Add support for multi-node installations with Ansible roles #339
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Move elasticsearch to role Move lighttpd to role Move Kafka handlers to role Move kibana to role Move ROCK dashboards to Kibana role Move mappings to ES role Move more configs to ES and Kibana roles Move logstash to role Move Bro to role Move FSF to role Move suricata to role Cleanup vars and add plays for each role Move GeoIP to Bro role Move monitor interface out of sensor-common Cleanup ES tasks Move common packages to sensor-common Move firewall tasks to sensor-common Update source for ES firewall rules Move bro packages into role Remove java from common packages Move fsf package install to role Move all packages to roles Modularize filebeat config Move ROCK customizations to sensor-common Cleanup handlers and grammar Add sample multi-node inventory Cleanup capitalization and add conf dir Deploy sensor-common to all hosts Remove vars file mapping This model doesn't work when doing a multinode deployment Fix handler syntax and capitalization Fix indentation Add multi-node config for Elasticsearch Fix grammar Add task to create filebeat config dir Standardize casing across all roles and remove meta folders Add missing handler for filebeat Fix handler name Fix elasticsearch firewall rule Update elasticsearch ports Add env vars for logstash Add tasks to download rock-dashboards Make kafka and ES hosts dynamic in LS configs Update hosts file to work with multinode installs Update firewall ports Update firewall ports Fix handler name Update rock version Scope hosts file to play_hosts Remove docket prefix from names Remove hardcoded loopback addresses Update roles to work with docket in multinode Add gpg keys for offline environments Set steno listener to routable interface Remove kibana ports from firewall Add playbook to setup requirements on deployment host Sort host list to keep it idempotent Update formatting Update sample inventory to work with ES roles Update rock version and move packages to central location Add transport port to ES ports Reconfigure to allow single and multinode from same playbook Tell steno to always listen in non-loopback This greatly simplifies docket configuration. Fix firewall task for steno Move cache to home dir by default Fix elasticsearch address to work with multinode and singlenode Make es_url dynamic Update inventory path Fix host variable
Switched away from using host_vars, because it would be very easy to overlook or misconfigure. This approach is much more approachable.
Merged
dcode
added a commit
that referenced
this pull request
Feb 22, 2019
* New: Add ability to do multi-host deployment of sensor + data tiers (#339, [[email protected]](mailto:[email protected])) * New: Integrate Docket into Kibana by default ([[email protected]](mailto:[email protected])) * New: Improvements and additional Kibana dashboards (spartan782) * Fixes: issue with Bro failing when monitor interface is down (#343, [[email protected]](mailto:[email protected])) * Fixes: issue with services starting that shouldn’t (#346, [[email protected]](mailto:[email protected])) * Fixes: race condition on loading dashboards into Kibana (#356, [[email protected]](mailto:[email protected])) * Fixes: configuration for Docket allowing serving from non-root URI (#361, [[email protected]](mailto:[email protected])) * Change: bro log retention value to one week rather than forever (#345, [[email protected]](mailto:[email protected])) * Change: Greatly improve documentation (#338, [[email protected]](mailto:[email protected])) * Change: Reorganize README (#308, [[email protected]](mailto:[email protected])) * Change: Move ECS to rock-dashboards repo (#305, [[email protected]](mailto:[email protected])) * Change: Move RockNSM install paths to filesystem heirarchy standard locations (#344, [[email protected]](mailto:[email protected]))
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.