Skip to content

Commit 399b972

Browse files
KbayeroKbayero
committed
feat(integrations): add suricata integration
1 parent b33a85c commit 399b972

4 files changed

Lines changed: 382 additions & 356 deletions

File tree

agent/config/const.go

Lines changed: 3 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -85,6 +85,7 @@ var (
8585
DataTypeAix DataType = "ibm_aix"
8686
DataTypePfsense DataType = "firewall_pfsense"
8787
DataTypeFortiweb DataType = "firewall_fortiweb"
88+
DataTypeSuricata DataType = "suricata"
8889

8990
ProtoPorts = map[DataType]ProtoPort{
9091
DataTypeSyslog: {UDP: "7014", TCP: "7014"},
@@ -102,6 +103,7 @@ var (
102103
DataTypeAix: {UDP: "7016", TCP: "7016"},
103104
DataTypePfsense: {UDP: "7017", TCP: "7017"},
104105
DataTypeFortiweb: {UDP: "7018", TCP: "7018"},
106+
DataTypeSuricata: {UDP: "7019", TCP: "7019"},
105107
DataTypeNetflow: {UDP: "2055", TCP: ""},
106108
}
107109

@@ -116,7 +118,7 @@ func ValidateModuleType(typ string) string {
116118
switch DataType(typ) {
117119
case DataTypeSyslog, DataTypeVmware, DataTypeEset, DataTypeKaspersky, DataTypeFortinet, DataTypePaloalto,
118120
DataTypeMikrotik, DataTypeSophosXG, DataTypeSonicwall, DataTypeSentinelOne, DataTypeCiscoGeneric,
119-
DataTypeDeceptivebytes, DataTypeAix, DataTypePfsense, DataTypeFortiweb:
121+
DataTypeDeceptivebytes, DataTypeAix, DataTypePfsense, DataTypeFortiweb, DataTypeSuricata:
120122
return "syslog"
121123
case DataTypeNetflow:
122124
return "netflow"

filters/nids/nids-ids.conf

Lines changed: 0 additions & 355 deletions
This file was deleted.

0 commit comments

Comments
 (0)