KevSex/firepower.json

## firepower.json
{
  "index_patterns": "logstash-firepower-*",
  "settings": {
      "index" : {
        "mapping" : {
          "total_fields" : {
            "limit" : "10000"
          }
        },
        "refresh_interval" : "5s",
        "number_of_routing_shards" : "30",
        "number_of_shards" : "3",
        "codec": "best_compression"
      }
  },
  "mappings": {
    "doc": {
      "properties": {
	    "@version": { "type": "keyword" },
	    "DstIP": { "type": "ip" },
	    "DstPort": { "type": "integer" },
	    "SrcIP": { "type": "ip" },
	    "SrcPort": { "type": "integer" },
	    "@timestamp" : { "type" : "date" },
	    "URL": { "type" : "keyword" },
	    "AccessControlRuleAction": { "type" : "keyword" },
	    "AccessControlRuleName": { "type" : "keyword" },
	    "AccessControlRuleReason": { "type" : "keyword" },
	    "ApplicationProtocol": { "type" : "keyword" },
	    "Client": { "type" : "keyword" },
	    "ClientVersion": { "type" : "keyword" },
	    "ConnectType": { "type" : "keyword" },
	    "DE": { "type" : "keyword" },
	    "DNSResponseType": { "type" : "keyword" },
	    "EgressInterface": { "type" : "keyword" },
	    "FileCount": { "type" : "long" },
	    "host": { "type" : "keyword" },
	    "hostname": { "type" : "keyword" },
	    "HTTPReferer": { "type" : "keyword" },
	    "HTTPResponse": { "type" : "keyword" },
	    "IPReputationSICategory": { "type" : "keyword" },
	    "IPSCount": { "type" : "keyword" },
	    "IngressInterface": { "type" : "keyword" },
	    "InitiatorBytes": { "type" : "long" },
	    "InitiatorPackets": { "type" : "long" },
	    "path": { "type" : "keyword" },
	    "NAPPolicy": { "type" : "keyword" },
	    "OriginalClientIP": { "type" : "keyword" },
	    "Policy": { "type" : "keyword" },
	    "Prefilter Policy": { "type" : "keyword" },
	    "Protocol": { "type" : "keyword" },
	    "ReferencedHost": { "type" : "keyword" },
	    "ResponderBytes": { "type" : "long" },
	    "ResponderPackets": { "type" : "long" },
	    "SecIntMatchingIP": { "type" : "keyword" },
	    "Sinkhole": { "type" : "keyword" },
	    "TCPFlags": { "type" : "keyword" },
	    "syslog_facility": { "type" : "keyword" },
	    "syslog_severity": { "type" : "keyword" },
	    "tags": { "type" : "keyword" },
	    "URLCategory": { "type" : "keyword" },
	    "URLReputation": { "type" : "keyword" },
	    "UserAgent": { "type" : "keyword" },
	    "UserName": { "type" : "keyword" },
	    "WebApplication": { "type" : "keyword" }
      }
    }
  }
}
	{
	"index_patterns": "logstash-firepower-*",
	"settings": {
	"index" : {
	"mapping" : {
	"total_fields" : {
	"limit" : "10000"
	}
	},
	"refresh_interval" : "5s",
	"number_of_routing_shards" : "30",
	"number_of_shards" : "3",
	"codec": "best_compression"
	}
	},
	"mappings": {
	"doc": {
	"properties": {
	"@version": { "type": "keyword" },
	"DstIP": { "type": "ip" },
	"DstPort": { "type": "integer" },
	"SrcIP": { "type": "ip" },
	"SrcPort": { "type": "integer" },
	"@timestamp" : { "type" : "date" },
	"URL": { "type" : "keyword" },
	"AccessControlRuleAction": { "type" : "keyword" },
	"AccessControlRuleName": { "type" : "keyword" },
	"AccessControlRuleReason": { "type" : "keyword" },
	"ApplicationProtocol": { "type" : "keyword" },
	"Client": { "type" : "keyword" },
	"ClientVersion": { "type" : "keyword" },
	"ConnectType": { "type" : "keyword" },
	"DE": { "type" : "keyword" },
	"DNSResponseType": { "type" : "keyword" },
	"EgressInterface": { "type" : "keyword" },
	"FileCount": { "type" : "long" },
	"host": { "type" : "keyword" },
	"hostname": { "type" : "keyword" },
	"HTTPReferer": { "type" : "keyword" },
	"HTTPResponse": { "type" : "keyword" },
	"IPReputationSICategory": { "type" : "keyword" },
	"IPSCount": { "type" : "keyword" },
	"IngressInterface": { "type" : "keyword" },
	"InitiatorBytes": { "type" : "long" },
	"InitiatorPackets": { "type" : "long" },
	"path": { "type" : "keyword" },
	"NAPPolicy": { "type" : "keyword" },
	"OriginalClientIP": { "type" : "keyword" },
	"Policy": { "type" : "keyword" },
	"Prefilter Policy": { "type" : "keyword" },
	"Protocol": { "type" : "keyword" },
	"ReferencedHost": { "type" : "keyword" },
	"ResponderBytes": { "type" : "long" },
	"ResponderPackets": { "type" : "long" },
	"SecIntMatchingIP": { "type" : "keyword" },
	"Sinkhole": { "type" : "keyword" },
	"TCPFlags": { "type" : "keyword" },
	"syslog_facility": { "type" : "keyword" },
	"syslog_severity": { "type" : "keyword" },
	"tags": { "type" : "keyword" },
	"URLCategory": { "type" : "keyword" },
	"URLReputation": { "type" : "keyword" },
	"UserAgent": { "type" : "keyword" },
	"UserName": { "type" : "keyword" },
	"WebApplication": { "type" : "keyword" }
	}
	}
	}
	}