mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-01-03 06:43:20 +01:00
84 lines
2.3 KiB
Plaintext
84 lines
2.3 KiB
Plaintext
# Module: fortinet
|
|
# Docs: https://www.elastic.co/guide/en/beats/filebeat/7.x/filebeat-module-fortinet.html
|
|
|
|
- module: fortinet
|
|
firewall:
|
|
enabled: true
|
|
|
|
# Set which input to use between tcp, udp (default) or file.
|
|
#var.input: udp
|
|
|
|
# The interface to listen to syslog traffic. Defaults to
|
|
# localhost. Set to 0.0.0.0 to bind to all available interfaces.
|
|
#var.syslog_host: localhost
|
|
|
|
# The port to listen for syslog traffic. Defaults to 9004.
|
|
#var.syslog_port: 9004
|
|
|
|
# Set internal interfaces. used to override parsed network.direction
|
|
# based on a tagged interface. Both internal and external interfaces must be
|
|
# set to leverage this functionality.
|
|
#var.internal_interfaces: [ "LAN" ]
|
|
|
|
# Set external interfaces. used to override parsed network.direction
|
|
# based on a tagged interface. Both internal and external interfaces must be
|
|
# set to leverage this functionality.
|
|
#var.external_interfaces: [ "WAN" ]
|
|
|
|
clientendpoint:
|
|
enabled: true
|
|
|
|
# Set which input to use between udp (default), tcp or file.
|
|
# var.input: udp
|
|
# var.syslog_host: localhost
|
|
# var.syslog_port: 9510
|
|
|
|
# Set paths for the log files when file input is used.
|
|
# var.paths:
|
|
|
|
# Toggle output of non-ECS fields (default true).
|
|
# var.rsa_fields: true
|
|
|
|
# Set custom timezone offset.
|
|
# "local" (default) for system timezone.
|
|
# "+02:00" for GMT+02:00
|
|
# var.tz_offset: local
|
|
|
|
fortimail:
|
|
enabled: true
|
|
|
|
# Set which input to use between udp (default), tcp or file.
|
|
# var.input: udp
|
|
# var.syslog_host: localhost
|
|
# var.syslog_port: 9529
|
|
|
|
# Set paths for the log files when file input is used.
|
|
# var.paths:
|
|
|
|
# Toggle output of non-ECS fields (default true).
|
|
# var.rsa_fields: true
|
|
|
|
# Set custom timezone offset.
|
|
# "local" (default) for system timezone.
|
|
# "+02:00" for GMT+02:00
|
|
# var.tz_offset: local
|
|
|
|
fortimanager:
|
|
enabled: true
|
|
|
|
# Set which input to use between udp (default), tcp or file.
|
|
# var.input: udp
|
|
# var.syslog_host: localhost
|
|
# var.syslog_port: 9530
|
|
|
|
# Set paths for the log files when file input is used.
|
|
# var.paths:
|
|
|
|
# Toggle output of non-ECS fields (default true).
|
|
# var.rsa_fields: true
|
|
|
|
# Set custom timezone offset.
|
|
# "local" (default) for system timezone.
|
|
# "+02:00" for GMT+02:00
|
|
# var.tz_offset: local
|