mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-15 21:52:47 +01:00
84 lines
1.5 KiB
YAML
84 lines
1.5 KiB
YAML
elasticsearch:
|
|
index_settings:
|
|
logs-import-so:
|
|
close: 73000
|
|
delete: 73001
|
|
logs-strelka-so:
|
|
close: 30
|
|
delete: 365
|
|
logs-suricata-so:
|
|
close: 30
|
|
delete: 365
|
|
logs-syslog-so:
|
|
close: 30
|
|
delete: 365
|
|
logs-zeek-so:
|
|
close: 30
|
|
delete: 365
|
|
logs-elastic_agent-metricbeat-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-elastic_agent-osquerybeat-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-elastic_agent-fleet_server-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-elastic_agent-filebeat-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-elastic_agent-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-system-auth-default:
|
|
close: 30
|
|
delete: 365
|
|
logs-system-syslog-default:
|
|
close: 30
|
|
delete: 365
|
|
so-beats:
|
|
close: 30
|
|
delete: 365
|
|
so-elasticsearch:
|
|
close: 30
|
|
delete: 365
|
|
so-firewall:
|
|
close: 30
|
|
delete: 365
|
|
so-ids:
|
|
close: 30
|
|
delete: 365
|
|
so-import:
|
|
close: 73000
|
|
delete: 73001
|
|
so-kratos:
|
|
close: 30
|
|
delete: 365
|
|
so-kibana:
|
|
close: 30
|
|
delete: 365
|
|
so-logstash:
|
|
close: 30
|
|
delete: 365
|
|
so-netflow:
|
|
close: 30
|
|
delete: 365
|
|
so-osquery:
|
|
close: 30
|
|
delete: 365
|
|
so-ossec:
|
|
close: 30
|
|
delete: 365
|
|
so-redis:
|
|
close: 30
|
|
delete: 365
|
|
so-strelka:
|
|
close: 30
|
|
delete: 365
|
|
so-syslog:
|
|
close: 30
|
|
delete: 365
|
|
so-zeek:
|
|
close: 30
|
|
delete: 365
|