mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-26 19:03:35 +01:00
11 lines
369 B
YAML
11 lines
369 B
YAML
{%- set ENGINE = salt['pillar.get']('global:mdengine', '') %}
|
|
filecheck:
|
|
{%- if ENGINE == "SURICATA" %}
|
|
extract_path: '/nsm/suricata/extracted'
|
|
{%- else %}
|
|
extract_path: '/nsm/zeek/extracted/complete'
|
|
{%- endif %}
|
|
historypath: '/nsm/strelka/history/'
|
|
strelkapath: '/nsm/strelka/unprocessed/'
|
|
logfile: '/opt/so/log/strelka/filecheck.log'
|