CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-04 18:37:52 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
ec187e9d854eaefd5da3b390871bbb35f15cc4ee
securityonion/salt/logstash/pipelines/config/so/9050_output_filebeatmodules.conf.jinja
T
Mike Reeves 2bd9dd80e2 Move In Day
2022-09-07 09:06:25 -04:00

18 lines
614 B
Django/Jinja
Raw Blame History

{%- set ES = salt['grains.get']('master') -%}
{%- set ES_USER = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:user', '') %}
{%- set ES_PASS = salt['pillar.get']('elasticsearch:auth:users:so_elastic_user:pass', '') %}
output {
if "filebeat" in [metadata][pipeline] {
elasticsearch {
id => "filebeat_modules_metadata_pipeline"
pipeline => "%{[metadata][pipeline]}"
hosts => "{{ ES }}"
user => "{{ ES_USER }}"
password => "{{ ES_PASS }}"
index => "so-%{[event][module]}-%{+YYYY.MM.dd}"
ssl => true
ssl_certificate_verification => false
}
}
}
Reference in New Issue View Git Blame Copy Permalink