Lumu Virtual Appliance - General Configuration

Configure Virtual Appliance

Once the Virtual Appliance (VA) has been added to the Lumu Portal and imported into a hypervisor it is time to configure the Lumu VA to collect network metadata to illuminate threats, attacks, and adversaries coming from your network.

If you are interested in getting started with Lumu VA, access our Lumu Virtual Appliance documentation.

Activate the Virtual Appliance

After starting the virtual machine on your hypervisor, it will perform status checks and prompt if it needs to be activated/initialized.

IMPORTANT INFORMATION : he Virtual Appliance has a default set of credentials, which will allow you to perform all administrative tasks and run privileged operations using sudo .
Username: applianceadmin
Password: applianceadmin
For security reasons, we recommend changing this default password.

After logging into the Lumu VA for the first time, you will be prompted to enter the activation code you received when you created your Virtual Appliance on the Lumu portal:

Lumu VA activation screenFigure 1 - Lumu VA activation screen
If you lose the activation code, you have the option to revoke the virtual appliance to obtain a new activation code.

Once you enter the appliance’s activation code, it will start downloading the latest version of the Virtual Appliance software and perform some pre-configuration tasks.

The appliance activation can be done at any time using the command: lumu-appliance init <activation code>

Manage Network Configuration

During its initialization, the appliance will display a network IP configuration screen. This screen will automatically detect the current IP configuration obtained via DHCP (if available).

You can change the network configuration any time using the command lumu-appliance set network.

Fill in the IP configuration using the TAB key to move between fields, and then hit ENTER to apply it. Once applied to the network configuration, you will receive confirmation and a prompt to start the appliance.

Lumu VA network configurationFigure 2 - Lumu VA network configuration

The appliance will prompt if you want to configure a proxy. You can add or change this configuration later using the command lumu-appliance set proxy.

Lumu VA proxy configurationFigure 3 - Lumu VA proxy configuration

In the next step, select the security configuration you want to set for your Appliance. If your environment requires advanced security configuration such as DNSSEC, TLS, or filtering local addresses, select the option “Additional secure configurations”. Otherwise, select “Basic ”.

Lumu VA network security configurationFigure 4 - Lumu VA network security configuration
You can change the network security configuration any time using the command lumu-appliance set  resolver security.
Once the configuration is applied, the appliance will download its components, and you will receive confirmation and a prompt to start the appliance. You can access it using SSH (Secure Shell) to perform any administrative task.

Manage DNS Forward Mapping

Lumu VA offers default DNS Settings. You can manage these settings using the command lva-forward-zones (this is a short version for the command lumu-appliance set resolver forward-zones). By default, the primary and secondary DNS Server fields are already populated with public DNS Servers, which is adequate for most small networks. However, if you have local primary and secondary DNS servers, you should specify your DNS servers accordingly.

In the forward zones settings, you will have the option to specify if you plan to use TLS (Transport Layer Security). If you use TLS, you should set the DNS addresses in the following format: <ip_address>@<port>#<comment>

Lumu VA DNS settingsFigure 5 - Lumu VA DNS settings.
Set Lumu VA as DNS Server / VA collector

Once you have the appliance configured, the next step is to set your environment to use the Lumu VA as DNS Server and implement Collectors as needed. We have created the following guides:

  1. Point your DNS to Lumu in an on-premise architecture.
  2. Manage Collectors for integration with additional network metadata such as DNS packets, and Proxy Logs.
  3. Deploy Lumu Virtual Appliance on Cloud for guidance on DNS settings in Cloud environments.
Note that you should apply for DNS resolution, the IP address of the newly created VA instead of the Lumu default DNS addresses.

Command Quick Reference for VA

You can access and manage the Virtual Appliance settings using SSH (Secure Shell). Some commands will require privileges, in which case you will be prompted to enter the sudo credentials.

To obtain the list of available commands and their descriptions, use the following command:

lumu-appliance -h
Consult our FAQ for more details about VA commands.

        • Related Articles

        • Lumu Virtual Appliance

          The Lumu Virtual Appliance (VA) is a pre-configured lightweight virtual machine solution provided by Lumu Technologies to enable the collection of network metadata of your entire enterprise and forward it to the Lumu cloud with the lowest impact on ...
        • Virtual Appliance Collectors

          The Lumu Virtual Appliance (VA) offers the option to create VA collectors, a seamless way to integrate network metadata, as well as send your DNS logs through the VA instead of using the VA built-in DNS resolver. In this quick guide, we show you how ...
        • Configure VA Collectors

          Once the Virtual Appliance Collector has been added to the Lumu Portal, it is time to configure the VA Collector to send data to Lumu. If you are interested in getting started with Virtual Appliance Collector, access our documentation. Refresh the VA ...
        • Deploy on VMware Workstation

          The best way to implement Lumu in your network is to delegate DNS resolution tasks to the Lumu Virtual Appliance (VA). A Lumu Virtual Appliance (VA) is a virtualized machine that provides all the elements required to collect network metadata to ...
        • Deploy on VirtualBox

          The best way to implement Lumu in your network is to delegate DNS resolution tasks to the Lumu Virtual Appliance (VA). A Lumu Virtual Appliance (VA) is a virtualized machine that provides all the elements required to collect network metadata to ...