From 3e3229424d80d4ce1c39c7bd96d3606c079f1384 Mon Sep 17 00:00:00 2001
From: jurgenhaas <juergen@paragon-es.de>
Date: Thu, 23 Aug 2018 13:38:49 +0200
Subject: [PATCH] New search for fail2ban

---
 templates/search/fail2ban.json | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 templates/search/fail2ban.json

diff --git a/templates/search/fail2ban.json b/templates/search/fail2ban.json
new file mode 100644
index 0000000..20a09d5
--- /dev/null
+++ b/templates/search/fail2ban.json
@@ -0,0 +1,24 @@
+[
+  {
+    "_id": "AWQXaZDb1YtX6NLwwZni",
+    "_type": "search",
+    "_source": {
+      "title": "Fail2Ban",
+      "description": "",
+      "hits": 0,
+      "columns": [
+        "hostname",
+        "jail",
+        "message"
+      ],
+      "sort": [
+        "@timestamp",
+        "desc"
+      ],
+      "version": 1,
+      "kibanaSavedObjectMeta": {
+        "searchSourceJSON": "{\"index\":\"b18bfdf0-a454-11e8-98f1-cb314a827cb6\",\"query\":{\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true,\"default_field\":\"*\"}},\"language\":\"lucene\"},\"filter\":[{\"meta\":{\"negate\":false,\"index\":\"logstash-*\",\"type\":\"phrase\",\"key\":\"@log_name\",\"value\":\"fail2ban.var.log.fail2ban.log\",\"disabled\":false,\"alias\":null,\"params\":{\"query\":\"fail2ban.var.log.fail2ban.log\",\"type\":\"phrase\"}},\"query\":{\"match\":{\"@log_name\":{\"query\":\"fail2ban.var.log.fail2ban.log\",\"type\":\"phrase\"}}},\"$state\":{\"store\":\"appState\"}}],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"highlightAll\":true,\"version\":true}"
+      }
+    }
+  }
+]
-- 
GitLab