IBM Guardium

 View Only

  • 1.  External S-TAP deploy

    Posted 26 days ago

    Dears, 

    We are going on to deploy an external S-TAP. I read the guide more than once and opened a case with IBM support, but I am very confused. What are the prerequisites, and how can I deploy it?

    So please, we need your help if you can help me with any external videos that explain that topic.

    Thanks a lot.



    ------------------------------
    fathy houd
    ------------------------------


  • 2.  RE: External S-TAP deploy

    Posted 10 days ago

    Hi there, hope this helps deploy IBM Guardium External S-TAP:


    Prerequisites


    1. System Requirements:

    x86_64 processor.

    • Linux kernel version 3.10+.
    • Docker (CE/EE) 1.12.16+.
    • Iptables 1.4+.
    • UNIX domain socket support

    2. Licensing and Version:

    • Ensure you have a Guardium collector appliance license and are using Guardium version 10.6 or later 

    1. Networking:
      Ensure proper VPC setup for
      communication between the database, External S-TAP, and Guardium Collector. Use public IPs or VPC peering if they are in different VPCs
    1. AWS CLI & Kubernetes:
      Install AWS CLI and Kubernetes tools ('kubectl', 'eksct]') if deploying on Amazon EKS
    2. Certificates: • For SSL connections, prepare a certificate signed by a CA


    Deployment Steps


    3. Create Kubernetes Cluster (if using

    Kubernetes):

    • Use 'eksctl create cluster' to set up the cluster.
    • Verify cluster and node creation using
      'kubectl get sve and 'kubectl get nodes commands 


    2. Set Up External S-TAP:

    • Log in to the IBM Guardium admin console.
    • Navigate to Manage > Activity
      Monitoring > External S-TAP Control.
    • Configure Docker Hub details to retrieve the container image 
    • Enter database details (endpoint, port) and Guardium Collector IP in the configuration 

    3. Deploy External S-TAP:

    • Click "Apply" to deploy the External S-TAP.
    • Verify deployment using 'kubectl get pod command.

    4. Modify Database Connection:


    • Update client connections to use the load balancer's external IP, which forwards traffic to the database and Guardium Collector 


    5. Test Traffic Monitoring:

    • Generate test traffic and verify it is reported in the Guardium Collector logs



    That is.... If your IBM Support ticket hasn't resolved it yet. ���� cheers! 




    Original Message


  • 3.  RE: External S-TAP deploy

    Posted 10 days ago

    Hi Nika,

    Thanks a lot for your help.

    We are using the Oracle Cloud Interface (OCI). I tried to configure it, but unfortunately it is not working, so I opened a case with IBM and am waiting for their response.



    ------------------------------
    fathy houd
    ------------------------------

    Original Message