Vulcan gateway enables connectivity from on-premise/VPC systems to Vulcan platform by creating a secure encrypted tunnel from the enterprise network. It is deployed as virtual appliance on the organization virtualization platform.
In this article you will find:
- How to Install Vulcan's OVA
- How to configure Vulcan Gateway
- Open Port 1939 to gateway.vulcancyber.com (Connectivity from Vulcan Gateway to Vulcan platform)
- Open Port 443 to gatewayconfig.vulcancyber.com
- Open TCP connection to all needed connectors
- Working DNS configuration
Vulcan's OVA requirements:
- 2 vCPU
- 2 GB Memory
- 50 GB Disk space
2. Installing Vulcan's OVA
- Contact your Vulcan contact to get the link for the OVA
- Deploy 'Vulcan Gateway.ova'
- Start OVA
- Choose the first option (as in image):
4. Login with the user 'vulcan'
5. Insert the password provided by your Vulcan's contact
Important Note: the installed system should be protected as any other organisational asset, according to the security guidelines! specifically - make sure to restrict SSH access to this machine to known IP addresses, and make sure to replace the default login password. Stay safe!
Now that your OVA it set up and access was verified, we'll set up the Vulcan Gateway Connector in Vulcan's platform.
3. Configure Vulcan Gateway Connector
You can set up Vulcan Gateway by navigating to Connectors and add Vulcan Gateway
The Vulcan Gateway key is permanent, and will be used for authentication between Vulcan instance to the deployed OVA
Click on Create.
Click on Edit on the Vulcan Gateway Connector and copy the Vulcan Gateway Key.
Access the OVA and type the Vulcan Gateway Key
In each connector you want to communicate via the Vulcan Gateway, enable Use Vulcan Gateway toggle
Note: The URL in each connector that uses Vulcan Gateway will be in the following format:
Click Save Changes
Note: In order for the on-prem OVA to receive the new configuration you can choose out of these options:
- Every 60 minutes Vulcan Gateway is updating its configuration, so you can wait for Vulcan Gateway to pull the new connectors details
- Run the following command for instant update 'sudo connect_tunnel.py'
- In order to initiate the new connectors sync, disable and enable again the connector
That's it! Your connector is now communicating via Vulcan Gateway.
Problem: Can't run OVA with:
Solution: Change the OVA "Settings" --> "General" --> "Basic" --> Change the "Type" to "Linux" + "Version" to "Other Linux (64-bit)":
Problem: Can't run OVA with:
Solution: Run in CMD as Administrator "bcdedit /set hypervisorlaunchtype off" and reboot.
To revert: "bcdedit /set hypervisorlaunchtype auto"
- This mostly occurs when Docker is installed on the windows box.
Problem: While running the script you get the following error:
Solution: Make sure that DNS is configured properly under /etc/resolv.conf
Problem: When trying to configure the Vulcan platform URL you receive the following error:
Solution: Make sure that the URL is entered correctly, and that port 443 is accessible to that URL.
Problem: When running the script you encounter these error messages:
Solution: Make sure that the Gateway can reach the internal connector via the port configured in the Vulcan Platform web interface.