mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-15 21:52:47 +01:00
183 lines
2.8 KiB
YAML
183 lines
2.8 KiB
YAML
elasticsearch:
|
|
index_settings:
|
|
so-aws:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-azure:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-barracuda:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-beats:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-bluecoat:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-cef:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-checkpoint:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-cisco:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-cyberark:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-cylance:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-elasticsearch:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-endgame:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-f5:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-firewall:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-fortinet:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-gcp:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-google_workspace:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-ids:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-imperva:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-import:
|
|
warm: 7
|
|
close: 73000
|
|
delete: 73001
|
|
so-infoblox:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-juniper:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-kratos:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-kibana:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-logstash:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-microsoft:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-misp:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-netflow:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-netscout:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-o365:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-okta:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-osquery:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-ossec:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-proofpoint:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-radware:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-redis:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-snort:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-snyk:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-sonicwall:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-sophos:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-strelka:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-syslog:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-tomcat:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-zeek:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|
|
so-zscaler:
|
|
warm: 7
|
|
close: 30
|
|
delete: 365
|