mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-06 09:12:45 +01:00
55 lines
1.3 KiB
Plaintext
55 lines
1.3 KiB
Plaintext
# Install Elasticsearch
|
|
|
|
# Made directory for ES data to live in
|
|
hiveesdata:
|
|
file.directory:
|
|
- name: /nsm/hive/esdata
|
|
- makedirs: True
|
|
|
|
so-thehive-es:
|
|
docker_container.running:
|
|
- image: docker.elastic.co/elasticsearch/elasticsearch:5.6.0
|
|
- hostname: so-thehive-es
|
|
- name: so-thehive-es
|
|
- interactive: True
|
|
- tty: True
|
|
- binds:
|
|
- /nsm/hive/esdata:/usr/share/elasticsearch/data:rw
|
|
- environment:
|
|
- http.host=0.0.0.0
|
|
- http.port=9400
|
|
- transport.tcp.port=9500
|
|
- transport.host=0.0.0.0
|
|
- xpack.security.enabled=false
|
|
- cluster.name=hive
|
|
- script.inline=true
|
|
- thread_pool.index.queue_size=100000
|
|
- thread_pool.search.queue_size=100000
|
|
- thread_pool.bulk.queue_size=100000
|
|
|
|
# Install Cortex
|
|
|
|
so-cortex:
|
|
docker_container.running:
|
|
- image: thehiveproject/cortex:latest
|
|
- hostname: so-cortex
|
|
- name: so-cortex
|
|
|
|
# Install Hive
|
|
hiveconfdir:
|
|
file.directory:
|
|
- name: /opt/so/conf/hive/etc
|
|
- makedirs: True
|
|
|
|
hiveconf:
|
|
file.managed:
|
|
- name: /opt/so/conf/hive/etc/application.conf
|
|
- source: salt://hive/thehive/etc/application.conf
|
|
- template: jinja
|
|
|
|
so-thehive:
|
|
docker_container.running:
|
|
- image: thehiveproject/thehive:latest
|
|
- hostname: so-thehive
|
|
- name: so-thehive
|