Lumu Virtual Appliance - General Configuration

Configure Virtual Appliances

Once the Virtual Appliance (VA) has been added to the Lumu Portal and imported into a hypervisor or cloud environment, it is time to configure the Lumu VA to collect network metadata to illuminate threats, attacks, and adversaries coming from your network.

Requirements

  1. The most recent version of the Lumu Virtual Appliance installed.
Remember that the detailed steps to create, download, and install a virtual appliance on your preferred hypervisor or cloud solutions are available in Deploy Virtual Appliances.

Activate the Virtual Appliance

When starting the virtual machine for the first time, it will perform status checks and prompt if it needs to be activated/initialized.

IMPORTANT INFORMATION : The Virtual Appliance has a default set of credentials, which will allow you to perform all administrative tasks and run privileged operations using sudo .
Username: applianceadmin
Password: applianceadmin
For security reasons, we recommend changing this default password.

After logging into the Lumu VA for the first time, you will be prompted to enter the activation code you received when you created your Virtual Appliance on the Lumu portal:



If you lose the activation code, you have the  option to revoke the virtual appliance to obtain a new activation code.

Once you enter the appliance’s activation code, it will start downloading the latest version of the Virtual Appliance software and perform some pre-configuration tasks.

The appliance activation can be done at any time using the command: lumu-appliance init <activation code>

Manage Network Configuration

During its initialization, the appliance will display a network IP configuration screen. This screen will automatically detect the current IP configuration obtained via DHCP (if available).

You can change the network configuration any time using the command  lumu-appliance set network.

Fill in the IP configuration using the TAB key to move between fields, and then hit ENTER in the <OK> option to apply it. Once applied to the network configuration, you will receive confirmation and a prompt to start the appliance.

Lumu VA network configuration Lumu VA network configuration
The appliance will prompt if you want to configure a proxy. You can add or change this configuration later using the command  lumu-appliance set proxy .
Lumu VA proxy configuration

In the next step, select the security configuration you want to set for your Appliance. If your environment requires advanced security configuration such as DNSSEC, TLS, or filtering local addresses, select the option “ Additional secure configurations ”. Otherwise, select “ Basic ”.

Lumu VA proxy configuration

You can change the network security configuration any time using the command lumu-appliance set resolver security .
Once the configuration is applied, the appliance will download its components, and you will receive confirmation and a prompt to start the appliance. You can access it using SSH (Secure Shell) to perform any administrative task.

Set Lumu VA as a Metadata Collector

A Virtual Appliance Collector works as a processing mechanism that provides the ability to gather network metadata quickly and straightforwardly.

This section applies only to customers adding VA collectors through the Virtual Appliance menu of the Lumu Portal. If you are setting up a Virtual Appliance for the first time while creating your account, a collector is automatically set up for you. This setting also does not apply when  setting up Lumu as the primary network DNS Resolver on Virtual Appliances.
Consult Virtual Appliance Collectors documentation for detailed guidance on adding and managing VA collectors.

Command Quick Reference for VA

You can access and manage the Virtual Appliance settings using SSH (Secure Shell). Some commands will require privileges, in which case you will be prompted to enter the sudo credentials.

To obtain the list of available commands and their descriptions, type:

lumu-appliance -h
Consult our FAQ for more details about VA commands.

        • Related Articles

        • Deploy Virtual Appliances

          To get started and review requirements for Lumu Virtual Appliances, consult our document Introduction to Virtual Appliances. Follow these simple steps to create and download a pre-configured Virtual Appliance and start illuminating threats and ...
        • Set Lumu as primary network DNS Resolver on Virtual Appliances

          The Lumu Virtual Appliance (VA) offers a seamless way to integrate the network metadata of your entire enterprise into the Lumu platform. You can easily deploy and set up a Lumu Virtual appliance to collect DNS network metadata through the Virtual ...
        • Lumu Virtual Appliance DNS Packets Collectors Catalog

          Before attempting this type of implementation, we strongly suggest checking out our Lumu Agent for Windows Server , which can act as a DNS server collector and covers the vast majority of the scenarios of this VA implementation (Windows Server 2016 ...
        • Lumu Virtual Appliance DNS Queries Collectors Catalog

          In the following table, you will find a complete list of DNS Queries Collectors available for deployment as part of Lumu's Virtual Appliances. Collector Logo Collect DNS Queries with Lumu VA and Infoblox Collect DNS Queries with Lumu VA and Citrix ...
        • Introduction to Lumu Virtual Appliances

          The Lumu Virtual Appliance (VA) is a pre-configured lightweight virtual machine solution that collects the network metadata of your entire enterprise and forwards it to the Lumu cloud with the lowest impact on the network operation. This document ...