Installation Pre-Requisites

This section describes the ports that need to be opened, software and hardware requirements, along with theoretical calculations for storage scaling requirements.

Customer Firewall Configuration

Application Name

Port to be opened

ElasticSearch

9200

Arkime

8005

Kibana

5601

HTTP

SSH/ SCP

TCP connection for local to remote ES cluster

9300

Note: If users want to modify the above-provided ports to run on non-default ports, please refer here to make use of docker port forwarding: https://docs.docker.com/network/

Browser Requirements: Chrome, Safari

Software Requirements

Ubuntu 22.04
Docker needs to be installed.
python3 for running helper scripts.
The following installation scripts assume static IP addresses have been assigned
to the hosts that run the docker containers, so having the IP address list of the
hosts would be helpful.
Make sure the capture interface for Arkime is in UP state

PreviousNetwork Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana NextSolution Components