IDS Instal On Debain

1) HDD Partition (Assuming 160GB HDD):
a. Boot:-5GB
b. Root(/):-15GB
c. Home:- 40GB
d. USR:- 40GB
e. VAR:- 50GB
f. Swap:- 10GB (Should be twice of RAM)
Internet Connection Is Required during the installation
INSTALLATION:-
1) Download ISO Image from http://data.alienvault.com/alienvault-ossim-installer-2.1.x86.iso

2) Prepare Bootable CD/DVD of OS
3) Prepare the System for Boot from CD/DVD Drive
4) Reboot the System to Boot from CD/DVD
5) Press “Enter” when you see the “Alien Vault” logo - Do Not Choose “Graphical Mode”
6) Select English – Press Enter to Select the Default
7) Select “United States” – Press Enter to Select the Default
8) Select “American English” – Press Enter to Select the Default
9) Type in The IP for this Particular System – Press Enter to continue (IP-of the Interface having the
Internet connection)
10) Press “Enter” to continue with the default Net Mask or Customize accordingly and Press “Enter”
to Continue
11) Type in the Default Gate Way – Press “Enter” To Continue
12) Enter the Name Server (DNS) IP – Press “Enter” To Continue
13) Enter the “Host Name” – Press “Enter” To Continue
14) Enter the “Local Domain Name” (Ex: calpurnia.com) – Press “Enter” To Continue
15) Wait for few seconds as it updates the Time from Time Servers
16) Select the “Time Region” Accordingly – Press “Enter” To Continue
17) NOW:- Select “Manual” Using ↑↓ Keys – Press “Enter” To Continue
18) To Delete Existing Logical Drives (Skip to 18 if no logical Drives found)
a. Select “Delete” – Press “Enter” To Continue
b. Repeat Step (17.a) to delete all windows partitions
19) Select Drive – Press “Enter” To Continue (BOOT)

a. Select “Create New Partition” – Press “Enter” To Continue
b. Type in “Boot” Partition Size (5.0) – Press “Enter” To Continue
c. Select “Primary” – Press “Enter” To Continue
d. Select “Beginning” – Press “Enter” To Continue
e. Press “Enter” To Continue to the “Mount Options”
f. Select “Boot” – Press “Enter” To Continue
g. Select “Bootable Flag” – Press “Enter” To Toggle (Should be “ON” for Boot)
h. Press “Escape” to save and return to the Partition Page
20) Select Free Drive – Press “Enter” To Continue (ROOT)

b. Type in “Root” Partition Size (15.0) – Press “Enter” To Continue
f. Select “root” – Press “Enter” To Continue
g. Press “Escape” to save and return to the Partition Page
21) Select Free Drive – Press “Enter” To Continue (HOME)
b. Type in “Home” Partition Size (40.0) – Press “Enter” To Continue
f. Select “home” – Press “Enter” To Continue
22) Select Free Drive – Press “Enter” To Continue (USR)

b. Type in “USR” Partition Size (40.0) – Press “Enter” To Continue
f. Select “home” – Press “Enter” To Continue
23) Select Free Drive – Press “Enter” To Continue (VAR)

b. Type in “VAR” Partition Size (50.0) – Press “Enter” To Continue
f. Select “var” – Press “Enter” To Continue
Note: Should be used “Logical” after 4 partitions as Max 4 “Primary” partitions are allowed in Linux. If
Error occurred, Repeat that particular step and select “Logical” Instead of “Primary” on Step “c”.
24) SWAP – Select Remaining Partition – Press “Enter” To Continue

b. Type in “SWAP” Partition Size (10.0) – Press “Enter” To Continue
c. Select “Logical” – Press “Enter” To Continue
e. Select “Use As” – Press “Enter” To Continue
f. Select “Swap Area” – Press “Enter” To Continue
25) Select “Finish Partitioning and Write Changes to Disk” – Press “Enter” To Continue
a. Select “Yes” – Press “Enter” To Continue
26) Closely monitor the installation as we need to supply below info,

a. IP: Static IP of this Machine which must be having Internet connectivity as Installer
downloads some of the updates during the Installation (Check Firewall if any)
b. Default Gateway: Enter IP Address of Local Default Gateway
c. DNS: Enter Local DNS Server (Primary DNS Only)
d. HOST Name: Enter a proper host name (Ex: IDS)
e. Domain Name: Local domain Name without host name (Ex: my_domain.com and not
IDS.my_domain.com)
f. Select “Smart Host” for “Postfix” mail server (Which will allow mails to be sent via
another SMTP server which acts as “Mail Relay” Server for IDS
g. Enter “SMTP” server IP address
h. Select “Yes” for “Java” installation
i. Enter “root” password and confirm it again when installer prompts for the same.
27) Wait for few minutes answer to the prompts if any, by the Installer
28) At the End of installation - Take out the CD from the Drive
29) Wait for few minutes while the system finalize the installation for first boot
30) Login as “root” using “root” password
a. Enter apt-get update to update the list
b. Wait: Do Not Run apt-get upgrade
c. Wait Do Not Run apt-get dist-upgrade
31) Install “webmin” Most - powerful Control panel for Linux Machines
a. Edit /etc/apt/sources.list
b. Use the command vi /etc/apt/sources.list
c. Add this line at the end without brackets (deb
http://download.webmin.com/download/repository sarge contrib)
d. Hit “Esc” key
e. Hold “Shift” and hit “Z” and “Z” (Shift+ZZ – will save the changes and
exits out of VI Editor)
f. cd /root
g. wget http://www.webmin.com/jcameron-key.asc
h. apt-key add jcameron-key.asc
i. apt-get update
j. apt-get install webmin
32) Access the webmin control panel from another computer in the network interface by
https://serverip:10000
a. Enter user name as root
b. Enter root password
c. Fine…. Configure or see the settings or even add/remove programs or reboot the machine
or explore the file system through “File Manager”
33) Login to OSSIM by http://serverip/ossim
a. Enter user as admin
b. Enter password as admin
c. Fine…….Start exploring the stuffs available.
By Default, OSSIM will have lots of tons of features to explore, anyhow advancement configuration steps on
this will be added later.
Coming soon………..
a) OSSIM Interfaces configuration for multiple NIC
b) Aliasing on “Postfix” Mail server and error debugging
c) Jasper Server Report Scheduling for remote inbox/multiple recipients
d) Advance configurations in OSSIM
e) NTOP configuration
f) NagiOS Configuration
g) Actions Configuration
h) Policy Configuration
i) Sooooo On….

IDS Instal On Debain

Hochgeladen von

Dokumentinformationen

Originalbeschreibung:

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

IDS Instal On Debain

Hochgeladen von

Copyright:

Verfügbare Formate

1) HDD Partition (Assuming 160GB HDD):

Internet Connection Is Required during the installation

1) Download ISO Image from http://data.alienvault.com/alienvault-ossim-installer-2.1.x86.iso

19) Select Drive – Press “Enter” To Continue (BOOT)

20) Select Free Drive – Press “Enter” To Continue (ROOT)

22) Select Free Drive – Press “Enter” To Continue (USR)

23) Select Free Drive – Press “Enter” To Continue (VAR)

24) SWAP – Select Remaining Partition – Press “Enter” To Continue

26) Closely monitor the installation as we need to supply below info,

Das könnte Ihnen auch gefallen