Once the Virtual Appliance (VA) has been added to the Lumu Portal and imported into a hypervisor or cloud environment, it is time to configure the Lumu VA to collect network metadata to illuminate threats, attacks, and adversaries coming from your network.
When starting the virtual machine for the first time, it will perform status checks and prompt if it needs to be activated/initialized.
After logging into the Lumu VA for the first time, you will be prompted to enter the activation code you received when you created your Virtual Appliance on the Lumu portal:
Once you enter the appliance’s activation code, it will start downloading the latest version of the Virtual Appliance software and perform some pre-configuration tasks.
During its initialization, the appliance will display a network IP configuration screen. This screen will automatically detect the current IP configuration obtained via DHCP (if available).
Fill in the IP configuration using the TAB key to move between fields, and then hit ENTER in the <OK> option to apply it. Once applied to the network configuration, you will receive confirmation and a prompt to start the appliance.
In the next step, select the security configuration you want to set for your Appliance. If your environment requires advanced security configuration such as DNSSEC, TLS, or filtering local addresses, select the option “Additional secure configurations”. Otherwise, select “Basic ”.
A Virtual Appliance Collector works as a processing mechanism that provides the ability to gather network metadata quickly and straightforwardly.
You can access and manage the Virtual Appliance settings using SSH (Secure Shell). Some commands will require privileges, in which case you will be prompted to enter the sudo credentials.
To obtain the list of available commands and their descriptions, type: