CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix index names

Browse Source
This commit is contained in:
Wes Lambert
2020-03-18 16:42:06 +00:00
parent 85cc1e9e17
commit fcc5c306ea
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
salt/logstash/pipelines/config/so/9600_output_ossec.conf.jinja
View File

@@ -21,7 +21,7 @@ output {
elasticsearch {
pipeline => "%{event_type}"
hosts => "{{ ES }}"
index => "so-common-%{+YYYY.MM.dd}"
index => "so-ossec-%{+YYYY.MM.dd}"
template_name => "so-common"
template => "/so-common-template.json"
template_overwrite => true

2
salt/logstash/pipelines/config/so/9700_output_strelka.conf.jinja
View File

@@ -20,7 +20,7 @@ output {
if [event_type] =~ "strelka" {
elasticsearch {
hosts => "{{ ES }}"
index => "so-common-%{+YYYY.MM.dd}"
index => "so-strelka-%{+YYYY.MM.dd}"
template_name => "so-common"
template => "/so-common-template.json"
template_overwrite => true