The Lumu Virtual Appliance (VA) is a pre-configured lightweight virtual machine solution provided by Lumu Technologies to enable the collection of network metadata of your entire enterprise and forward it to the Lumu cloud with the lowest impact on the network operation. To know more about collectors options, consult our deployment and integration guide.
Virtual Appliances are the lighthouses of Lumu within your organization. This solution provides you with the detailed visibility of malicious activity of each private IP address on your network in real-time, besides automatic ingestion of extensive metadata sources such as DNS, net flows, and access logs.
Figure 1 - Infrastructure with Lumu VA.
Virtual Appliances are part of Lumu Insights and Lumu Defender. This tier allows you to deploy unlimited VA that serve as collectors of network metadata and tell you exactly where the compromises are located.
Create a Virtual Appliance
Before creating a Virtual Appliance, we recommend getting familiar with our sizing guidelines
Follow these simple steps to create and download a pre-configured Virtual Appliance for your hypervisor of preference and start illuminating threats and adversaries within your network in a few minutes.
A hypervisor is a software layer that enables multiple virtual systems to share the same physical computing resources. These systems come as virtual machines (VMs). The Lumu Virtual Appliance runs as a virtual machine and is compatible with the most common hypervisors such as VMWare ESX/ESXi, Windows Hyper-V, and Cloud solutions such as Microsoft Azure, Google Cloud Platform, and Amazon Web Services.
Add a VA
The first step is to name your VA and select or create a default label to which information will be allocated.
Navigate to the Virtual Appliance menu and click on the button to add your first virtual appliance.
Figure 2. Add a virtual appliance.
When creating a Virtual Appliance, you are required to provide the following information:
(1): a name for your VA.
(2): an optional brief description for the VA.
(3): the label with which all the captured metadata will be associated by default.
Figure 3. Create a virtual appliance.
Labels give you the power to sort your traffic by geography, departments, business units, critical assets, or as needed. You can later specify grouping rules for a more granular classification.
Configure a VA
Once you create a virtual appliance you will receive an activation code.
Be sure to record this activation code, once you click Next, you will not be able to view or recover this code again.
Figure 4. Activation code for the VA.
You are ready to download your Virtual Appliance. When you click on the download option, you will be able to select your hypervisor from the list.
Figure 5 - Download the VA file.
Set Up a Virtual Appliance
Once you have created and downloaded the Virtual Appliance file, you should import and configure it, we have created deployment guides for the following hypervisors and Cloud environments:
Deploy on VirtualBox
Deploy on VMware
Deploy on Hyper-V
Deploy on AWS
Deploy on Azure