CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,044 Commits 24 Branches 119 Tags
f6a765addcf8a383f17b24b72a33b0de09b5a1dd
Commit Graph

125 Commits

Author SHA1 Message Date
weslambert
6004dde54a Add strelka_frontend to heavynode, sensor, and standalone role FW portgroups 2022-03-28 16:05:07 -04:00
m0duspwnens
0970bbc983 default to false if local role doesnt exist 2022-02-24 17:55:50 -05:00
m0duspwnens
61ae61953f allow only manager to connect to ssh port for idh node 2022-02-23 15:14:11 -05:00
Josh Brower
99554d5db8 IDH - UDP vs TCP support 2022-02-22 14:10:05 -05:00
Josh Brower
0362afb260 IDH - Finalize Firewall config 2022-02-18 13:23:48 -05:00
Josh Brower
f995d0768f IDH - Initial firewall support 2022-02-17 15:54:20 -05:00
Josh Brower
a3602c9eb9 Initial support - IDH Node 2022-02-08 08:24:15 -05:00
m0duspwnens
2e4ed8062e simplify wazuh agent ip logic 2021-12-16 11:11:01 -05:00
m0duspwnens
176ef852c8 clean up assinged hostgroups for receiver 2021-12-15 08:28:40 -05:00
m0duspwnens
fe7247f876 update fw for receiver and add mine_functions for ip_addr 2021-12-10 15:28:40 -05:00
m0duspwnens
f8da5c7fe9 start of fw rules for receiver 2021-12-07 15:59:11 -05:00
Wes Lambert
a9b250c0f4 Add EG firewall config 2021-10-13 21:37:59 +00:00
Mike Reeves
7153f58a03 Add Firewall for Beats port 2021-04-13 20:17:26 -04:00
m0duspwnens
f7e99b4961 https://github.com/Security-Onion-Solutions/securityonion/issues/3709 2021-03-31 15:17:15 -04:00
m0duspwnens
68ce7a902d insert instead of append 2021-03-17 09:14:19 -04:00
m0duspwnens
38a497932c https://github.com/Security-Onion-Solutions/securityonion/issues/3288 2021-03-16 16:36:35 -04:00
m0duspwnens
7e4d7a6985 drop icmp timestamp replies https://github.com/Security-Onion-Solutions/securityonion/issues/1704 2021-02-11 11:09:21 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
ad45779978 fix duplicate state name for fw 2020-12-18 15:01:55 -05:00
m0duspwnens
4bbedfa027 put portgroup name in statename 2020-12-18 14:14:45 -05:00
m0duspwnens
dbf82a891f add sensoroni port to minions for manager nodes 2020-12-18 13:06:14 -05:00
m0duspwnens
141d7a35c9 if true cluster enabled allow search nodes to talk to each other https://github.com/Security-Onion-Solutions/securityonion/issues/2079 2020-12-01 15:38:09 -05:00
Mike Reeves
697bc53aec Dockernet Modifications 2020-10-27 15:08:34 -04:00
m0duspwnens
ef1e05db3e only allow hosts in syslog host group to connect to manager type nodes 2020-10-21 14:41:03 -04:00
m0duspwnens
8805fef187 firewall to allow search nodes to connect to beats on manager 2020-10-21 12:43:28 -04:00
m0duspwnens
5f43380aa0 add firewall rules for syslog 2020-10-21 11:20:34 -04:00
Mike Reeves
73aade1223 Enable rest access from manager to sn 2020-10-11 11:02:20 -04:00
Mike Reeves
af9a19b6e8 Merge pull request #1321 from Security-Onion-Solutions/experimental 
IDS Tools now with Airgap support
 2020-09-10 19:05:16 -04:00
Mike Reeves
5d4e8925a3 Add Firewall Logic 2020-09-09 21:16:40 -04:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
01c9f7b2ae merge with dev and resolve conflicts 2020-09-09 16:23:36 -04:00
Mike Reeves
7d524a0723 Add Firewall Rule for yum and airgap 2020-09-08 18:51:14 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
m0duspwnens
47faee48a6 heavynode firewall rules 2020-08-14 15:58:59 -04:00
m0duspwnens
3836f00309 allow sensori port for import node 2020-08-14 14:32:34 -04:00
m0duspwnens
5a0df27193 rename importpcap node to import 2020-08-12 10:27:15 -04:00
m0duspwnens
ec62668eb7 firewall rules for importpcap node 2020-08-11 12:31:37 -04:00
m0duspwnens
11433b87e6 Merge remote-tracking branch 'remotes/origin/dev' into issue/1049 2020-08-10 16:36:49 -04:00
Mike Reeves
9248896a20 fix redis ports 2020-08-08 20:24:30 -04:00
Mike Reeves
5525e235d1 jruby ssl fun 2020-08-07 23:28:58 -04:00
m0duspwnens
fce22c1cc4 Merge remote-tracking branch 'remotes/origin/dev' into issue/1049 2020-08-07 10:27:11 -04:00
m0duspwnens
66ca7b266c first commit of importpcap node mode code, kek 2020-08-05 14:44:23 -04:00
Mike Reeves
24ed92c9dc minio and change to global 2020-08-04 15:54:03 -04:00
m0duspwnens
3cf31e2460 https://github.com/Security-Onion-Solutions/securityonion/issues/404 2020-07-09 11:27:06 -04:00
Mike Reeves
c59096d9bd rename node pillar to elasticsearch 2020-07-07 10:42:12 -04:00
m0duspwnens
b4e556496b add elasticsearch_rest to assigned hostgroups where missing 2020-07-06 15:18:47 -04:00
Wes Lambert
ed60d48c81 Add ES REST API option for so-allow 2020-06-29 18:49:16 +00:00
William Wernert
bd36749959 [feat] Remove navigator container references 2020-06-24 12:38:32 -04:00
Wes Lambert
f7eacc2b05 Add FW config for Strelka frontend 2020-06-23 18:47:23 +00:00
m0duspwnens
51e500f521 add firewall rules for fleet standalone 2020-06-15 13:50:37 -04:00