Skip to content

Commit

Permalink
Merge pull request #904 from splunk/linux-sysmon-ta
Browse files Browse the repository at this point in the history
  • Loading branch information
@josehelps
josehelps committed Jul 3, 2024
2 parents 3fc879a + 1c2b383 commit 30f96c0
Show file tree
Hide file tree
Showing 3 changed files with 3 additions and 3 deletions.
2 changes: 1 addition & 1 deletion packer/ansible/roles/linux_sysmon/files/inputs.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,4 @@ journalctl-exclude-fields = __MONOTONIC_TIMESTAMP,__SOURCE_REALTIME_TIMESTAMP
journalctl-filter = _SYSTEMD_UNIT=sysmon.service
index = unix
source = Syslog:Linux-Sysmon/Operational
sourcetype = sysmon_linux
sourcetype = sysmon:linux
2 changes: 1 addition & 1 deletion packer/ansible/roles/splunk_server/tasks/main.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
- "splunk-machine-learning-toolkit_541.tgz"
- "splunk-security-essentials_380.tgz"
- "splunk-add-on-for-sysmon_400.tgz "
- "add-on-for-linux-sysmon_104.tgz"
- "splunk-add-on-for-sysmon-for-linux_100.tgz"
- "splunk-add-on-for-amazon-web-services-aws_760.tgz"
- "splunk-add-on-for-microsoft-office-365_451.tgz"
- "splunk-add-on-for-amazon-kinesis-firehose_131r7d1d093.tgz"
Expand Down
2 changes: 1 addition & 1 deletion packer/ansible/roles/sysmon_linux/files/deb_template_inputs.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,4 @@ journalctl-exclude-fields = __MONOTONIC_TIMESTAMP,__SOURCE_REALTIME_TIMESTAMP
journalctl-filter = _SYSTEMD_UNIT=sysmon.service
index = unix
source = Syslog:Linux-Sysmon/Operational
sourcetype = sysmon_linux
sourcetype = sysmon:linux

0 comments on commit 30f96c0

Please sign in to comment.