Setting up Lumu for Continuous Compromise Assessment on a server is the deployment recommended for enterprises with DNS infrastructure where all traffic is directed to the internet through a server. If you want more context on Lumu Deployment scenarios, consult our documentation.
This guide will walk you through the DNS configuration process in a UNIX BIND-based DNS server.
A server running a Linux distribution.
Note: When creating this guide, we used Linux CentOS versions 7 and 8. The steps may vary on other distributions.
Set Up the DNS
On most Linux server distributions, the system’s DNS server information for name resolution is defined in the
file. However, this directory and filename can vary depending on the Linux distribution.
1. We recommend creating a backup copy (
) and then editing the original file.
2. Edit the name servers file, adding the Lumu IP addresses or the IP addresses of the Virtual Appliance you created inside the “options” parameter of the
Figure 1 - Setting Lumu IP addresses on a Linux server.
: the Lumu DNS resolvers IPv4 addresses are:
3. To ensure that your new settings are working after saving it, run the following command:
If there are no syntax errors in your configuration, the shell prompt will return immediately without displaying any output (blank). If any syntax errors are found, you will be alerted to the error and line number where it occurs. If this happens, go back and check your files for errors.
4. When you have verified that your configuration does not have any syntax errors, reload the BIND daemon to implement your changes. For CentOS, use the following command:
Validate your settings
The final step is to verify that your DNS connections are correctly routed through Lumu. See
Validate your DNS Settings
for more information.