d4e7e674d8
- 4-container stack: ClickHouse, platform (Rocky 9), bot-detector, dashboard - Platform builds sentinel on Rocky (CGO+libpcap native), correlator static - mod-reqin-log compiled with apxs on Rocky (matching RPM build target) - ClickHouse init script patches credentials for test env (sed-based) - 8-phase test runner: schema, traffic gen, pipeline, dashboard API, bot-detector, sentinel - All 13 checks pass, 3 non-blocking warnings (empty dicts, log paths) SQL schema fixes discovered during integration: - 02_dictionaries: IPv6CIDR → String (not a valid ClickHouse type) - 03_anubis_tables: dict_anubis_ua missing has_ip/rule_id/category attrs - 03_anubis_tables: dict_anubis_country FLAT() → COMPLEX_KEY_HASHED() (String key) - 09_audit_table: CODEC before DEFAULT → DEFAULT before CODEC Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
19 lines
337 B
YAML
19 lines
337 B
YAML
# Sentinel config for integration tests
|
|
core:
|
|
interface: eth0
|
|
listen_ports:
|
|
- 443
|
|
flow_timeout_sec: 30
|
|
packet_buffer_size: 1000
|
|
log_level: debug
|
|
|
|
outputs:
|
|
- type: unix_socket
|
|
enabled: true
|
|
async_buffer: 5000
|
|
params:
|
|
socket_path: /var/run/logcorrelator/network.socket
|
|
|
|
- type: stdout
|
|
enabled: true
|