Merge pull request #92 from wazuh/Issue-31_IPs

Add multiple IPs option

playbooks/wazuh-logstash.yml

@@ -1,3 +1,3 @@
 - hosts: <your logstash host>
   roles:
-    - { role: /etc/ansible/roles/wazuh-ansible/roles/elastic-stack/ansible-logstash, elasticsearch_network_host: 'localhost' }
+    - { role: /etc/ansible/roles/wazuh-ansible/roles/elastic-stack/ansible-logstash, elasticsearch_network_host: ["localhost"] }

roles/elastic-stack/ansible-logstash/defaults/main.yml

@@ -2,7 +2,10 @@
 logstash_create_config: true
 logstash_input_beats: false
 
-elasticsearch_network_host: "127.0.0.1"
+#You can introduce Multiples IPs
+# elasticseacrh_network_host: ["Localhost1", "Localhost2", "Localhost3", ...]
+elasticsearch_network_host: ["Localhost"]
+
 elasticsearch_http_port: "9200"
 elasticsearch_shards: 5
 elasticsearch_replicas: 1

roles/elastic-stack/ansible-logstash/templates/01-wazuh.conf.j2

@@ -66,7 +66,7 @@ filter {
 output {
     #stdout { codec => rubydebug }
     elasticsearch {
-        hosts => ["{{ elasticsearch_network_host }}:{{ elasticsearch_http_port }}"]
+        hosts => {{ elasticsearch_network_host | to_json}}
         index => "wazuh-alerts-3.x-%{+YYYY.MM.dd}"
         document_type => "wazuh"
     }