Lumu Virtual Appliance Collectors

Lumu Virtual Appliance Collectors

To get started with Lumu Virtual Appliances, consult our Introduction to Lumu Virtual Appliances article.
The Lumu Virtual Appliance (VA) is a pre-configured lightweight virtual machine solution that collects the network metadata of your entire enterprise and forwards it to the Lumu cloud with the lowest impact on the network operation.

Virtual Appliances can have several Data Collectors associated with them, which are an invaluable tool in the analysis and collation of different types of cybersecurity protocols.

You will find these Collectors under the “Additional Collectors” sub-section on your Virtual Appliance panel in the Lumu Portal.
Lumu Virtual Appliances are available only for Lumu Insights and Lumu Defender users; however, some limitations apply to Lumu Insights and Lumu Defender customers. Lumu Defender customers can enjoy the full power of our integrations. To learn more, refer to the pricing section on our website and our offerings article.

Virtual Appliance Deployment

To begin the Virtual Appliance deployment process, consult this article.

Virtual Appliance Data Collector Types

Lumu’s Virtual Appliance Data Collectors can collect metadata from several specialized sources. Currently, Lumu offers Data Collectors for the following types of data:

Virtual Appliances Metadata Collectors

Collecting metadata other than DNS requests is important since some attacks avoid domain resolution, leaving traces of their contacts in the access logs of firewalls, proxies, etc. This option is also available for accommodating networks where DNS configuration is not possible. In this scenario, companies can monitor IP traffic with the Lumu Virtual Appliance acting as a network metadata collector on your enterprise perimeter.

This approach ensures compromise visibility without having to make major changes, as almost every cybersecurity vendor solution can forward metadata externally without impacting their operation.

Network diagram with Lumu VA for metadata collection

    Still can’t find an answer?
    Send a message to our experts.
    Contact Us

        • Related Articles

        • Lumu Virtual Appliance Metadata Collection with Logstash

          Some enterprises use the Elastic stack (ELK) to collect, index, and analyze logs from multiple devices. If yours is one of those organizations, deploy a Lumu Virtual Appliance and create collectors that will receive data directly from existing ...

        • Using Grouping Rules with Lumu Collectors

          Grouping Rules is a feature shared by some of our collectors that allows you to better organize and categorize the traffic these collectors analyze using your labels. Data Collection collectors are designed to receive traffic in bulk, which is not ...

        • Collect Metadata with Lumu VA

          The Lumu Virtual Appliance (VA) offers the option to create VA collectors, a seamless way to integrate the network metadata of your entire enterprise into the Lumu cloud with the lowest impact on the network operation. Collecting metadata other than ...

        • Collect Metadata with Lumu VA through SSL/TLS

          Lumu’s VA collectors enable the collection of network metadata from various sources, including firewall logs, proxy logs, DNS queries, DNS packets, and more. Some collectors also support secure metadata transmission via SSL/TLS for enhanced security. ...

        • Custom Collector API Integration With Packetbeat and Logstash

          Some enterprises may already be using Logstash as part of their pipelines to centralize their logs. In such cases, you have the option to deploy custom collectors to seamlessly integrate your network infrastructure with Lumu while layering Continuous ...