diff --git a/packages/suricata/changelog.yml b/packages/suricata/changelog.yml index fdc9fc3afa4..ebea5865099 100644 --- a/packages/suricata/changelog.yml +++ b/packages/suricata/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.6.0" + changes: + - description: Add network.protocol support for krb5, smtp, snmp, and ikev2. + type: enhancement + link: https://github.com/elastic/integrations/pull/2772 - version: "1.5.0" changes: - description: Set destination.ip in events. @@ -52,7 +57,7 @@ - description: Convert to generated ECS fields type: enhancement link: https://github.com/elastic/integrations/pull/1507 -- version: '1.1.2' +- version: "1.1.2" changes: - description: update to ECS 1.11.0 type: enhancement diff --git a/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml b/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml index 45fcb200c31..90437613adf 100644 --- a/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml +++ b/packages/suricata/data_stream/eve/elasticsearch/ingest_pipeline/default.yml @@ -157,6 +157,14 @@ processors: - access - protocol network_protocol: http + ikev2: + type: + - protocol + network_protocol: ikev2 + krb5: + type: + - protocol + network_protocol: krb5 mqtt: type: - protocol @@ -165,6 +173,14 @@ processors: type: - protocol network_protocol: smb + smtp: + type: + - protocol + network_protocol: smtp + snmp: + type: + - protocol + network_protocol: snmp ssh: type: - protocol diff --git a/packages/suricata/manifest.yml b/packages/suricata/manifest.yml index a9e79f09a74..2eeb483790a 100644 --- a/packages/suricata/manifest.yml +++ b/packages/suricata/manifest.yml @@ -1,6 +1,6 @@ name: suricata title: Suricata Events -version: 1.5.0 +version: 1.6.0 release: ga description: Collect and parse event logs from Suricata instances with Elastic Agent. type: integration