,11 @@ elasticsearch:
enabled: true enabled: true
input: input:
search: search:
default_timeout: default_timeout: ""
encrypt_sensitive_data: false encrypt_sensitive_data: false
transform: transform:
search: search:
default_timeout: default_timeout: ""
stop: stop:
timeout: 30s timeout: 30s
watch: watch:
@@ -347,15 +337,15 @@ elasticsearch:
actions: 1 actions: 1
actions: actions:
bulk: bulk:
default_timeout: default_timeout: ""
index: index:
default_timeout: default_timeout: ""
eql: #eql: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
data_frame: #data_frame: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
ilm: #ilm: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
monitoring: monitoring:
migration: migration:
decommission_alerts: false decommission_alerts: false
@@ -390,7 +380,7 @@ elasticsearch:
elasticsearch: elasticsearch:
collection: collection:
enabled: true enabled: true
enabled: true #enabled: true #DEPRECATION
graph: graph:
enabled: true enabled: true
searchable: searchable:
@@ -410,16 +400,16 @@ elasticsearch:
min_time_delta: 60s min_time_delta: 60s
decay: decay:
interval: 60s interval: 60s
size.max_headroom: -1 size.max_headroom: "-1"
range_size: 16mb range_size: 16mb
max_freq: 100 max_freq: 100
rollup: rollup:
enabled: true #enabled: true #DEPRECATION
task_thread_pool: task_thread_pool:
queue_size: -1 queue_size: "-1"
size: 1 size: 1
sql: #sql: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
searchable_snapshots: searchable_snapshots:
cache_fetch_async_thread_pool: cache_fetch_async_thread_pool:
core: 0 core: 0
@@ -439,13 +429,13 @@ elasticsearch:
- trial - trial
self_generated: self_generated:
type: basic type: basic
logstash: #logstash: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
notification: notification:
pagerduty: pagerduty:
default_account: default_account: ""
email: email:
default_account: default_account: ""
html: html:
sanitization: sanitization:
allow: allow:
@@ -464,9 +454,9 @@ elasticsearch:
enabled: true enabled: true
interval: 15s interval: 15s
jira: jira:
default_account: default_account: ""
slack: slack:
default_account: default_account: ""
security: security:
operator_privileges: operator_privileges:
enabled: false enabled: false
@@ -484,6 +474,10 @@ elasticsearch:
enabled: true enabled: true
ssl: ssl:
enabled: true enabled: true
verification_mode: none
certificate_authorities: /usr/share/elasticsearch/config/ca.crt
key: /usr/share/elasticsearch/config/elasticsearch.key
certificate: /usr/share/elasticsearch/config/elasticsearch.crt
ssl: ssl:
diagnose: diagnose:
trust: true trust: true
@@ -532,13 +526,13 @@ elasticsearch:
ttl: 24h ttl: 24h
delete: delete:
interval: 24h interval: 24h
timeout: -1 timeout: "-1"
enabled: false enabled: false
hashing: hashing:
algorithm: pbkdf2 algorithm: pbkdf2
anonymous: anonymous:
authz_exception: true authz_exception: true
roles: roles:
- superuser - superuser
username: anonymous_user username: anonymous_user
run_as: run_as:
@@ -553,7 +547,7 @@ elasticsearch:
token: token:
delete: delete:
interval: 30m interval: 30m
timeout: -1 timeout: "-1"
enabled: false enabled: false
thread_pool: thread_pool:
queue_size: 1000 queue_size: 1000
@@ -571,13 +565,17 @@ elasticsearch:
enabled: true enabled: true
ssl: ssl:
enabled: true enabled: true
client_authentication: none
key: /usr/share/elasticsearch/config/elasticsearch.key
certificate: /usr/share/elasticsearch/config/elasticsearch.crt
certificate_authorities: /usr/share/elasticsearch/config/ca.crt
automata: automata:
max_determinized_states: 100000 max_determinized_states: 100000
cache: cache:
size: 10000 size: 10000
ttl: 48h ttl: 48h
enabled: true enabled: true
user: null user: ""
authz: authz:
store: store:
privileges: privileges:
@@ -585,10 +583,10 @@ elasticsearch:
ttl: 24h ttl: 24h
max_size: 10000 max_size: 10000
roles: roles:
index: #index: #DEPRECATION
cache: #cache: #DEPRECATION
ttl: 20m #ttl: 20m #DEPRECATION
max_size: 10000 #max_size: 10000 #DEPRECATION
cache: cache:
max_size: 10000 max_size: 10000
negative_lookup_cache: negative_lookup_cache:
@@ -598,9 +596,9 @@ elasticsearch:
max_size_in_bytes: 104857600 max_size_in_bytes: 104857600
transform: transform:
num_transform_failure_retries: 10 num_transform_failure_retries: 10
enabled: true #enabled: true #DEPRECATION
vectors: #vectors: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
ccr: ccr:
enabled: true enabled: true
ccr_thread_pool: ccr_thread_pool:
@@ -608,14 +606,14 @@ elasticsearch:
size: 32 size: 32
idp: idp:
privileges: privileges:
application: application: ""
cache: cache:
size: 100 size: 100
ttl: 90m ttl: 90m
metadata: metadata:
signing: signing:
keystore: keystore:
alias: alias: ""
slo_endpoint: slo_endpoint:
post: "https:" post: "https:"
redirect: "https:" redirect: "https:"
@@ -625,20 +623,20 @@ elasticsearch:
allowed_nameid_formats: allowed_nameid_formats:
- urn:oasis:names:tc:SAML:2.0:nameid-format:transient - urn:oasis:names:tc:SAML:2.0:nameid-format:transient
contact: contact:
given_name: given_name: ""
email: email: ""
surname: surname: ""
organization: organization:
display_name: display_name: ""
name: name: ""
url: "http:" url: "http:"
sso_endpoint: sso_endpoint:
post: "https:" post: "https:"
redirect: "https:" redirect: "https:"
entity_id: entity_id: ""
signing: signing:
keystore: keystore:
alias: alias: ""
sp: sp:
cache: cache:
size: 1000 size: 1000
@@ -646,15 +644,15 @@ elasticsearch:
wildcard: wildcard:
path: wildcard_services.json path: wildcard_services.json
enabled: false enabled: false
slm: #slm:
enabled: true #enabled: true #DEPRECATION
enrich: #enrich: #DEPRECATION
enabled: true #enabled: true #DEPRECATION
http: http:
default_connection_timeout: 10s default_connection_timeout: 10s
proxy: proxy:
host: host: ""
scheme: scheme: ""
port: 0 port: 0
whitelist: whitelist:
- "*" - "*"
@@ -673,7 +671,7 @@ elasticsearch:
inference_model: inference_model:
cache_size: 40% cache_size: 40%
time_to_live: 5m time_to_live: 5m
nightly_maintenance_requests_per_second: -1.0 nightly_maintenance_requests_per_second: "-1.0"
node_concurrent_job_allocations: 2 node_concurrent_job_allocations: 2
max_model_memory_limit: 0b max_model_memory_limit: 0b
enabled: false enabled: false
@@ -713,15 +711,15 @@ elasticsearch:
medium: 30s medium: 30s
thread_pool: thread_pool:
force_merge: force_merge:
queue_size: -1 queue_size: "-1"
size: 1 size: 1
fetch_shard_started: fetch_shard_started:
core: 1 core: 1
max: 16 max: 16
keep_alive: 5m keep_alive: 5m
listener: #listener: #DEPRECATION
queue_size: -1 #queue_size: "-1" #DEPRECATION
size: 4 #size: 4 #DEPRECATION
refresh: refresh:
core: 1 core: 1
max: 4 max: 4
@@ -738,12 +736,12 @@ elasticsearch:
max: 4 max: 4
keep_alive: 5m keep_alive: 5m
search: search:
max_queue_size: 1000 #max_queue_size: 1000 #DEPRECATION
queue_size: 1000 queue_size: 1000
size: 13 size: 13
auto_queue_frame_size: 2000 #auto_queue_frame_size: 2000 #DEPRECATION
target_response_time: 1s #target_response_time: 1s #DEPRECATION
min_queue_size: 1000 #min_queue_size: 1000 #DEPRECATION
fetch_shard_store: fetch_shard_store:
core: 1 core: 1
max: 16 max: 16
@@ -774,23 +772,23 @@ elasticsearch:
max: 4 max: 4
keep_alive: 5m keep_alive: 5m
search_throttled: search_throttled:
max_queue_size: 100 #max_queue_size: 100 #DEPRECATION
queue_size: 100 queue_size: 100
size: 1 size: 1
auto_queue_frame_size: 200 #auto_queue_frame_size: 200 #DEPRECATION
target_response_time: 1s #target_response_time: 1s #DEPRECATION
min_queue_size: 100 #min_queue_size: 100 #DEPRECATION
index: index:
codec: default codec: default
recovery: recovery:
type: type: ""
store: store:
type: type: ""
fs: fs:
fs_lock: native fs_lock: native
preload: [] preload: []
snapshot: snapshot:
uncached_chunk_size: -1b uncached_chunk_size: "-1b"
cache: cache:
excluded_file_types: [] excluded_file_types: []
monitor: monitor:
@@ -821,21 +819,21 @@ elasticsearch:
transport: transport:
tcp: tcp:
reuse_address: true reuse_address: true
keep_count: -1 keep_count: "-1"
connect_timeout: 30s #connect_timeout: 30s #DEPRECATION
keep_interval: -1 keep_interval: "-1"
compress: false #compress: false #DEPRECATION
port: 9300-9400 #port: 9300-9400 #DEPRECATION
no_delay: true no_delay: true
keep_alive: true keep_alive: true
receive_buffer_size: -1b receive_buffer_size: "-1b"
keep_idle: -1 keep_idle: "-1"
send_buffer_size: -1b send_buffer_size: "-1b"
bind_host: bind_host:
- 0.0.0.0 - 0.0.0.0
connect_timeout: 30s connect_timeout: 30s
compress: false compress: false
ping_schedule: -1 ping_schedule: "-1"
connections_per_node: connections_per_node:
recovery: 2 recovery: 2
state: 1 state: 1
@@ -856,7 +854,7 @@ elasticsearch:
port: 9300-9400 port: 9300-9400
host: [] host: []
publish_port: 9300 publish_port: 9300
tcp_no_delay: true #tcp_no_delay: true #DEPRECATION
publish_host: {{ grains.host }} publish_host: {{ grains.host }}
netty: netty:
receive_predictor_size: 64kb receive_predictor_size: 64kb
@@ -865,57 +863,57 @@ elasticsearch:
receive_predictor_min: 64kb receive_predictor_min: 64kb
boss_count: 1 boss_count: 1
script: script:
allowed_contexts: [] allowed_contexts: none # ERROR have to set to none - should be list
max_compilations_rate: 20000/1m #max_compilations_rate: 20000/1m #DEPRECATION
cache: #cache: #DEPRECATION
max_size: 100 #max_size: 100 #DEPRECATION
expire: 0ms #expire: 0ms #DEPRECATION
painless: painless:
regex: regex:
enabled: limited enabled: limited
limit-factor: 6 limit-factor: 6
max_size_in_bytes: 65535 max_size_in_bytes: 65535
allowed_types: [] allowed_types: none # ERROR have to set to none - should be list
disable_max_compilations_rate: false disable_max_compilations_rate: false
indexing_pressure: indexing_pressure:
memory: memory:
limit: 10% limit: 10%
node: node:
data: true #data: true #DEPRECATION
roles: # roles:
- data_frozen # - data_frozen
- data_warm # - data_warm
- transform # - transform ERROR
- data # - data
- remote_cluster_client # - remote_cluster_client
- data_cold # - data_cold
- data_content # - data_content
- data_hot # - data_hot
- ingest # - ingest
- master # - master
max_local_storage_nodes: 1 #max_local_storage_nodes: 1 #DEPRECATION
processors: 8 processors: 8
store: store:
allow_mmap: true allow_mmap: true
ingest: true #ingest: true #DEPRECATION
master: true #master: true #DEPRECATION
pidfile: pidfile: ""
transform: true #transform: true #DEPRECATION
remote_cluster_client: true #remote_cluster_client: true #DEPRECATION
enable_lucene_segment_infos_trace: false enable_lucene_segment_infos_trace: false
local_storage: true #local_storage: true #DEPRECATION
name: {{ grains.host }} name: {{ grains.host }}
id: id:
seed: 0 seed: 0
voting_only: false #voting_only: false #DEPRECATION
attr: attr:
transform: #transform: ERROR
node: true # node: true ERROR
xpack: xpack:
installed: true installed: ""
box_type: hot box_type: hot
portsfile: false portsfile: false
ml: true #ml: true #DEPRECATION
indices: indices:
replication: replication:
retry_timeout: 60s retry_timeout: 60s
@@ -927,7 +925,7 @@ elasticsearch:
max_in_flight_updates: 10 max_in_flight_updates: 10
memory: memory:
interval: 5s interval: 5s
max_index_buffer_size: -1 max_index_buffer_size: "-1"
shard_inactive_time: 5m shard_inactive_time: 5m
index_buffer_size: 10% index_buffer_size: 10%
min_index_buffer_size: 48mb min_index_buffer_size: 48mb
@@ -968,7 +966,7 @@ elasticsearch:
requests: requests:
cache: cache:
size: 1% size: 1%
expire: 0ms expire: 1ms #0ms - ERROR when set to 0ms, set to 1ms and ERROR gone
store: store:
delete: delete:
shard: shard:
@@ -990,7 +988,7 @@ elasticsearch:
master_timeout: 30s master_timeout: 30s
fielddata: fielddata:
cache: cache:
size: -1b size: "-1b"
plugin: plugin:
mandatory: [] mandatory: []
slm: slm:
@@ -999,48 +997,48 @@ elasticsearch:
retention_duration: 1h retention_duration: 1h
history_index_enabled: true history_index_enabled: true
discovery: discovery:
seed_hosts: [] #seed_hosts: [] # ERROR - it is forbidden to set both [discovery.seed_hosts] and [discovery.zen.ping.unicast.hosts]
unconfigured_bootstrap_timeout: 3s unconfigured_bootstrap_timeout: 3s
request_peers_timeout: 3000ms request_peers_timeout: 3000ms
zen: zen:
commit_timeout: 30s #commit_timeout: 30s #DEPRECATION
no_master_block: write #no_master_block: write #DEPRECATION
join_retry_delay: 100ms #join_retry_delay: 100ms #DEPRECATION
join_retry_attempts: 3 #join_retry_attempts: 3 #DEPRECATION
ping: #ping:
unicast: #unicast:
concurrent_connects: 10 #concurrent_connects: 10 # ERROR forbidden to set both [discovery.seed_resolver.max_concurrent_resolvers] and [discovery.zen.ping.unicast.concurrent_connects]
hosts: [] #hosts: [] # ERROR - it is forbidden to set both [discovery.seed_hosts] and [discovery.zen.ping.unicast.hosts]
hosts.resolve_timeout: 5s #hosts.resolve_timeout: 5s # ERROR forbidden to set both [discovery.seed_resolver.timeout] and [discovery.zen.ping.unicast.hosts.resolve_timeout]
master_election: #master_election: #DEPRECATION
ignore_non_master_pings: false #ignore_non_master_pings: false #DEPRECATION
wait_for_joins_timeout: 30000ms #wait_for_joins_timeout: 30000ms #DEPRECATION
send_leave_request: true #send_leave_request: true #DEPRECATION
ping_timeout: 3s ping_timeout: 3s
bwc_ping_timeout: 3s #bwc_ping_timeout: 3s #DEPRECATION
join_timeout: 60000ms #join_timeout: 60000ms #DEPRECATION
publish_diff: #publish_diff:
enable: true #enable: true #DEPRECATION
publish: #publish: #DEPRECATION
max_pending_cluster_states: 25 #max_pending_cluster_states: 25 #DEPRECATION
minimum_master_nodes: -1 #minimum_master_nodes: "-1" #DEPRECATION
unsafe_rolling_upgrades_enabled: true #unsafe_rolling_upgrades_enabled: true #DEPRECATION
hosts_provider: [] #hosts_provider: # ERROR forbidden to set both [discovery.seed_providers] and [discovery.zen.hosts_provider] has to be commented out
publish_timeout: 30s #publish_timeout: 30s #DEPRECATION
fd: #fd: #DEPRECATION
connect_on_network_disconnect: false #connect_on_network_disconnect: false #DEPRECATION
ping_interval: 1s #ping_interval: 1s #DEPRECATION
ping_retries: 3 #ping_retries: 3 #DEPRECATION
register_connection_listener: true #register_connection_listener: true #DEPRECATION
ping_timeout: 30s #ping_timeout: 30s #DEPRECATION
max_pings_from_another_master: 3 #max_pings_from_another_master: 3 #DEPRECATION
initial_state_timeout: 30s initial_state_timeout: 30s
cluster_formation_warning_timeout: 10000ms cluster_formation_warning_timeout: 10000ms
seed_providers: [] #seed_providers: # ERROR forbidden to set both [discovery.seed_providers] and [discovery.zen.hosts_provider] has to be commented out
type: single-node type: zen # ERROR java.lang.IllegalArgumentException: node with [discovery.type] set to [single-node] must be master-eligible # test turning off
seed_resolver: #seed_resolver:
max_concurrent_resolvers: 10 #max_concurrent_resolvers: 10 # ERROR forbidden to set both [discovery.seed_resolver.max_concurrent_resolvers] and [discovery.zen.ping.unicast.concurrent_connects]
timeout: 5s #timeout: 5s # forbidden to set both [discovery.seed_resolver.timeout] and [discovery.zen.ping.unicast.hosts.resolve_timeout]
find_peers_interval: 1000ms find_peers_interval: 1000ms
probe: probe:
connect_timeout: 30s connect_timeout: 30s
@@ -1048,7 +1046,7 @@ elasticsearch:
http: http:
cors: cors:
max-age: 1728000 max-age: 1728000
allow-origin: allow-origin: ""
allow-headers: X-Requested-With,Content-Type,Content-Length allow-headers: X-Requested-With,Content-Type,Content-Length
allow-credentials: false allow-credentials: false
allow-methods: OPTIONS,HEAD,GET,POST,PUT,DELETE allow-methods: OPTIONS,HEAD,GET,POST,PUT,DELETE
@@ -1060,10 +1058,10 @@ elasticsearch:
pipelining: pipelining:
max_events: 10000 max_events: 10000
type.default: netty4 type.default: netty4
content_type: #content_type: #DEPRECATION
required: true #required: true #DEPRECATION
host: [] host: []
publish_port: -1 publish_port: "-1"
read_timeout: 0ms read_timeout: 0ms
max_content_length: 100mb max_content_length: 100mb
netty: netty:
@@ -1072,40 +1070,40 @@ elasticsearch:
worker_count: 0 worker_count: 0
tcp: tcp:
reuse_address: true reuse_address: true
keep_count: -1 keep_count: "-1"
keep_interval: -1 keep_interval: "-1"
no_delay: true no_delay: true
keep_alive: true keep_alive: true
receive_buffer_size: -1b receive_buffer_size: "-1b"
keep_idle: -1 keep_idle: "-1"
send_buffer_size: -1b send_buffer_size: "-1b"
bind_host: [] bind_host: []
client_stats: client_stats:
enabled: true enabled: true
reset_cookies: false reset_cookies: false
max_warning_header_count: -1 max_warning_header_count: "-1"
tracer: tracer:
include: [] include: []
exclude: [] exclude: []
max_warning_header_size: -1b max_warning_header_size: "-1b"
detailed_errors: detailed_errors:
enabled: true enabled: true
port: 9200-9300 port: 9200-9300
max_header_size: 8kb max_header_size: 8kb
tcp_no_delay: true #tcp_no_delay: true #DEPRECATION
compression: false compression: false
publish_host: [] publish_host: []
gateway: gateway:
recover_after_master_nodes: 0 #recover_after_master_nodes: 0 #DEPRECATION
expected_nodes: -1 #expected_nodes: "-1" #DEPRECATION
recover_after_data_nodes: -1 recover_after_data_nodes: "-1"
expected_data_nodes: -1 expected_data_nodes: "-1"
write_dangling_indices_info: true write_dangling_indices_info: true
slow_write_logging_threshold: 10s slow_write_logging_threshold: 10s
recover_after_time: 0ms recover_after_time: 0ms
expected_master_nodes: -1 #expected_master_nodes: "-1" #DEPRECATION
recover_after_nodes: -1 #recover_after_nodes: "-1" #DEPRECATION
auto_import_dangling_indices: false #auto_import_dangling_indices: false #DEPRECATION
snapshot: snapshot:
refresh_repo_uuid_on_restore: true refresh_repo_uuid_on_restore: true
max_concurrent_operations: 1000 max_concurrent_operations: 1000

3
salt/elasticsearch/init.sls
View File

@@ -140,10 +140,9 @@ eslog4jfile:
esyml: esyml:
file.managed: file.managed:
- name: /opt/so/conf/elasticsearch/elasticsearch.yml - name: /opt/so/conf/elasticsearch/elasticsearch.yml
- source: salt://elasticsearch/files/elasticsearch.yml - contents: {{ ESCONFIG.elasticsearch.cluster_settings | yaml }}
- user: 930 - user: 930
- group: 939 - group: 939
- template: jinja
esyml_test: esyml_test:
file.managed: file.managed: