-
Notifications
You must be signed in to change notification settings - Fork 3
/
docker-compose.yml
115 lines (106 loc) · 2.53 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
version: '2'
services:
nginx:
image: ${REGISTRY}nginx-le:stable
container_name: nginx-wazuh
env_file:
.env
ports:
- "80:80"
- "443:443"
volumes:
- ./certs/ssl:/etc/ssl/nginx
- ./certs/letsencrypt:/etc/letsencrypt
- ./cron/nginx:/var/spool/cron/crontabs
- ./nginx/conf.d:/etc/nginx/conf.d/
- ./nginx/nginx.conf:/etc/nginx/nginx.conf
- ./null:/etc/nginx/sites-enabled
- ./supervisord/nginx.conf:/etc/supervisor/conf.d/nginx.conf
depends_on:
- kibana
links:
- kibana
entrypoint: /usr/bin/supervisord -c /etc/supervisor/supervisord.conf -n
restart: always
wazuh:
image: wazuh/wazuh
hostname: wazuh-manager
restart: always
ports:
- "1514:1514/udp"
- "1515:1515"
- "514:514/udp"
- "55000:55000"
depends_on:
- logstash
filebeat:
image: docker.elastic.co/beats/filebeat:6.7.1
hostname: filebeat
restart: always
links:
- logstash
depends_on:
- logstash
volumes:
- ./filebeat.yml:/usr/share/filebeat/filebeat.yml
- ./log:/var/log/suricata
logstash:
# image: wazuh/wazuh-logstash
# image: optimum/crm:wazuh-logstash
image: optimum/crm:wazih_lohstash_dash
hostname: logstash
restart: always
links:
- elasticsearch:elasticsearch
ports:
- "5000:5000"
- "5044:5044"
depends_on:
- elasticsearch
volumes:
- ./log:/var/log/suricata
- ./synlite_suricata:/usr/share/logstash/synlite_suricata
- ./jvm.options:/usr/share/logstash/config/jvm.options
elasticsearch:
#image: wazuh/wazuh-elasticsearch
image: optimum/crm:wazuh-elastic-dash
hostname: elasticsearch
restart: always
ports:
- "127.0.0.1:9200:9200"
environment:
- node.name=node-1
- cluster.name=wazuh
- network.host=0.0.0.0
- bootstrap.memory_lock=true
- "ES_JAVA_OPTS=-Xms4g -Xmx4g"
ulimits:
memlock:
soft: -1
hard: -1
mem_limit: 4g
kibana:
# image: wazuh/wazuh-kibana
image: optimum/crm:wazih_kibana_dash
hostname: kibana
restart: always
ports:
- "5601:5601"
depends_on:
- elasticsearch
links:
- elasticsearch:elasticsearch
- wazuh:wazuh
suricata:
network_mode: host
cap_add:
- ALL
privileged: true
image: optimum/crm:suricata
hostname: suricata
restart: always
depends_on:
- logstash
volumes:
- ./log:/var/log/suricata
entrypoint: /etc/entrypoint.sh