change capture loss to every 5 minutes and default grafana dashboard to 1h

2026-01-23 08:31:30 +01:00 · 2020-10-08 17:52:02 -04:00
parent 065fe9042d
commit f38519247b
7 changed files with 8 additions and 7 deletions
--- a/pillar/zeek/init.sls
+++ b/pillar/zeek/init.sls
@@ -52,4 +52,5 @@ zeek:
      - frameworks/signatures/detect-windows-shells
    redef:
      - LogAscii::use_json = T;
-      - LogAscii::json_timestamps = JSON::TS_ISO8601;
+      - LogAscii::json_timestamps = JSON::TS_ISO8601;
+      - CaptureLoss::watch_interval = 5 mins;
--- a/salt/grafana/dashboards/eval/eval.json
+++ b/salt/grafana/dashboards/eval/eval.json
@@ -4591,7 +4591,7 @@
    ]
  },
  "time": {
-    "from": "now-15m",
+    "from": "now-1h",
    "to": "now"
  },
  "timepicker": {
--- a/salt/grafana/dashboards/manager/manager.json
+++ b/salt/grafana/dashboards/manager/manager.json
@@ -4137,7 +4137,7 @@
    ]
  },
  "time": {
-    "from": "now-15m",
+    "from": "now-1h",
    "to": "now"
  },
  "timepicker": {
--- a/salt/grafana/dashboards/managersearch/managersearch.json
+++ b/salt/grafana/dashboards/managersearch/managersearch.json
@@ -4883,7 +4883,7 @@
      ]
    },
    "time": {
-      "from": "now-30m",
+      "from": "now-1h",
      "to": "now"
    },
    "timepicker": {
--- a/salt/grafana/dashboards/search_nodes/searchnode.json
+++ b/salt/grafana/dashboards/search_nodes/searchnode.json
@@ -3658,7 +3658,7 @@
    ]
  },
  "time": {
-    "from": "now-30m",
+    "from": "now-1h",
    "to": "now"
  },
  "timepicker": {
--- a/salt/grafana/dashboards/sensor_nodes/sensor.json
+++ b/salt/grafana/dashboards/sensor_nodes/sensor.json
@@ -4396,7 +4396,7 @@
    ]
  },
  "time": {
-    "from": "now-15m",
+    "from": "now-1h",
    "to": "now"
  },
  "timepicker": {
--- a/salt/grafana/dashboards/standalone/standalone.json
+++ b/salt/grafana/dashboards/standalone/standalone.json
@@ -6651,7 +6651,7 @@
    ]
  },
  "time": {
-    "from": "now-15m",
+    "from": "now-1h",
    "to": "now"
  },
  "timepicker": {