Breadcrumbs

Install CentOS 7.6 Minimal

Prerequisites

  • Internet access and web browser

  • VMware (Workstation or Player) or another VM platform

  • The CentOS host should have the following firewall configuration:

    Direction

    Port

    Protocol

    Source

    Destination

    Purpose

    Outbound

    443

    HTTPS

    Open Collector

    raw.githubusercontent.com

    Identify latest container versions.

    Outbound

    443

    HTTPS

    Open Collector

    *.gcr.io

    Download latest Open Collector software.

    Outbound

    443

    HTTPS

    Open Collector

    get.docker.com

    Download docker repositories.

    Outbound

    443

    HTTPS

    Open Collector

    cloud.google.com

    Pull container images.

    Outbound

    443

    HTTPS

    Open Collector

    storage.googleapis.com

    Auto-update feature.

    Outbound

    443

    HTTPS

    Open Collector

    console.cloud.google.com

    Auto-update feature.

    Outbound

    443

    HTTPS

    Open Collector

    download.docker.com

    Allows for LRCTL installation of Open Collector

    Outbound

    443

    HTTPS

    Open Collector

    registry-1.docker.io

    Allows for LRCTL installation of Open Collector

    Outbound

    443

    HTTPS

    Open Collector

    auth.docker.io

    Allows for LRCTL installation of Open Collector

    Outbound

    443

    HTTPS

    Open Collector

    production.cloudflare.docker.com

    Allows for LRCTL installation of Open Collector

    Outbound

    514

    TCP - Syslog

    Open Collector

    Windows System Monitor Agent

    Syslog feed of data to LogRhythm SIEM.

    Outbound**

    6514

    TCP+TLS - Secure Syslog

    Open Collector

    Windows System Monitor Agent

    Secure syslog feed of data to LogRhythm SIEM.

    Outbound

    8076

    TCP - Influx/Vitals

    Open Collector

    Platform Manager

    Data feed for Centralized Metrics (LogRhythm 7.5+ only).

    Inbound

    3000

    HTTP

    User machine

    Open Collector

    View Open Collector metrics in Grafana.

    Inbound

    22

    SSH

    User machine

    Open Collector

    Interact with Open Collector.

    Inbound

    5044

    TCP - Lumberjack

    Beats

    Open Collector

    Method to send data from Beats collected outside the Open Collector.

    **indicates optional setting


Install CentOS 7 Minimal

  1. Download CentOS 7 Minimal from http://isoredirect.centos.org/centos/7/isos/x86_64/.

  2. Create a VM with the following settings:

    • CPU: 8 cores (or more)

    • RAM: 8 GB (or more)

    • HDD: 50 GB (or more)

    • DVD: CentOS-7-x86_64-Minimal-1908.iso

    • User: In addition to the root user, create the following user:

      • username: logrhythm

      • password: <enter a password of your choice>

  3. On initial boot, log in as the root user.

  4. Add the new logrhythm user to the sudoers wheel:

    usermod -aG wheel logrhythm


  5. Reboot the VM, and log in as the logrhythm user.


OS Installation

  1. Boot your VM with your installation media attached to the virtual CD-ROM drive (.iso format).
    image2020-10-28_14-54-9.png

  2. Select Install CentOS 7.

  3. Wait for the media check to complete.
    image2020-10-28_14-56-2.png

  4. Once the CentOS 7 installer GUI starts, select your language localization settings, and click Continue.
    image2020-10-28_14-55-25.png
    The Installation Summary screen appears.
    image2020-10-28_14-57-32.png

  5. In the System section, click Network & Host Name. (This is required to get networking on your VM without manual configuration.)

  6. In the upper-right corner, click the toggle switch to On.  
    image2020-10-28_14-58-23.png
    The VM retrieves an IP address and DNS settings using DHCP (IPs and MAC redacted for security reasons).

  7. In the upper-left corner, click Done.
    The Installation Summary screen appears.

  8. In the Localization section, click Date & Time.  
    The Date & Time screen appears.
    image2020-10-28_14-59-11.png

  9. Confirm the date and time are correct. 

    You can also use the Network Time (NTP) option (networking must be configured to use this option).


  10. In the upper-left corner, click Done.
    The Installation Summary screen appears.

  11. In the System section, click Installation Destination.  
    The Installation Destination screen appears.
    image2020-10-28_14-59-51.png

  12. Ensure your local disk is selected. The recommended disk capacity is 50GB.

  13. In the upper-left corner, click Done.
    The Installation Summary screen appears

  14. In the bottom-right corner, click Begin Installation.

  15. During the installation process, you can configure a root password and additional users.
    image2020-10-28_15-0-23.png

  16. To set a root password, click Root Password.

  17. Click User Creation, and create a logrhythm user with a strong password. 

    You can also create a logrhythm user manually after installation.


  18. Once installation is complete, click Reboot in the lower-right corner.
    image2020-10-28_15-8-34.png

    Make sure to remove the installation media. The method for removal is hypervisor-specific.