reyesj2
ff4ec69f7c
remove redis log collection on heavynodes (disabled)
2026-01-27 16:28:06 -06:00
reyesj2
2038227308
remove reference to .fleet_final_pipeline-1
...
- configure global@custom ingest pipeline to run .fleet_final_pipeline-1 when available (heavynodes do not have this pipeline).
- Update global@custom pipeline to remove error message related to sending EA logs through logstash (https://github.com/elastic/kibana/issues/183959 )
2026-01-26 14:01:58 -06:00
reyesj2
950852d673
update heavynode standalone elastic agent policy
2026-01-26 13:57:19 -06:00
reyesj2
8900f9ade3
collect elasticsearch logs on heavynodes via fleet managed elastic agent
2026-01-26 13:51:58 -06:00
reyesj2
8cf0d59560
remove block of elasticsearch-logs integration on heavynodes
2026-01-26 12:48:15 -06:00
reyesj2
a78e0b0871
only create /opt/so/state/eaintegrations.txt when all policies have been created/updated successfully
2026-01-26 12:26:21 -06:00
reyesj2
32f030f6f6
formatting
2026-01-26 12:24:31 -06:00
reyesj2
5d0c187497
format json
2026-01-23 14:45:31 -06:00
Jorge Reyes
30d8cf5a6c
Merge pull request #15412 from Security-Onion-Solutions/reyesj2-patch-9
...
missing updates to variables
2026-01-22 17:01:53 -06:00
Jorge Reyes
07dbdb9f8f
Merge pull request #15411 from Security-Onion-Solutions/reyesj2-patch-10
...
add retries to so-resources repo pull
2026-01-22 17:01:35 -06:00
reyesj2
b4c8f7924a
missing updates to variables
2026-01-22 16:49:20 -06:00
reyesj2
809422c517
add retries to so-resources repo pull
2026-01-22 16:39:19 -06:00
Jorge Reyes
bb7593a53a
Merge pull request #15410 from Security-Onion-Solutions/reyesj2-patch-9
...
fix auto soup - check for compatible versions and fallback to a known…
2026-01-22 16:36:40 -06:00
reyesj2
8e3ba8900f
fix auto soup - check for compatible versions and fallback to a known good value as needed
2026-01-22 16:12:21 -06:00
Jorge Reyes
005ec87248
Merge pull request #15408 from Security-Onion-Solutions/reyesj2-patch-7
...
fix kafka state
2026-01-21 12:58:58 -06:00
reyesj2
4c6ff0641b
fix kafka state
2026-01-21 12:47:58 -06:00
Jorge Reyes
3e242913e9
Merge pull request #15407 from Security-Onion-Solutions/reyesj2-patch-6
...
more better
2026-01-20 15:31:44 -06:00
reyesj2
ba68e3c9bd
more better
2026-01-20 15:30:19 -06:00
Josh Patterson
e1199a91b9
Merge pull request #15406 from Security-Onion-Solutions/bravo
...
fix include
2026-01-20 16:29:49 -05:00
Josh Patterson
d381248e30
fix include
2026-01-20 16:27:37 -05:00
Jorge Reyes
f4f0218cae
Merge pull request #15404 from Security-Onion-Solutions/reyesj2-patch-6
...
reinstall agent on grid nodes when service wasn't cleanly removed. eg…
2026-01-20 13:34:55 -06:00
Josh Patterson
7a38e52b01
Merge pull request #15405 from Security-Onion-Solutions/bravo
...
create dir if nonexistent
2026-01-20 14:34:16 -05:00
Josh Patterson
959fd55e32
create dir if nonexistent
2026-01-20 14:30:11 -05:00
reyesj2
a8e218a9ff
reinstall agent on grid nodes when service wasn't cleanly removed. eg. manually deleting /opt/Elastic/Agent/
2026-01-20 12:37:06 -06:00
Josh Patterson
3f5cd46d7d
Merge pull request #15402 from Security-Onion-Solutions/bravo
...
allow logstash.ssl for eval and import. fix soup create_ca_pillar
2026-01-20 12:08:45 -05:00
Josh Patterson
627f0c2bcc
allow logstash.ssl state for so-import
2026-01-20 11:58:31 -05:00
Josh Patterson
f6bde3eb04
remove double logging
2026-01-20 11:56:31 -05:00
Josh Patterson
f6e95c17a0
need to create_ca_pillar for 210 not 220
2026-01-20 11:55:57 -05:00
Josh Patterson
1234cbd04b
allow logstash.ssl on so-eval
2026-01-20 09:30:32 -05:00
Josh Patterson
fd5b93542e
Merge pull request #15400 from Security-Onion-Solutions/bravo
...
break out ssl state
2026-01-19 17:21:07 -05:00
Josh Patterson
a192455fae
Merge remote-tracking branch 'origin/2.4/dev' into bravo
2026-01-19 17:17:58 -05:00
Josh Patterson
66f17e95aa
Merge pull request #15397 from Security-Onion-Solutions/fstes
...
Fstes
2026-01-16 18:38:06 -05:00
Josh Patterson
6f4b96b61b
removing time logging changes
2026-01-16 18:31:45 -05:00
Josh Patterson
9905d23976
inform which state is being applied
2026-01-16 18:27:24 -05:00
Josh Patterson
17532fe49d
run a final highstate on managers prior to verify
2026-01-16 17:42:58 -05:00
Josh Patterson
074158b495
discard so-elasticsearch-templates-load running again during setup
2026-01-16 17:42:00 -05:00
Josh Patterson
82d5115b3f
rerun so-elasticsearch-templates-load during setup
2026-01-16 16:43:10 -05:00
Josh Patterson
5c63111002
add timing to scripts to allow for debugging delays
2026-01-16 16:42:24 -05:00
Jorge Reyes
6eda7932e8
Merge pull request #15394 from Security-Onion-Solutions/reyesj2/elastic9-filestream
...
remove usage of deprecated 'logs' integration in favor of 'filestream'
2026-01-16 13:19:15 -06:00
Jorge Reyes
399b7567dd
Merge pull request #15393 from Security-Onion-Solutions/reyesj2/esretries
...
add additional retries within scripts before salt re-runs the entire …
2026-01-16 13:11:47 -06:00
reyesj2
2133ada3a1
add additional retries within scripts before salt re-runs the entire script
2026-01-16 13:09:08 -06:00
Jorge Reyes
4f6d4738c4
Merge pull request #15391 from Security-Onion-Solutions/reyesj2-patch-3
...
follow symlinks for docker cp
2026-01-15 15:26:48 -06:00
reyesj2
d430ed6727
false positive
2026-01-15 15:25:28 -06:00
reyesj2
596bc178df
ensure docker cp command follows container symlinks
2026-01-15 15:18:18 -06:00
reyesj2
0cd3d7b5a8
deprecated kibana config
2026-01-15 15:17:22 -06:00
reyesj2
349d77ffdf
exclude kafka restart error
2026-01-15 14:43:57 -06:00
Josh Patterson
c3283b04e5
Merge pull request #15390 from Security-Onion-Solutions/fixmerge201210
...
Fixmerge201210
2026-01-15 15:11:00 -05:00
Josh Patterson
0da0788e6b
move function to be with the rest of its friends
2026-01-15 14:56:36 -05:00
Jason Ertel
6f7e249aa2
Merge pull request #15389 from Security-Onion-Solutions/jertel/wip
...
Add version 2.4.201 to discussion template
2026-01-15 14:56:25 -05:00
Josh Patterson
dfaeed54b6
Merge remote-tracking branch 'origin/2.4/main' into fixmerge201210
2026-01-15 14:44:33 -05:00
