add wazuh-eks deployment

wazuh-eks/certs/indexer_cluster/generate_certs.sh

@@ -82,4 +82,4 @@ openssl req -days 3650 -new -key filebeat-key.pem -out filebeat.csr -subj "/C=US
 
 echo "create: filebeat.pem"
 
-openssl x509 -req -days 3650 -in filebeat.csr -CA root-ca.pem -CAkey root-ca-key.pem -CAcreateserial -sha256 -out filebeat.pem
+openssl x509 -req -days 3650 -in filebeat.csr -CA root-ca.pem -CAkey root-ca-key.pem -CAcreateserial -sha256 -out filebeat.pem

wazuh-eks/indexer_stack/wazuh-dashboard/dashboard-deploy.yaml

@@ -17,10 +17,12 @@ spec:
   selector:
     matchLabels:
       app: wazuh-dashboard
+      lbtype: external
   template:
     metadata:
       labels:
         app: wazuh-dashboard
+        lbtype: external
       name: wazuh-dashboard
     spec:
       volumes:
@@ -56,10 +58,10 @@ spec:
               readOnly: true
           ports:
             - containerPort: 5601
-              name: dashboard
+              name: dashboard-port
           env:
             - name: INDEXER_URL
-              value: 'https://wazuh-indexer-0.wazuh-indexer:9200'
+              value: 'https://wazuh-internal-lb:9200'
             - name: INDEXER_USERNAME
               valueFrom:
                 secretKeyRef:
@@ -87,7 +89,7 @@ spec:
             - name: SERVER_SSL_KEY
               value: /usr/share/wazuh-dashboard/certs/key.pem
             - name: WAZUH_API_URL
-              value: https://wazuh-manager-master-0.wazuh-cluster
+              value: https://wazuh-external-lb
             - name: API_USERNAME
               valueFrom:
                 secretKeyRef:

wazuh-eks/indexer_stack/wazuh-dashboard/dashboard_conf/opensearch_dashboards.yml

@@ -10,4 +10,4 @@ server.ssl.enabled: true
 server.ssl.key: "/usr/share/wazuh-dashboard/certs/key.pem"
 server.ssl.certificate: "/usr/share/wazuh-dashboard/certs/cert.pem"
 opensearch.ssl.certificateAuthorities: ["/usr/share/wazuh-dashboard/certs/root-ca.pem"]
-uiSettings.overrides.defaultRoute: /app/wz-home
+uiSettings.overrides.defaultRoute: /app/wz-home

wazuh-eks/indexer_stack/wazuh-indexer/cluster/indexer-sts.yaml

@@ -17,11 +17,13 @@ spec:
   selector:
     matchLabels:
       app: wazuh-indexer
+      lbtype: internal
   serviceName: wazuh-indexer
   template:
     metadata:
       labels:
         app: wazuh-indexer
+        lbtype: internal
       name: wazuh-indexer
     spec:
       # Set the wazuh-indexer volume permissions so the wazuh-indexer user can use it
@@ -76,7 +78,7 @@ spec:
                 fieldRef:
                   fieldPath: metadata.name
             - name: DISCOVERY_SERVICE
-              value: wazuh-indexer
+              value: wazuh-internal-lb
             - name: KUBERNETES_NAMESPACE
               valueFrom:
                 fieldRef:

wazuh-eks/wazuh_managers/wazuh-master-sts.yaml

@@ -18,6 +18,7 @@ spec:
     matchLabels:
       app: wazuh-manager
       node-type: master
+      lbtype: external
   serviceName: wazuh-cluster
   podManagementPolicy: Parallel
   template:
@@ -25,6 +26,7 @@ spec:
       labels:
         app: wazuh-manager
         node-type: master
+        lbtype: external
       name: wazuh-manager-master
     spec:
       volumes:
@@ -107,12 +109,12 @@ spec:
             - containerPort: 1515
               name: registration
             - containerPort: 1516
-              name: cluster
+              name: cluster-port
             - containerPort: 55000
-              name: api
+              name: api-port
           env:
             - name: INDEXER_URL
-              value: 'https://wazuh-indexer-0.wazuh-indexer:9200'
+              value: 'https://wazuh-internal-lb:9200'
             - name: INDEXER_USERNAME
               valueFrom:
                 secretKeyRef:

wazuh-eks/wazuh_managers/wazuh-worker-sts.yaml

@@ -18,6 +18,7 @@ spec:
     matchLabels:
       app: wazuh-manager
       node-type: worker
+      lbtype: external
   serviceName: wazuh-cluster
   podManagementPolicy: Parallel
   template:
@@ -25,6 +26,7 @@ spec:
       labels:
         app: wazuh-manager
         node-type: worker
+        lbtype: external
       name: wazuh-manager-worker
     spec:
       affinity:
@@ -106,10 +108,10 @@ spec:
             - containerPort: 1514
               name: agents-events
             - containerPort: 1516
-              name: cluster
+              name: cluster-port
           env:
             - name: INDEXER_URL
-              value: 'https://wazuh-indexer-0.wazuh-indexer:9200'
+              value: 'https://wazuh-internal-lb:9200'
             - name: INDEXER_USERNAME
               valueFrom:
                 secretKeyRef:

wazuh-eks/wazuh_managers/wazuh_conf/master.conf

@@ -112,7 +112,7 @@
   <indexer>
     <enabled>yes</enabled>
     <hosts>
-      <host>https://wazuh-indexer-0.wazuh-indexer:9200</host>
+      <host>https://wazuh-internal-lb:9200</host>
     </hosts>
     <username>admin</username>
     <password>VDPass</password>

wazuh-eks/wazuh_managers/wazuh_conf/worker.conf

@@ -112,7 +112,7 @@
   <indexer>
     <enabled>yes</enabled>
     <hosts>
-      <host>https://wazuh-indexer-0.wazuh-indexer:9200</host>
+      <host>https://wazuh-internal-lb:9200</host>
     </hosts>
     <username>admin</username>
     <password>VDPass</password>

wazuh/certs/indexer_cluster/root-ca.srl

@@ -0,0 +1 @@
+1023702284AF366AD5338FA7FA775C3F488F315A