Set up your DNS to Lumu - Linux Server

Linux Server

Setting up Lumu for Continuous Compromise Assessment on a server is the deployment recommended for enterprises with DNS infrastructure where all traffic is directed to the internet through a server. If you want more context on Lumu Deployment scenarios, consult our documentation.

Remember to first register your public IP address or group of IPs as a gateway for your company at the Lumu Portal before configuring your DNS.

This guide will walk you through the DNS configuration process in a UNIX BIND-based DNS server.

Requirements

  1. A server running a Linux distribution.
Note: When creating this guide, we used Linux CentOS versions 7 and 8. The steps may vary on other distributions.

Set Up the DNS

On most Linux server distributions, the system’s DNS server information for name resolution is defined in the /etc/named.conf file. However, this directory and filename can vary depending on the Linux distribution.

1. We recommend creating a backup copy ( /etc/named.conf ) and then editing the original file.

2.  Edit the name servers file, adding the Lumu IP addresses or the IP addresses of the Virtual Appliance you created inside the “options” parameter of the  /etc/named.conf file. Example:
forwarders {
                50.17.0.10;
                3.87.85.24;
        };
        forward only; 
Setting Lumu IP addresses on a Linux server Figure 1 - Setting Lumu IP addresses on a Linux server.
Remember : the Lumu DNS resolvers IPv4 addresses are:
50.17.0.10
3.87.85.24

3. To ensure that your new settings are working after saving it, run the following command:

sudo named-checkconf

If there are no syntax errors in your configuration, the shell prompt will return immediately without displaying any output (blank). If any syntax errors are found, you will be alerted to the error and line number where it occurs. If this happens, go back and check your files for errors.

4. When you have verified that your configuration does not have any syntax errors, reload the BIND daemon to implement your changes. For CentOS, use the following command:

rndc reload

Validate your settings

The final step is to verify that your DNS connections are correctly routed through Lumu. See Validate your DNS Settings for more information.
        • Related Articles

        • Linux Desktop

          Setting up Lumu Gateway on a Linux client device is the configuration recommended for testing purposes as we recommend you configure your server or your router to take the most advantage of Lumu Continuous Compromise Assessment on your entire ...
        • Windows Server

          In this guide, we will walk you through the DNS configuration process for a Windows Server. Setting up Lumu for Continuous Compromise Assessment on a server is the deployment recommended for enterprises with a DNS infrastructure where all the traffic ...
        • Point your DNS to Lumu

          To start taking advantage of Lumu — depending on your deployment scenario — need to configure your devices to point all DNS requests to Lumu's DNS revolvers’ IP or your Virtual Appliance’s IP addresses, substituting the automatic DNS servers provided ...
        • Validate your DNS Settings

          Now that you have already configured your DNS traffic to be routed through Lumu, check that your DNS connections are working as expected. Please note that this procedure is only valid when setting Lumu Gateways. When you make changes to DNS settings, ...
        • Apple macOS

          Setting up a Lumu Gateway on a macOS device is the configuration recommended for testing purposes as we recommend you configure your server or your router to take the most advantage of the Lumu Continuous Compromise Assessment on your entire network. ...