Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Docker Compose environment for full Wazuh Stack #526

Open
vikman90 opened this issue Jan 21, 2025 · 1 comment
Open

Docker Compose environment for full Wazuh Stack #526

vikman90 opened this issue Jan 21, 2025 · 1 comment
Assignees
@vikman90
Labels
level/task Task issue type/enhancement Enhancement issue

Comments

@vikman90
Copy link
Member

Description

We need to develop a Docker Compose environment that enables the deployment of the complete Wazuh Stack for end-to-end testing. While this setup is primarily intended for testing agent development, it should be useful for any Wazuh stack developer.

Currently, testing versions of the stack components are being delivered as DEB or RPM packages. This system should build Docker images using these local packages.

Requirements

  1. Full Stack Deployment:
    Include all Wazuh Stack components: Indexer, Dashboard, Server, and Agent.
  2. Local Package Integration:
    Use locally available DEB or RPM packages to build Docker images for each component.
  3. MITMProxy Integration:
    Add a web-based MITMProxy between the Agent and the Server.
  4. Port Accessibility:
    Open the necessary ports to provide access to all stack components, including the MITMProxy.
  5. External Agent Connectivity:
    Ensure it is possible to connect an external Wazuh Agent to the stack.
  6. Configuration Flexibility:
    Provide easy access to configuration files for at least the Agent and the Server to allow simple modifications.

Acceptance Criteria

  • A Docker Compose file and any necessary supporting scripts are provided in the repository.
  • Documentation is included to explain how to:
    • Build the images using local packages.
    • Start the environment.
    • Access each component.
    • Connect an external agent.
    • Modify the Agent and Server configurations.
  • The MITMProxy is functional and accessible through a web interface.
  • All stack components are operational and communicate correctly.

This environment will serve as a valuable tool for testing and development purposes across the Wazuh stack.
@vikman90 vikman90 self-assigned this Jan 21, 2025
@vikman90 vikman90 added level/task Task issue type/enhancement Enhancement issue labels Jan 21, 2025
@wazuhci wazuhci moved this to In progress in XDR+SIEM/Release 5.0.0 Jan 21, 2025
@vikman90
Copy link
Member Author

vikman90 commented Jan 21, 2025
edited
Loading

Work report

January 20

  • Environment scaffolding.
  • Set up Indexer, Server, MITM and Agent.
  • Certificate exchange using volumes.

January 21

  • Fixed connectivity issues between Server and Indexer.
  • Set up Dashboard.
MITM Web Dashboard
Image Image

January 22

  • Debugging to find out why stateless messages aren't indexed.

January 28

  • Moved Dashboard DEB container to RPM.
  • Experiencing an error at Server: 
    ERROR: [Cluster] [Main] Daemon `wazuh-server-ma` does not have the correct number of children process. Stopping the whole server.

@vikman90 vikman90 moved this from In progress to On hold in XDR+SIEM/Release 5.0.0 Feb 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vikman90 vikman90

Labels
level/task Task issue type/enhancement Enhancement issue
Projects
XDR+SIEM/Release 5.0.0
Status: On hold
Milestone
No milestone
Development

When branches are created from issues, their pull requests are automatically linked.

refs/heads/enhancement/526-docker-compose-environment wazuh/wazuh-agent
1 participant
@vikman90