-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathdocker-compose.yml
197 lines (187 loc) · 6.08 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
services:
setup:
build:
context: setup/
args:
ELASTIC_VERSION: ${ELASTIC_VERSION}
init: true
volumes:
- ./setup/entrypoint.sh:/entrypoint.sh:ro,Z
- ./setup_data:/state:Z
- ./setup/config:/config:ro,Z
networks:
- proto
gui:
build:
context: gui/
volumes:
- ./gui/entrypoint.sh:/entrypoint.sh:ro,Z
- ./gui/config/prewikka.conf:/etc/prewikka/prewikka.conf:ro,Z
- ./gui/config/auth.conf:/etc/prewikka/conf.d/auth.conf:ro,Z
- ./gui/config/idmefv2.conf:/etc/prewikka/conf.d/idmefv2.conf:ro,Z
- ./gui/config/logs.conf:/etc/prewikka/conf.d/logs.conf:ro,Z
- ./gui/config/menu.yml:/etc/prewikka/menu.yml:ro,Z
ports:
- 127.0.0.1:8000:80
- 127.0.0.1:8001:81
networks:
- proto
restart: on-failure
depends_on:
setup:
condition: service_started
es01:
condition: service_started
postgres:
condition: service_healthy
postgres:
build:
context: postgres/
environment:
POSTGRES_USER: ${POSTGRES_USER:-postgres}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-changeme}
PGDATA: /data/postgres
volumes:
- ./postgres_data:/data/postgres
ports:
- "127.0.0.1:5432:5432"
networks:
- proto
restart: on-failure
healthcheck:
test: ["CMD-SHELL", "pg_isready -U postgres"]
interval: 5s
timeout: 5s
retries: 5
es01:
build:
context: elasticsearch/
args:
ELASTIC_VERSION: ${ELASTIC_VERSION}
volumes:
- ./elasticsearch/config/elasticsearch.yml:/usr/share/elasticsearch/config/elasticsearch.yml:ro,Z
- ./elasticsearch_data:/usr/share/elasticsearch/data:Z
- ./elasticsearch_logs:/usr/share/elasticsearch/logs:Z
ports:
- 127.0.0.1:9200:9200
- 127.0.0.1:9300:9300
environment:
ES_JAVA_OPTS: ${ELASTIC_JVM}
ELASTIC_PASSWORD: ${ELASTIC_PASSWORD}
ulimits:
memlock:
soft: -1
hard: -1
networks:
- proto
logstash:
build:
context: logstash/
args:
LOGSTASH_VERSION: ${LOGSTASH_VERSION}
volumes:
- ./logstash/config/logstash.yml:/usr/share/logstash/config/logstash.yml:ro,Z
- ./logstash/config/jvm.options:/usr/share/logstash/config/jvm.options:ro,Z
- ./logstash/pipelines.yml:/usr/share/logstash/config/pipelines.yml:ro,Z
- ./logstash/rules.yml:/usr/share/logstash/config/rules.yml:ro,Z
- ./logstash/IDMEFv2-light.schema:/usr/share/logstash/config/IDMEFv2-light.schema:ro,Z
- ./logstash/IDMEFv2.schema:/usr/share/logstash/config/IDMEFv2.schema:ro,Z
- ./logstash/IDMEFv2.mapping:/usr/share/logstash/config/IDMEFv2.mapping:ro,Z
- ./logstash/NXLog.schema:/usr/share/logstash/config/NXLog.schema:ro,Z
- ./logstash/pipeline:/usr/share/logstash/config/pipeline:ro,Z
- ./logstash/scripts:/usr/share/logstash/config/scripts:ro,Z
- ./logstash/rulesets:/usr/share/logstash/config/rulesets:ro,Z
ports:
- 127.0.0.1:6514:6514
- 127.0.0.1:4690:4690
environment:
LS_JAVA_OPTS: ${LOGSTASH_JVM}
LOGSTASH_INTERNAL_PASSWORD: ""
MONITORING_ENABLED: "false"
MAX_MSG_SIZE: 1048576
BOOTSTRAP_SERVER: "http://kafka1:9092"
BIG_DATA_SERVER: "http://es01:9200/"
BIG_DATA_USERNAME: "elastic"
BIG_DATA_PASSWORD: "elastic"
ANALYZER_NAME: "Logstash"
ANALYZER_LOCATION: "Safe4SOC - Prototype"
ANALYZER_UNLOCATION: "FR PAR"
ANALYZER_GEOLOCATION: "48.7730817, 2.2442167"
ANALYZER_IP: "${DOCKER_IP}"
ANALYZER_HOSTNAME: "${DOCKER_HOSTNAME}"
LISTEN_SYSLOG: 6514
LISTEN_HTTP: 4690
TOPIC_COLLECTED: my_collected
TOPIC_PROCESSED: my_processed
INDEX_ALERTS: alerts
INDEX_LOGS: logs
networks:
- proto
depends_on:
- es01
- kafka1
kafdrop:
build:
context: kafdrop/
args:
KAFDROP_VERSION: ${KAFDROP_VERSION}
ports:
- 127.0.0.1:9201:9201
environment:
KAFKA_BROKERCONNECT: "kafka1:9092"
JVM_OPTS: "-Xms16M -Xmx48M -Xss180K -XX:-TieredCompilation -XX:+UseStringDeduplication -noverify"
CMD_ARGS: "--server.port=9201"
networks:
- proto
restart: on-failure
depends_on:
- kafka1
zoo1:
build:
context: zoo/
args:
ZOO_VERSION: ${ZOO_VERSION}
hostname: zoo1
ports:
- "127.0.0.1:2181:2181"
environment:
ZOOKEEPER_CLIENT_PORT: 2181
ZOOKEEPER_SERVER_ID: 1
ZOOKEEPER_SERVERS: zoo1:2888:3888
restart: on-failure
kafka1:
build:
context: kafka/
args:
KAFKA_VERSION: ${KAFKA_VERSION}
hostname: kafka1
ports:
- "127.0.0.1:9092:9092"
- "127.0.0.1:29092:29092"
- "127.0.0.1:9999:9999"
volumes:
- ./kafka_logs:/var/lib/kafka/logs:Z
environment:
KAFKA_ADVERTISED_LISTENERS: INTERNAL://kafka1:19092,EXTERNAL://kafka1:9092,DOCKER://kafka1:29092
KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: INTERNAL:PLAINTEXT,EXTERNAL:PLAINTEXT,DOCKER:PLAINTEXT
KAFKA_INTER_BROKER_LISTENER_NAME: INTERNAL
KAFKA_ZOOKEEPER_CONNECT: "zoo1:2181"
KAFKA_BROKER_ID: 1
KAFKA_LOG4J_LOGGERS: "kafka.controller=INFO,kafka.producer.async.DefaultEventHandler=INFO,state.change.logger=INFO"
KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 1
KAFKA_TRANSACTION_STATE_LOG_REPLICATION_FACTOR: 1
KAFKA_TRANSACTION_STATE_LOG_MIN_ISR: 1
KAFKA_JMX_PORT: 9999
KAFKA_JMX_HOSTNAME: kafka1
KAFKA_AUTHORIZER_CLASS_NAME: kafka.security.authorizer.AclAuthorizer
KAFKA_ALLOW_EVERYONE_IF_NO_ACL_FOUND: "true"
KAFKA_CONFLUENT_SUPPORT_METRICS_ENABLE: "false"
restart: on-failure
depends_on:
- zoo1
networks:
proto:
driver: bridge
volumes:
setup:
postgres: