-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathdocker-compose.yml
111 lines (103 loc) · 2.81 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
version: '3.2'
services:
elasticsearch:
build:
context: elasticsearch/
args:
ELK_VERSION: $ELK_VERSION
volumes:
- type: bind
source: ./elasticsearch/config/elasticsearch.yml
target: /usr/share/elasticsearch/config/elasticsearch.yml
read_only: true
- type: volume
source: elasticsearch
target: /usr/share/elasticsearch/data
ports:
- "9200:9200"
- "9300:9300"
environment:
ES_JAVA_OPTS: "-Xmx256m -Xms256m"
# Use single node discovery in order to disable production mode and avoid bootstrap checks
# see https://www.elastic.co/guide/en/elasticsearch/reference/current/bootstrap-checks.html
discovery.type: single-node
networks:
- elk
# logstash:
# build:
# context: logstash/
# args:
# ELK_VERSION: $ELK_VERSION
# volumes:
# - type: bind
# source: ./logstash/config/logstash.yml
# target: /usr/share/logstash/config/logstash.yml
# read_only: true
# - type: bind
# source: ./logstash/pipeline
# target: /usr/share/logstash/pipeline
# read_only: true
# ports:
# - "5000:5000"
# - "9600:9600"
# environment:
# LS_JAVA_OPTS: "-Xmx256m -Xms256m"
# networks:
# - elk
# depends_on:
# - elasticsearch
kibana:
build:
context: kibana/
args:
ELK_VERSION: $ELK_VERSION
volumes:
- type: bind
source: ./kibana/config/kibana.yml
target: /usr/share/kibana/config/kibana.yml
read_only: true
ports:
- "5601:5601"
networks:
- elk
depends_on:
- elasticsearch
dvwa:
build:
context: dvwa/
dockerfile: Dockerfile
networks:
- elk
volumes:
- ./dvwa/packetbeat.yml:/etc/packetbeat/packetbeat.yml
- ./dvwa/filebeat.yml:/etc/filebeat/filebeat.yml
- ./dvwa/metricbeat.yml:/etc/metricbeat/metricbeat.yml
- ./dvwa/heartbeat.yml:/etc/heartbeat/heartbeat.yml
- ./dvwa/start_service.sh:/var/www/html/start_service.sh
- ./dvwa/suricata.yaml:/etc/suricata/suricata.yaml
- ./dvwa/sql.rules:/usr/share/suricata/rules/sql.rules
ports:
- "80:80"
links:
- dvwamysql:dvwamysql
dvwamysql:
build:
context: dvwamysql/
dockerfile: Dockerfile
restart: on-failure:5
environment:
- MYSQL_ROOT_PASSWORD=Passw0rd!
networks:
- elk
volumes:
- ./database:/var/lib/mysql
- ./dvwamysql/filebeat.yml:/etc/filebeat/filebeat.yml
- ./dvwamysql/metricbeat.yml:/etc/metricbeat/metricbeat.yml
- ./dvwamysql/heartbeat.yml:/etc/heartbeat/heartbeat.yml
- ./dvwamysql/start_service.sh:/start_service.sh
- ./dvwamysql/my.cnf:/etc/mysql/my.cnf
networks:
elk:
driver: bridge
volumes:
elasticsearch: