This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
сервис_ossec [2020/07/15 09:54] val [Подключение] |
сервис_ossec [2020/07/15 13:28] val [Установка и запуск сервера] |
||
---|---|---|---|
Line 21: | Line 21: | ||
==== Установка и запуск сервера ==== | ==== Установка и запуск сервера ==== | ||
<code> | <code> | ||
- | # apt install ossec-hids-server | + | lan# apt install ossec-hids-server |
+ | lan# /var/ossec/bin/agent_control -l | ||
+ | ... | ||
</code> | </code> | ||
- | ==== Установка, запуск и подключение агента ==== | + | ==== Настройка сервера для подключения агента ==== |
+ | <code> | ||
+ | ossec-server# /var/ossec/bin/manage_agents | ||
+ | ... | ||
+ | (A)dd an agent (A). | ||
+ | ... | ||
+ | Agent information: | ||
+ | ID:001 | ||
+ | Name:server | ||
+ | IP Address:192.168.X.10 | ||
+ | ... | ||
+ | (E)xtract key for an agent (E). | ||
+ | ... | ||
+ | ossec-server# /var/ossec/bin/ossec-control restart | ||
+ | |||
+ | ossec-server# ss -panu | grep 1514 | ||
+ | </code> | ||
+ | |||
+ | ==== Установка, запуск и подключение агента ==== | ||
<code> | <code> | ||
ossec-agent# apt install ossec-hids-agent | ossec-agent# apt install ossec-hids-agent | ||
Line 34: | Line 54: | ||
<ossec_config> | <ossec_config> | ||
<client> | <client> | ||
- | <server-ip>192.168.155.10</server-ip> | + | <server-ip>192.168.100+X.10</server-ip> |
... | ... | ||
</code><code> | </code><code> | ||
- | ossec-server# /var/ossec/bin/manage_agents | ||
- | ... | ||
- | |||
- | ossec-server# /var/ossec/bin/ossec-control restart | ||
- | |||
- | ossec-server# ss -panu | grep 1514 | ||
- | |||
- | |||
ossec-agent# /var/ossec/bin/manage_agents | ossec-agent# /var/ossec/bin/manage_agents | ||
... | ... | ||
- | ossec-agent# /var/ossec/bin/ossec-control restart | + | ossec-agent# /var/ossec/bin/ossec-control start |
- | + | </code> | |
- | ossec-server# /var/ossec/bin/agent_control -l | + | |
- | ... | + | |
+ | ==== Проверка подключения агента ==== | ||
+ | <code> | ||
ossec-server# /var/ossec/bin/agent_control -i 001 | ossec-server# /var/ossec/bin/agent_control -i 001 | ||
... | ... |