From fe6d96c424a5c5c561a6b36200207a6af980e8d4 Mon Sep 17 00:00:00 2001 From: Andrew Kroh Date: Tue, 26 Jan 2021 11:12:11 -0500 Subject: [PATCH] Update X-Pack Packetbeat config (#23666) (#23667) (cherry picked from commit 294297996260b278f4d6e074fc2b2944497212fb) --- x-pack/packetbeat/packetbeat.reference.yml | 2 +- x-pack/packetbeat/packetbeat.yml | 8 +++++--- 2 files changed, 6 insertions(+), 4 deletions(-) diff --git a/x-pack/packetbeat/packetbeat.reference.yml b/x-pack/packetbeat/packetbeat.reference.yml index b65ba79e677..43790cca594 100644 --- a/x-pack/packetbeat/packetbeat.reference.yml +++ b/x-pack/packetbeat/packetbeat.reference.yml @@ -80,7 +80,7 @@ packetbeat.flows: packetbeat.protocols: - type: icmp - # Enable ICMPv4 and ICMPv6 monitoring. Default: true + # Enable ICMPv4 and ICMPv6 monitoring. The default is true. #enabled: true # Set to true to publish fields with null values in events. diff --git a/x-pack/packetbeat/packetbeat.yml b/x-pack/packetbeat/packetbeat.yml index 2ac9186d43e..15a0df9ebd1 100644 --- a/x-pack/packetbeat/packetbeat.yml +++ b/x-pack/packetbeat/packetbeat.yml @@ -38,7 +38,7 @@ packetbeat.flows: packetbeat.protocols: - type: icmp - # Enable ICMPv4 and ICMPv6 monitoring. Default: false + # Enable ICMPv4 and ICMPv6 monitoring. The default is true. enabled: true - type: amqp @@ -47,7 +47,8 @@ packetbeat.protocols: ports: [5672] - type: cassandra - #Cassandra port for traffic monitoring. + # Configure the ports where to listen for Cassandra traffic. You can disable + # the Cassandra protocol by commenting out the list of ports. ports: [9042] - type: dhcpv4 @@ -112,7 +113,8 @@ packetbeat.protocols: - 9243 # Elasticsearch - type: sip - # Configure the ports where to listen for SIP traffic. You can disable the SIP protocol by commenting out the list of ports. + # Configure the ports where to listen for SIP traffic. You can disable + # the SIP protocol by commenting out the list of ports. ports: [5060] # ======================= Elasticsearch template setting =======================