Create a gateway that defines and groups your enterprise’s IP addresses for Lumu’s continuous compromise assessment

Add a Public Gateway

With Lumu public gateways you can start associating all the traffic originating from your organization with Lumu’s DNS servers for illuminating threats, attacks, and adversaries coming from your network. If you want more context on Lumu deployment scenarios and Virtual Appliances for seamless log collection, consult our documentation.

Please ensure that any public IP address or group of IPs from which you want to send queries to our DNS are registered as a gateway for your company in the Lumu Portal. Lumu reserves the right to block queries coming from IP addresses not associated with accounts in our portal.

What is Public Gateway?

At Lumu, public gateways are how we define and group the network’s public IP addresses. IPs are the addresses your internet service provider (ISP) assigns to your computer, server, or router which are used to forward traffic to other networks or the internet.

A Gateway serves as an entry and exit point for all data on its way to or from the internet or other networks.
Examples of gatewaysFigure 1 - Examples of gateways.

Adding a Public Gateway

To add a public gateway, simply login to the Lumu Portal and navigate to Settings > Gateway > Add a Gateway. A form will be displayed asking for the following information in order to create a new public gateway:

  1. Name : a meaningful description of the gateway.
  2. CIDR/IP : the public IP address of your gateway device (Figure 1) or the group of IPs/CIDRs according to your infrastructure. See how to identify your public IP address below.
  3. Label : assign a label for traffic classification and categorization, this will give you the power to sort the traffic by geography, network segments, device, domains, critical assets, or as needed.

Identify a Public IP Address

The easiest way to find a device’s public IP address is by selecting the option “My Public IP” when creating the gateway, this automatically captures the public IP of the device you are connected to. You can also go to one of the following websites to obtain the public IP address:

Adding gateways - Lumu PortalFigure 2 - Adding gateways.
You can also go to one of the following websites to obtain your public IP address:
  1. https://checkip.amazonaws.com/
  2. https://www.whatismyip.com/
You can create up to 10 gateways. If you require more options for metadata collectors, you can upgrade to Lumu Insights to set up unlimited Virtual Appliances and Collectors to have detailed visibility into your on-premise, cloud, and remote environments.

Multiple IPs in One Gateway

You have the option to create gateways for a group of IPs according to geography, network segments, device, domains, critical assets, departments, or any other way that makes sense for your business.

Defining a group of IPsFigure 3 - Defining a group of IPs.

Next Step - Point your DNS to Lumu

Now that you have created a public Gateway, it is time to point your DNS to Lumu to identify the level of compromise of your organization.

        • Related Articles

        • Point your DNS to Lumu

          To start taking advantage of Lumu — depending on your deployment scenario — need to configure your devices to point all DNS requests to Lumu's DNS revolvers’ IP or your Virtual Appliance’s IP addresses, substituting the automatic DNS servers provided ...
        • Validate your DNS Settings

          Now that you have already configured your DNS traffic to be routed through Lumu, check that your DNS connections are working as expected. Please note that this procedure is only valid when setting Lumu Gateways. When you make changes to DNS settings, ...
        • Apple macOS

          Setting up a Lumu Gateway on a macOS device is the configuration recommended for testing purposes as we recommend you configure your server or your router to take the most advantage of the Lumu Continuous Compromise Assessment on your entire network. ...
        • Linux Desktop

          Setting up Lumu Gateway on a Linux client device is the configuration recommended for testing purposes as we recommend you configure your server or your router to take the most advantage of Lumu Continuous Compromise Assessment on your entire ...
        • Windows Server

          In this guide, we will walk you through the DNS configuration process for a Windows Server. Setting up Lumu for Continuous Compromise Assessment on a server is the deployment recommended for enterprises with a DNS infrastructure where all the traffic ...