Allow rule exclusions #44

ansible-wazuh-manager/defaults/main.yml

@@ -167,6 +167,8 @@ wazuh_manager_config:
       executable: 'route-null.cmd'
       expect: 'srcip'
       timeout_allowed: 'yes'
+  rule_exclude:
+    - '0215-policy_rules.xml'
   active_responses:
     - command: 'restart-ossec'
       location: 'local'

ansible-wazuh-manager/templates/var-ossec-etc-ossec-server.conf.j2

@@ -307,7 +307,11 @@
     <!-- Default ruleset -->
     <decoder_dir>ruleset/decoders</decoder_dir>
     <rule_dir>ruleset/rules</rule_dir>
-    <rule_exclude>0215-policy_rules.xml</rule_exclude>
+    {% if wazuh_manager_config.rule_exclude is defined %}
+    {% for rule in wazuh_manager_config.rule_exclude %}
+    <rule_exclude>{{ rule }}</rule_exclude>
+    {% endfor %}
+    {% endif %}
     {% if cdb_lists is defined %}
     {% for list in cdb_lists %}
     <list>etc/lists/{{ list.name }}</list>