wazuh-docker-compose

1. networks:
2.   proxy_net:
3.     driver: bridge
4.     external: true
5.  
6. services:
7.   wazuh.manager:
8.     image: wazuh/wazuh-manager:4.10.1
9.     container_name: wazuh-manager
10.     hostname: wazuh.manager
11.     restart: unless-stopped
12.     networks:
13.      - proxy_net
14.     ulimits:
15.       memlock:
16.         soft: -1
17.         hard: -1
18.       nofile:
19.         soft: 655360
20.         hard: 655360
21.     ports:
22.      - "1514:1514"
23.       - "1515:1515"
24.       - "514:514/udp"
25.       - "55000:55000"
26.     environment:
27.      - INDEXER_URL=https://wazuh.indexer:9200
28.       - INDEXER_USERNAME=admin
29.       - INDEXER_PASSWORD=SecretPassword
30.       - FILEBEAT_SSL_VERIFICATION_MODE=full
31.       - SSL_CERTIFICATE_AUTHORITIES=/etc/ssl/root-ca.pem
32.       - SSL_CERTIFICATE=/etc/ssl/filebeat.pem
33.       - SSL_KEY=/etc/ssl/filebeat.key
34.       - API_USERNAME=wazuh-wui
35.       - API_PASSWORD=MyS3cr37P450r.*-
36.     volumes:
37.      - wazuh_api_configuration:/var/ossec/api/configuration
38.       - wazuh_etc:/var/ossec/etc
39.       - wazuh_logs:/var/ossec/logs
40.       - wazuh_queue:/var/ossec/queue
41.       - wazuh_var_multigroups:/var/ossec/var/multigroups
42.       - wazuh_integrations:/var/ossec/integrations
43.       - wazuh_active_response:/var/ossec/active-response/bin
44.       - wazuh_agentless:/var/ossec/agentless
45.       - wazuh_wodles:/var/ossec/wodles
46.       - filebeat_etc:/etc/filebeat
47.       - filebeat_var:/var/lib/filebeat
48.       - ./config/wazuh_indexer_ssl_certs/root-ca-manager.pem:/etc/ssl/root-ca.pem
49.       - ./config/wazuh_indexer_ssl_certs/wazuh.manager.pem:/etc/ssl/filebeat.pem
50.       - ./config/wazuh_indexer_ssl_certs/wazuh.manager-key.pem:/etc/ssl/filebeat.key
51.       - ./config/wazuh_cluster/wazuh_manager.conf:/wazuh-config-mount/etc/ossec.conf
52.  
53.   wazuh.indexer:
54.     image: wazuh/wazuh-indexer:4.10.1
55.     container_name: wazuh-indexer
56.     hostname: wazuh.indexer
57.     restart: unless-stopped
58.     ports:
59.      - "9200:9200"
60.     environment:
61.      - "OPENSEARCH_JAVA_OPTS=-Xms1g -Xmx1g"
62.     networks:
63.      - proxy_net
64.     ulimits:
65.       memlock:
66.         soft: -1
67.         hard: -1
68.       nofile:
69.         soft: 65536
70.         hard: 65536
71.     volumes:
72.      - wazuh-indexer-data:/var/lib/wazuh-indexer
73.       - ./config/wazuh_indexer_ssl_certs/root-ca.pem:/usr/share/wazuh-indexer/certs/root-ca.pem
74.       - ./config/wazuh_indexer_ssl_certs/wazuh.indexer-key.pem:/usr/share/wazuh-indexer/certs/wazuh.indexer.key
75.       - ./config/wazuh_indexer_ssl_certs/wazuh.indexer.pem:/usr/share/wazuh-indexer/certs/wazuh.indexer.pem
76.       - ./config/wazuh_indexer_ssl_certs/admin.pem:/usr/share/wazuh-indexer/certs/admin.pem
77.       - ./config/wazuh_indexer_ssl_certs/admin-key.pem:/usr/share/wazuh-indexer/certs/admin-key.pem
78.       - ./config/wazuh_indexer/wazuh.indexer.yml:/usr/share/wazuh-indexer/opensearch.yml
79.       - ./config/wazuh_indexer/internal_users.yml:/usr/share/wazuh-indexer/opensearch-security/internal_users.yml
80.  
81.   wazuh.dashboard:
82.     image: wazuh/wazuh-dashboard:4.10.1
83.     container_name: wazuh-dashboard
84.     hostname: wazuh.dashboard
85.     restart: always
86.     environment:
87.      - INDEXER_USERNAME=admin
88.       - INDEXER_PASSWORD=SecretPassword
89.       - WAZUH_API_URL=https://wazuh.manager
90.       - DASHBOARD_USERNAME=kibanaserver
91.       - DASHBOARD_PASSWORD=kibanaserver
92.       - API_USERNAME=wazuh-wui
93.       - API_PASSWORD=MyS3cr37P450r.*-
94.     ports:
95.      - 4443:5601
96.     networks:
97.      - proxy_net
98.     volumes:
99.      - ./config/wazuh_indexer_ssl_certs/wazuh.dashboard.pem:/usr/share/wazuh-dashboard/certs/wazuh-dashboard.pem
100.       - ./config/wazuh_indexer_ssl_certs/wazuh.dashboard-key.pem:/usr/share/wazuh-dashboard/certs/wazuh-dashboard-key.pem
101.       - ./config/wazuh_indexer_ssl_certs/root-ca.pem:/usr/share/wazuh-dashboard/certs/root-ca.pem
102.       - ./config/wazuh_dashboard/opensearch_dashboards.yml:/usr/share/wazuh-dashboard/config/opensearch_dashboards.yml
103.       - ./config/wazuh_dashboard/wazuh.yml:/usr/share/wazuh-dashboard/data/wazuh/config/wazuh.yml
104.       - wazuh-dashboard-config:/usr/share/wazuh-dashboard/data/wazuh/config
105.       - wazuh-dashboard-custom:/usr/share/wazuh-dashboard/plugins/wazuh/public/assets/custom
106.     depends_on:
107.      - wazuh.indexer
108.     labels:
109.       traefik.enable: true
110.       traefik.http.routers.wazuh-https.entrypoints: websecure
111.       traefik.http.routers.wazuh-https.rule: Host(`$wazuhURL`)
112.       traefik.http.routers.wazuh-https.tls: true
113.       traefik.http.services.svc-wazuh.loadBalancer.server.port: 5601
114.       traefik.http.services.svc-wazuh.loadBalancer.server.scheme: https
115.  
116. volumes:
117.   wazuh_api_configuration:
118.   wazuh_etc:
119.   wazuh_logs:
120.   wazuh_queue:
121.   wazuh_var_multigroups:
122.   wazuh_integrations:
123.   wazuh_active_response:
124.   wazuh_agentless:
125.   wazuh_wodles:
126.   filebeat_etc:
127.   filebeat_var:
128.   wazuh-indexer-data:
129.   wazuh-dashboard-config:
130.  wazuh-dashboard-custom: