2018-06-19 11:32:16 +08:00
|
|
|
[SYSTEM]
|
|
|
|
|
#1:print on screen, 0:don't
|
|
|
|
|
DEBUG_SWITCH = 1
|
2020-09-27 18:38:49 +08:00
|
|
|
RUN_LOG_PATH = "conf/zlog.conf"
|
|
|
|
|
|
|
|
|
|
[breakpad]
|
|
|
|
|
disable_coredump=0
|
|
|
|
|
enable_breakpad=1
|
|
|
|
|
breakpad_minidump_dir=/tmp/certstore/crashreport
|
|
|
|
|
enable_breakpad_upload=0
|
|
|
|
|
breakpad_upload_url=http://127.0.0.1/
|
2020-04-14 17:01:08 +08:00
|
|
|
|
2018-06-19 11:32:16 +08:00
|
|
|
[CONFIG]
|
2018-11-13 17:03:20 +08:00
|
|
|
#Number of running threads
|
2018-09-06 19:51:23 +08:00
|
|
|
thread-nu = 4
|
2019-08-21 14:03:53 +08:00
|
|
|
#1 rsync, 0 sync
|
2019-11-05 11:38:40 +08:00
|
|
|
mode=1
|
2018-11-13 17:03:20 +08:00
|
|
|
#Local default root certificate is valid for 30 days by default
|
2018-09-10 10:01:27 +08:00
|
|
|
expire_after = 30
|
2018-11-13 17:03:20 +08:00
|
|
|
#Local default root certificate path
|
2019-05-24 15:09:34 +08:00
|
|
|
local_debug = 0
|
2022-02-17 10:34:30 +08:00
|
|
|
ca_path = ./cert/tsg-ca-v3-trust-ca.pem
|
|
|
|
|
untrusted_ca_path = ./cert/tsg-ca-v3-untrust-ca.pem
|
2020-09-11 14:29:29 +08:00
|
|
|
|
2020-04-14 17:01:08 +08:00
|
|
|
[MAAT]
|
2018-11-13 17:03:20 +08:00
|
|
|
#Configure the load mode,
|
|
|
|
|
#0: using the configuration distribution network
|
|
|
|
|
#1: using local json
|
|
|
|
|
#2: using Redis reads
|
2018-10-22 11:15:57 +08:00
|
|
|
maat_json_switch=2
|
2018-11-13 17:03:20 +08:00
|
|
|
#When the loading mode is sent to the network, set the scanning configuration modification interval (s).
|
2018-10-22 11:15:57 +08:00
|
|
|
effective_interval=1
|
2018-11-13 17:03:20 +08:00
|
|
|
#Specify the location of the configuration library table file
|
2019-06-18 20:45:00 +08:00
|
|
|
table_info=./conf/table_info.conf
|
2018-11-13 17:03:20 +08:00
|
|
|
#Incremental profile path
|
2019-06-18 20:45:00 +08:00
|
|
|
inc_cfg_dir=./rule/inc/index
|
2018-11-13 17:03:20 +08:00
|
|
|
#Full profile path
|
2019-06-18 20:45:00 +08:00
|
|
|
full_cfg_dir=./rule/full/index
|
2018-11-13 17:03:20 +08:00
|
|
|
#Json file path when json schema is used
|
2019-06-18 20:45:00 +08:00
|
|
|
pxy_obj_keyring=./conf/pxy_obj_keyring.json
|
2020-09-11 14:29:29 +08:00
|
|
|
|
2018-06-19 11:32:16 +08:00
|
|
|
[LIBEVENT]
|
2018-11-13 17:03:20 +08:00
|
|
|
#Local monitor port number, default is 9991
|
2018-09-06 19:51:23 +08:00
|
|
|
port = 9991
|
2020-09-11 14:29:29 +08:00
|
|
|
|
2018-10-22 11:15:57 +08:00
|
|
|
[CERTSTORE_REDIS]
|
2018-11-13 17:03:20 +08:00
|
|
|
#The Redis server IP address and port number where the certificate is stored locally
|
2018-06-19 11:32:16 +08:00
|
|
|
ip = 127.0.0.1
|
|
|
|
|
port = 6379
|
2020-09-11 14:29:29 +08:00
|
|
|
|
2018-10-22 11:15:57 +08:00
|
|
|
[MAAT_REDIS]
|
2018-11-13 17:03:20 +08:00
|
|
|
#Maat monitors the Redsi server IP address and port number
|
2018-10-22 11:15:57 +08:00
|
|
|
ip = 192.168.11.243
|
|
|
|
|
port = 6379
|
|
|
|
|
dbindex = 4
|
2020-09-11 14:29:29 +08:00
|
|
|
|
2020-04-14 17:01:08 +08:00
|
|
|
[stat]
|
|
|
|
|
statsd_server=192.168.10.72
|
|
|
|
|
statsd_port=8126
|
2020-11-14 13:22:26 +08:00
|
|
|
statsd_set_prometheus_port=9001
|
|
|
|
|
statsd_set_prometheus_url_path=/certstore_prometheus
|
2018-06-19 11:32:16 +08:00
|
|
|
|
