-
Notifications
You must be signed in to change notification settings - Fork 17
/
Copy pathdocker-compose.example.yml
41 lines (32 loc) · 1.12 KB
/
docker-compose.example.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
version: '3.2'
services:
zeek:
image: activecm/zeek
build: .
cap_add:
- net_raw
- net_admin
network_mode: host
volumes:
- type: bind
source: /etc/localtime
target: /etc/localtime
read_only: true
- type: bind
source: ${LOGS:-./logs} # Edit this to the path you want zeek logs to be written
target: /usr/local/zeek/logs
- type: bind
source: ${NODCFG:-./etc/node.sample.cfg}
target: /usr/local/zeek/etc/node.cfg
# Uncomment this block if you want to customize the zeek scripts loaded
#- type: bind
# source: ./share/zeek/site/local.zeek
# target: /usr/local/zeek/share/zeek/site/local.zeek
# Uncomment this block if you want to customize your internal network ranges
#- type: bind
# source: ./etc/networks.cfg # Edit this file with your custom networks
# target: /usr/local/zeek/etc/networks.cfg
# Uncomment this block if you want to customize zeekctl settings (unlikely)
#- type: bind
# source: ./etc/zeekctl.cfg
# target: /usr/local/zeek/etc/zeekctl.cfg