mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-31 13:23:11 +01:00
26 lines
1.0 KiB
Django/Jinja
26 lines
1.0 KiB
Django/Jinja
{% set idh_services = salt['pillar.get']('idh:services', []) %}
|
|
|
|
{% set IDH_PORTGROUPS = {} %}
|
|
|
|
{% import_yaml "idh/defaults/defaults.yaml" as IDHCONFIG with context %}
|
|
{% for service in idh_services %}
|
|
{% import_yaml "idh/defaults/" ~ service ~ ".defaults.yaml" as SERVICECONFIG with context %}
|
|
{% do salt['defaults.merge'](IDHCONFIG, SERVICECONFIG, in_place=True) %}
|
|
{% endfor %}
|
|
|
|
{% set OPENCANARYCONFIG = salt['pillar.get']('idh:opencanary:config', default=IDHCONFIG.idh.opencanary.config, merge=True) %}
|
|
{% set OPENSSH = salt['pillar.get']('idh:openssh', default=IDHCONFIG.idh.openssh, merge=True) %}
|
|
|
|
{% for service in idh_services %}
|
|
{% if service in ["smnp","ntp", "tftp"] %}
|
|
{% set proto = 'udp' %}
|
|
{% else %}
|
|
{% set proto = 'tcp' %}
|
|
{% endif %}
|
|
{% do IDH_PORTGROUPS.update({'idh_' ~ service: {proto: [OPENCANARYCONFIG[service ~ '.port']]}}) %}
|
|
{% endfor %}
|
|
|
|
{% do IDH_PORTGROUPS.update({'openssh': {'tcp': [OPENSSH.config.port]}}) %}
|
|
|
|
{% do OPENCANARYCONFIG.update({'device.node_id': grains.host}) %}
|