From f0437300662bc278315bf9bb0189795227619361 Mon Sep 17 00:00:00 2001
From: Trinitor <git@trinitor.de>
Date: Fri, 6 Aug 2021 10:26:03 +0200
Subject: [PATCH] added securityonion

---
 Vagrant/Vagrantfile | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

diff --git a/Vagrant/Vagrantfile b/Vagrant/Vagrantfile
index e4f34ef..6d0f563 100644
--- a/Vagrant/Vagrantfile
+++ b/Vagrant/Vagrantfile
@@ -235,4 +235,34 @@ EOF
       vb.customize ["setextradata", "global", "GUI/SuppressMessages", "all" ]
     end
   end
+
+  config.vm.define "securityonion", autostart: false do |cfg|
+    cfg.vm.box = "ubuntu/trusty64"
+    cfg.vm.hostname = "securityonion"
+    cfg.vm.network :private_network, ip: "192.168.38.10", gateway: "192.168.38.1", dns: "8.8.8.8"
+    cfg.vm.network :private_network, ip: "192.168.39.10", gateway: "192.168.39.1", dns: "8.8.8.8"
+
+    cfg.vm.provider "virtualbox" do |vb|
+      vb.name = "securityonion"
+      vb.memory = "4096"
+      vb.gui = false
+      vb.customize ["modifyvm", :id, "--nicpromisc2", "allow-all"]
+    end
+
+    cfg.vm.provision "shell", inline: <<-SHELL
+      export DEBIAN_FRONTEND=noninteractive
+      iptables -F
+      rm -rf /var/lib/apt/lists/*
+      apt-get update
+      apt-get -y install software-properties-common
+      add-apt-repository -y ppa:securityonion/stable
+      apt-get update
+      apt-get -y install securityonion-all syslog-ng-core
+      apt-get -y autoremove
+      apt-get clean
+      sosetup -y -f /vagrant/sosetup.conf
+      ufw allow 443/tcp
+    SHELL
+  end
+
 end