mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149
							{
  "mappings": {
    "_meta": {
      "version": "5.5.3"
    },
    "date_detection": false,
    "dynamic_templates": [
      {
        "strings_as_keyword": {
          "mapping": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "match_mapping_type": "string"
        }
      }
    ],
    "properties": {
      "@timestamp": {
        "type": "date"
      },
      "meta": {
        "properties": {
          "cloud": {
            "properties": {
              "availability_zone": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "instance_id": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "machine_type": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "project_id": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "provider": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "region": {
                "ignore_above": 1024,
                "type": "keyword"
              }
            }
          }
        }
      },
      "rspamd_meta": {
        "properties": {
          "action": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "direction": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "asn": {
            "properties": {
              "asn": {
                "type": "long"
              },
              "country_code": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "ipnet": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "registrant": {
                "ignore_above": 1024,
                "type": "keyword"
              }
            }
          },
          "from": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "is_local": {
            "type": "boolean"
          },
          "webmail": {
            "type": "boolean"
          },
          "sender_ip": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "geoip": {
            "properties": {
              "city_name": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "continent_name": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "country_iso_code": {
                "ignore_above": 1024,
                "type": "keyword"
              },
              "location": {
                "type": "geo_point"
              }
            }
          },
          "ip": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "qid": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "hostname": {
            "ignore_above": 1024,
            "type": "keyword"
          },
          "score": {
            "type": "float"
          },
          "user": {
            "ignore_above": 1024,
            "type": "keyword"
          }
        }
      },
      "tags": {
        "ignore_above": 1024,
        "type": "keyword"
      }
    }
  },
  "order": 0,
  "settings": {
    "index.mapping.total_fields.limit": 10000,
    "index.refresh_interval": "5s"
  },
  "index_patterns" : ["rspamd-*", "*-rspamd-*"]
}