mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-01-17 05:31:34 +01:00
12 lines
379 B
YAML
12 lines
379 B
YAML
{%- set ENGINE = salt['pillar.get']('global:mdengine', '') -%}
|
|
filecheck:
|
|
{%- if ENGINE == "SURICATA" -%}
|
|
extract_path = '/nsm/suricata/extracted'
|
|
{%- else -%}
|
|
extract_path = '/nsm/zeek/extracted/complete'
|
|
{%- endif -%}
|
|
historypath = '/nsm/strelka/history/'
|
|
strelkapath = '/nsm/strelka/unprocessed/'
|
|
logfile = '/opt/so/log/strelka/filecheck.log'
|
|
|