-
Specs (Dell PowerEdge R630):
- 128GB DDR4
- Dual CPU:
- DUAL PSU
- Battery backup:
- IDRAC
-
Server Topology:
- Twingate (ZT Network)
- Ubuntu LXC container
- 512MB, 1 CPU, 8GB storage
- run updates/upgrade
- use Twingates curl setup command
-
Docker:
- install ubuntu server
- SSH into machine and follow below commands:
- https://docs.docker.com/engine/install/ubuntu/
# Add Docker's official GPG key: sudo apt-get update sudo apt-get install ca-certificates curl sudo install -m 0755 -d /etc/apt/keyrings sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc sudo chmod a+r /etc/apt/keyrings/docker.asc # Add the repository to Apt sources: echo \ "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \ $(. /etc/os-release && echo "$VERSION_CODENAME") stable" | \ sudo tee /etc/apt/sources.list.d/docker.list > /dev/null sudo apt-get updatesudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-pluginsudo docker run hello-world- install portainer: https://docs.portainer.io/start/install-ce/server/docker/linux
docker volume create portainer_data ... docker run -d -p 8000:8000 -p 9443:9443 --name portainer --restart=always -v /var/run/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer-ce:2.21.0 ... # verify its working docker ps https://<IP address>:9443- Docker containers:
- Cloudflare Zero trust
- Crafty containers
- Grav
- Wordpress
- portainer
-
Wazuh (SIEM):
-
Ubuntu ISO
-
8(8192) GB, 4 CPU 50GB storage
-
run updates/upgrade
curl -sO https://packages.wazuh.com/4.8/wazuh-install.sh && sudo bash ./wazuh-install.sh -a -
https://documentation.wazuh.com/current/quickstart.html
-
‣
-
-
Nessus (Vulnerability scan):
- https://www.tenable.com/downloads/nessus?loginAttempted=true:
curl --request GET \ --url 'https://www.tenable.com/downloads/api/v2/pages/nessus/files/Nessus-10.8.2-ubuntu1604_amd64.deb' \ --output 'Nessus-10.8.2-ubuntu1604_amd64.deb'