CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update soc_suricata.yaml

Browse Source
This commit is contained in:
Doug Burks
2024-03-20 16:03:45 -04:00
committed by GitHub
parent d2fb067110
commit fff4d20e39
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
salt/suricata/soc_suricata.yaml
View File

@@ -25,7 +25,7 @@ suricata:
advanced: True
helpLink: suricata.html
maxsize:
description: Maximum disk usage in GB for all PCAP written by Suricata.
description: Maximum size in GB for total disk usage of all PCAP written by Suricata.
helpLink: suricata.html
compression:
description: Enable compression of Suricata PCAP.
@@ -36,7 +36,7 @@ suricata:
advanced: True
helpLink: suricata.html
lz4-level:
description: lz4 compression level of PCAP. 0 for no compression. 16 for maximum compression.
description: lz4 compression level of PCAP. Set to 0 for no compression. Set to 16 for maximum compression.
advanced: True
helpLink: suricata.html
filename:
@@ -50,7 +50,7 @@ suricata:
readonly: True
helpLink: suricata.html
use-stream-depth:
description: Set to "no" to ignore the stream depth and capture the entire flow. Set to "yes" to truncate the flow based on the stream depth.
description: Set to "no" to ignore the stream depth and capture the entire flow. Set to "yes" to truncate the flow based on the stream depth.
advanced: True
regex: ^(yes|no)$
regexFailureMessage: You must enter either yes or no.