added Malcolm

2021-08-06 10:35:01 +02:00
parent f043730066
commit 70f1922e80
751 changed files with 195277 additions and 0 deletions
--- a/Vagrant/resources/malcolm/logstash/pipelines/external/00_config.conf
+++ b/Vagrant/resources/malcolm/logstash/pipelines/external/00_config.conf
@@ -0,0 +1,3 @@
+  queue.type: persisted
+  queue.max_bytes: 4gb
+  path.queue: "/logstash-persistent-queue"
--- a/Vagrant/resources/malcolm/logstash/pipelines/external/01_input_external_es.conf
+++ b/Vagrant/resources/malcolm/logstash/pipelines/external/01_input_external_es.conf
@@ -0,0 +1,6 @@
+input {
+  pipeline {
+    address => "${ELASTICSEARCH_PIPELINE_ADDRESS_EXTERNAL:external-es}"
+  }
+}
+
--- a/Vagrant/resources/malcolm/logstash/pipelines/external/99_elastic_output.conf
+++ b/Vagrant/resources/malcolm/logstash/pipelines/external/99_elastic_output.conf
@@ -0,0 +1,13 @@
+output {
+  elasticsearch {
+    id => "output_external_elasticsearch_moloch"
+    hosts => "${ES_EXTERNAL_HOSTS}"
+    ssl => "${ES_EXTERNAL_SSL:true}"
+    ssl_certificate_verification => "${ES_EXTERNAL_SSL_CERTIFICATE_VERIFICATION:false}"
+    user => "${ES_EXTERNAL_USER:}"
+    password => "${ES_EXTERNAL_PASSWORD:}"
+    manage_template => false
+    index => "sessions2-%{+YYMMdd}"
+    document_id => "%{+YYMMdd}-%{zeekLogDocId}"
+  }
+}