Virtual machine

Wazuh provides an automated way of generating a Virtual machine in OVA format that is ready to run a Wazuh manager and ELK.

To create the virtual machine follow these steps:

Requirements

Download our wazuh-packages repository from GitHub and go to the ova directory of the legacy branch.

$ git clone https://github.com/wazuh/wazuh-packages && cd wazuh-packages/ova && git checkout legacy

Execute the generate_ova.sh script, with the different options you desire.

$ ./generate_wazuh_packages.sh -h
Usage: ./generate_ova.sh [OPTIONS]

  -b, --build            [Required] Build the OVA and OVF.
  -v, --version          [Required] Version of wazuh to install on VM.
  -e, --elastic-version  [Required] Elastic version to download inside VM.
  -r, --repository       [Required] Status of the packages [stable/unstable]
  -d, --directory        [Optional] Where will be installed manager. Default /var/ossec
  -s, --store <path>     [Optional] Set the destination absolute path of package.
  -c, --checksum <path>  [Optional] Generate checksum.
  -h, --help             [  Util  ] Show this help.

The options for the repository indicates whether the packages used to install Wazuh are the production ones or not.

  • Stable: The OVA uses released packages.

  • Unstable: The OVA uses not released packages.

Below, you will find some examples of how to build a Wazuh virtual machine.

# ./generate_ova.sh -b -v 3.13.6 -e 7.9.2 -r stable

This will generate a Virtual machine with Wazuh manager 3.13.6 and ELK 7.9.2 installed using stable packages

# ./generate_ova.sh -b -v 3.13.6 -e 7.9.2 -r unstable -c

This will generate a Virtual machine with Wazuh manager 3.13.6 and ELK 7.9.2 installed using unstable packages and generate the sha512 checksum