tpotce/bin/backup_es_folders.sh

#!/bin/bash
# Backup all ES relevant folders
# Make sure ES is available
myES="http://127.0.0.1:64298/"
myESSTATUS=$(curl -s -XGET ''$myES'_cluster/health' | jq '.' | grep -c green)
if ! [ "$myESSTATUS" = "1" ]
  then
    echo "### Elasticsearch is not available, try starting via 'systemctl start elk'."
    exit
  else
    echo "### Elasticsearch is available, now continuing."
    echo
fi

# Set vars
myCOUNT=1
myDATE=$(date +%Y%m%d%H%M)
myELKPATH="/data/elk/data"
myKIBANAINDEXNAME=$(curl -s -XGET ''$myES'_cat/indices/' | grep .kibana | awk '{ print $4 }')
myKIBANAINDEXPATH=$myELKPATH/nodes/0/indices/$myKIBANAINDEXNAME

# Let's ensure normal operation on exit or if interrupted ...
function fuCLEANUP {
  ### Start ELK
  systemctl start tpot
  echo "### Now starting T-Pot ..."
}
trap fuCLEANUP EXIT

# Stop T-Pot to lift db lock
echo "### Now stopping T-Pot"
systemctl stop tpot
sleep 2

# Backup DB in 2 flavors
echo "### Now backing up Elasticsearch folders ..."
tar cvfz "elkall_"$myDATE".tgz" $myELKPATH
tar cvfz "elkbase_"$myDATE".tgz" $myKIBANAINDEXPATH
update scripts to new file layout iso will not include tpot repo tpot repo will be cloned during install as all the other tools 2017-09-26 15:15:17 +00:00			`#!/bin/bash`
			`# Backup all ES relevant folders`
			`# Make sure ES is available`
			`myES="http://127.0.0.1:64298/"`
			`myESSTATUS=$(curl -s -XGET ''$myES'_cluster/health' \| jq '.' \| grep -c green)`
			`if ! [ "$myESSTATUS" = "1" ]`
			`then`
			`echo "### Elasticsearch is not available, try starting via 'systemctl start elk'."`
			`exit`
			`else`
			`echo "### Elasticsearch is available, now continuing."`
			`echo`
			`fi`

			`# Set vars`
			`myCOUNT=1`
			`myDATE=$(date +%Y%m%d%H%M)`
			`myELKPATH="/data/elk/data"`
			`myKIBANAINDEXNAME=$(curl -s -XGET ''$myES'_cat/indices/' \| grep .kibana \| awk '{ print $4 }')`
			`myKIBANAINDEXPATH=$myELKPATH/nodes/0/indices/$myKIBANAINDEXNAME`

			`# Let's ensure normal operation on exit or if interrupted ...`
			`function fuCLEANUP {`
			`### Start ELK`
			`systemctl start tpot`
			`echo "### Now starting T-Pot ..."`
			`}`
			`trap fuCLEANUP EXIT`

			`# Stop T-Pot to lift db lock`
			`echo "### Now stopping T-Pot"`
			`systemctl stop tpot`
			`sleep 2`

			`# Backup DB in 2 flavors`
			`echo "### Now backing up Elasticsearch folders ..."`
			`tar cvfz "elkall_"$myDATE".tgz" $myELKPATH`
			`tar cvfz "elkbase_"$myDATE".tgz" $myKIBANAINDEXPATH`