mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-04-21 12:12:26 +02:00
Removes all Strelka container salt states and infrastructure references, replaced by the native fileanalyze module in sensoroni. Removed: - salt/strelka/ directory (all container states, configs, tools) - Docker container definitions for 6 Strelka containers - Firewall rules for strelka_frontend - Container references in containers.map.jinja - top.sls and allowed_states references to strelka/strelka.manager - so-minion add_strelka_to_minion() function and call sites - so-deny strelka_frontend entry - Logstash strelka bind mount - Logrotate strelka config - Telegraf strelka file monitoring - so-sensor-clean strelka cleanup - so-image-common strelka container images Kept (still needed): - Elasticsearch index/ingest pipeline (ingests fileanalyze output) - Elastic agent/fleet log collection config - SOC strelkaengine (YARA rule management) - Kibana saved objects (dashboards)
91 lines
1.8 KiB
Django/Jinja
91 lines
1.8 KiB
Django/Jinja
{% from 'vars/globals.map.jinja' import GLOBALS %}
|
|
|
|
{% if GLOBALS.role == 'so-eval' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-dockerregistry',
|
|
'so-elasticsearch',
|
|
'so-elastic-fleet',
|
|
'so-elastic-fleet-package-registry',
|
|
'so-influxdb',
|
|
'so-kibana',
|
|
'so-kratos',
|
|
'so-hydra',
|
|
'so-nginx',
|
|
'so-redis',
|
|
'so-soc',
|
|
] %}
|
|
|
|
{% elif GLOBALS.role in ['so-manager', 'so-standalone','so-managersearch', 'so-managerhype'] %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-dockerregistry',
|
|
'so-elasticsearch',
|
|
'so-elastic-fleet',
|
|
'so-elastic-fleet-package-registry',
|
|
'so-influxdb',
|
|
'so-kafka',
|
|
'so-kibana',
|
|
'so-kratos',
|
|
'so-hydra',
|
|
'so-logstash',
|
|
'so-nginx',
|
|
'so-redis',
|
|
'so-soc',
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-searchnode' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-elasticsearch',
|
|
'so-logstash',
|
|
'so-nginx'
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-heavynode' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-elasticsearch',
|
|
'so-elastic-agent',
|
|
'so-logstash',
|
|
'so-nginx',
|
|
'so-redis',
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-import' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-dockerregistry',
|
|
'so-elasticsearch',
|
|
'so-elastic-fleet',
|
|
'so-elastic-fleet-package-registry',
|
|
'so-influxdb',
|
|
'so-kibana',
|
|
'so-kratos',
|
|
'so-hydra',
|
|
'so-nginx',
|
|
'so-soc'
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-receiver' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-logstash',
|
|
'so-redis',
|
|
'so-kafka'
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-idh' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-idh',
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-fleet' %}
|
|
{% set NODE_CONTAINERS = [
|
|
'so-elastic-fleet',
|
|
'so-logstash',
|
|
'so-nginx-fleet-node'
|
|
] %}
|
|
|
|
{% elif GLOBALS.role == 'so-sensor' %}
|
|
{% set NODE_CONTAINERS = [] %}
|
|
|
|
{% else %}
|
|
{% set NODE_CONTAINERS = [] %}
|
|
|
|
{% endif %}
|