From be5dd79a195a8c24402aca76613de2e8153d919d Mon Sep 17 00:00:00 2001
From: Andrew <a@3ilson.com>
Date: Sun, 29 Sep 2019 15:39:51 -0400
Subject: [PATCH] Update 12-suricata.conf

---
 conf.d/12-suricata.conf | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/conf.d/12-suricata.conf b/conf.d/12-suricata.conf
index a43f77c..a191cf0 100644
--- a/conf.d/12-suricata.conf
+++ b/conf.d/12-suricata.conf
@@ -46,12 +46,12 @@ filter {
         geoip {
           add_tag => [ "GeoIP" ]
           source => "[source][ip]"
-          database => "/etc/logstash/GeoLite2-City.mmdb"
+          database => "/usr/share/GeoIP/GeoLite2-City.mmdb"
           target => "[source][geo]"
         }
         geoip {
           default_database_type => 'ASN'
-          database => "/etc/logstash/GeoLite2-ASN.mmdb"
+          database => "/usr/share/GeoIP/GeoLite2-ASN.mmdb"
           #cache_size => 5000
           source => "[source][ip]"
           target => "[source][as]"
@@ -73,12 +73,12 @@ filter {
         geoip {
           add_tag => [ "GeoIP" ]
           source => "[destination][ip]"
-          database => "/etc/logstash/GeoLite2-City.mmdb"
+          database => "/usr/share/GeoIP/GeoLite2-City.mmdb"
           target => "[destination][geo]"
         }
         geoip {
           default_database_type => 'ASN'
-          database => "/etc/logstash/GeoLite2-ASN.mmdb"
+          database => "/usr/share/GeoIP/GeoLite2-ASN.mmdb"
           #cache_size => 5000
           source => "[destination][ip]"
           target => "[destination][as]"
-- 
GitLab