CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
9c06713f32d2ee975ebac58624a594da74667da8
securityonion/salt/elasticfleet/files/integrations/grid-nodes_general/syslog-udp-514.json
reyesj2 21ed1439e2 update udp integration policy
2025-02-18 10:40:18 -06:00

37 lines
932 B
JSON
Raw Blame History

{
"package": {
"name": "udp",
"version": ""
},
"name": "syslog-udp-514",
"namespace": "so",
"description": "Syslog over UDP Port 514",
"policy_id": "so-grid-nodes_general",
"inputs": {
"udp-udp": {
"enabled": true,
"streams": {
"udp.udp": {
"enabled": true,
"vars": {
"listen_address": "0.0.0.0",
"listen_port": "514",
"data_stream.dataset": "syslog",
"pipeline": "syslog",
"max_message_size": "10KiB",
"keep_null": false,
"processors": "- add_fields:\n target: event\n fields: \n module: syslog",
"tags": [
"syslog"
],
"syslog_options": "field: message\n#format: auto\n#timezone: Local\n",
"preserve_original_event": false,
"custom": ""
}
}
}
}
},
"force": true
}
Reference in New Issue View Git Blame Copy Permalink