From 823d672d0e578766fa209373cbddbaa02aae12bc Mon Sep 17 00:00:00 2001
From: Brendan Smith <brendan.s.smith1@gmail.com>
Date: Mon, 14 Feb 2022 12:43:43 -0600
Subject: [PATCH] Fix log query

---
 OPNsense-Grafana-Dashboard-Suricata.json | 25 ++++++++++--------------
 1 file changed, 10 insertions(+), 15 deletions(-)

diff --git a/OPNsense-Grafana-Dashboard-Suricata.json b/OPNsense-Grafana-Dashboard-Suricata.json
index 0268968..6fd74d6 100644
--- a/OPNsense-Grafana-Dashboard-Suricata.json
+++ b/OPNsense-Grafana-Dashboard-Suricata.json
@@ -21,8 +21,8 @@
   "editable": true,
   "fiscalYearStartMonth": 0,
   "graphTooltip": 0,
-  "id": 20,
-  "iteration": 1644704072379,
+  "id": 23,
+  "iteration": 1644864155168,
   "links": [],
   "liveNow": false,
   "panels": [
@@ -50,8 +50,7 @@
             "mode": "absolute",
             "steps": [
               {
-                "color": "green",
-                "value": null
+                "color": "green"
               }
             ]
           }
@@ -105,8 +104,7 @@
             "mode": "absolute",
             "steps": [
               {
-                "color": "green",
-                "value": null
+                "color": "green"
               },
               {
                 "color": "red",
@@ -282,8 +280,7 @@
             "mode": "absolute",
             "steps": [
               {
-                "color": "green",
-                "value": null
+                "color": "green"
               },
               {
                 "color": "red",
@@ -340,8 +337,7 @@
             "mode": "absolute",
             "steps": [
               {
-                "color": "green",
-                "value": null
+                "color": "green"
               },
               {
                 "color": "red",
@@ -551,8 +547,7 @@
             "mode": "absolute",
             "steps": [
               {
-                "color": "green",
-                "value": null
+                "color": "green"
               }
             ]
           }
@@ -658,7 +653,7 @@
             "type": "influxdb",
             "uid": "${dataSource}"
           },
-          "query": "from(bucket: v.defaultBucket)\r\n  |> range(start: v.timeRangeStart, stop: v.timeRangeStop)\r\n  |> filter(fn: (r) => r[\"_measurement\"] == \"suricata\")\r\n  |> filter(fn: (r) => r[\"_field\"] == \"alert_signature\")\r\n  |> group()\r\n  |> tail(n: 100)",
+          "query": "from(bucket: v.defaultBucket)\r\n  |> range(start: v.timeRangeStart, stop: v.timeRangeStop)\r\n  |> filter(fn: (r) => r[\"_measurement\"] == \"suricata\")\r\n  |> filter(fn: (r) => r[\"_field\"] == \"alert_signature\")\r\n  |> group()\r\n  |> sort(columns: [\"_time\"], desc: true)\r\n  |> limit(n:100)",
           "refId": "A"
         }
       ],
@@ -751,13 +746,13 @@
     ]
   },
   "time": {
-    "from": "now-6h",
+    "from": "now-5m",
     "to": "now"
   },
   "timepicker": {},
   "timezone": "",
   "title": "OPNsense Suricata",
   "uid": "94raP_-7z",
-  "version": 11,
+  "version": 5,
   "weekStart": ""
 }