Installing Pluribus One WAS®

Installation

Make Pluribus One WAS® a part of your infrastructure it is extremely easy. This is the list of tasks you need to perform:

  • Initial Choices
  • Installati
  • Configuration
  • First Use



Initial Choices

Before starting with the installation procedure it is important to perform some activities you need to gather some information regarding your infrastructure and you also need to makes some choices: Where are you going to install Pluribus One WAS®? What is the source of traffic data? What is Pluribus One WAS® expected to with the received traffic data? 

This is the list of information required:

  • IP Address: Find the public IP address of the network where Pluribus One WAS® is going to be installed.
  • Access Credentials: You will need root level access to the device where you are going to install Pluribus One WAS®.
  • Data Source: Find a suitable Data Source that is going to provide traffic data for Pluribus One WAS®.
  • Working Mode: What are the technical needs for your infrastructure? Pluribus One WAS® can support you in two different working modes known as monitor mode (i.e., traffic inspection) e protection mode (i.e., traffic inspection and protection rules generation).

Installation

Installing the Pluribus One WAS® on your premises it is extremely easy and it is done by using the standard Linux package manager (e.g. apt-get, yum, aptitude, etc.). natively provided with your Linux distribution in order to access Pluribus One repositories and directly download the installation package.

Take these following steps:

  1. License Number: Keep your Pluribus One WAS® License Number close at hand.
  2. Unlock the repository: Contact Pluribus One at This email address is being protected from spambots. You need JavaScript enabled to view it. and provide providing the License Number and the public IP address of the device where you want to install the software.
  3. Configure the repository: now it is time to configure your device in order to have the repositories through which Pluribus One distributes Pluribus One WAS® configured within the sources.list file.
  4. Search & Install: search the package "attackprophecy" by using the package manager and just wait. All the dependencies and required packages will be automatically downloaded and configured.



Configuration

Every activity associated to the configuration of Pluribus One WAS® can be considered as belonging to one of these two categories:

  • Initial Configuration: this is the initial mandatory configuration that is performed once. This type of configuration depends on which working mode you have chosen: monitoring or protection.
  • Ongoing Configuration: this type of configuration is performed after the initial installation, it is purely optional and can be performed multiple times. This type of configuration is associated to performance, access management, etc.

Within the knowledge base you can find several guides and articles that focus on configuration. All these articles are organized into three categories:

Please keep in mind that Initial Configuration (monitor mode) is mandatory. Even if you plan to use Pluribus One WAS® in protection mode you will still need to configure Pluribus One WAS® in order to allow it to receive and monitor the traffic data. The generation of protection rules requires the analysis of data traffic.

Please refer to the general guide about Data Source configuration available at this link: How to Configure a Data Source .



First Use

The activity called "First Use" is an extremely important task that allows Pluribus One WAS® to perform its activities. During the "First Use" you will provide Pluribus One WAS® with a list of domain names that will be monitored. This task is fundamental since it allows Pluribus One WAS® to actually analyse the data traffic it receives from a Data Source.

Please refer to the specific guide about the first use available at this link: Guide to the First Use .