Network Automation Engineer: Roger Perkin CCIE 50038

CCIE, Wireless, F5, Ansible, AWS, Cloud and data centre to Network Automation - my journey as a network engineer

Home \ Security \ Cisco Stealthwatch Installation and Setup

Cisco Stealthwatch Installation and Setup

In this post I am going to be walking through the installation and setup of Cisco Stealthwatch. I will be doing this with virtual machines on VMWare.

I will be installing the StealthWatch Management Console (SMC) and one FlowCollector FC

Stealthwatch Management Console Installation & Sizing

I will be referring to the Stealthwatch Management Console VE and Flow Collector VE Installation and Configuration Guide version 6.10.1

All the installation guides can be found on the Cisco website – here 

For all appliances they are deployed via an OVF so this process is very straightforward. There is a sizing guide which recommends different settings for the size of your deployment, number of exporters, flows per second and number of concurrent users etc.

stealthwatch-management-console-sizing-guide-vmware

For this deployment I will be putting it into production so will be giving it 32GB or RAM and 4 x CPUs

As the Stealthwatch Management Console is not doing the heavy lifting (that is the job of the Flow Collector) it’s disk space requirement is not as big. Minimum disk space is 100GB

stealthwatch management console disk size

I will be giving this one 200GB

Once you have booted the VM and open the console you will be presented with the login screen

stealthwatch management console default password

The default username and password is sysadmin / lan1cope

Once logged in you will be presented with a configuration screen where you can change the management address

stealthwatch management ip address

Step through the screens and the appliance will reboot, when it’s back you should be able to https to the management page

You will get a Stealthwatch is initializing screen and then finally be presented with this screen

stealthwatch management console login screen

The default username / password for the https screen is admin / lan411cope

There is one more configuration screen to go through where you can define DNS, NTP, domain name and change the password and hostname if you want.

stealthwatch management console ve network setup

Whilst the Management Console is rebooting you should repeat the above process for the Flow Collector as the next step in the Management Console setup is to add the flow collectors.

stealthwatch flow collectors

Stealthwatch Flow Collector Virtual Setup

Once you have built the flow collector you need to go back to the Managemnt Console setup and add the IP address of your Flow Collector

Setting up and using Stealthwatch

TBC

 

 

 

 

 

Want to learn more about Network Automation?

Network Automation skills are becoming a must for network engineers of the future. Get started and learn the skills you need for the future with my course on Ansible for Network Engineers

Show me more about the network automation course

Reader Interactions

Related

Unicast Reverse Path Forwarding – Strict Mode
cisco zone based firewall topology
Zone Based Firewall Configuration Example
Block P2P traffic on Cisco router

Leave a Reply

Your email address will not be published. Required fields are marked *

The Author

roger perkin ccie network automation engineer
Roger Perkin, (CCIE #50038) is a Senior Network & Security Consultant.
Currently working for Softcat plc.
Roger is an evangelist for Network Automation and is continuing to develop skills in Ansible and the Devops culture.

Most Visited Pages

Software Upgrade Guides
Wireless Console Cable
Network Automation Tools 
Bose Connect Windows 10
Private VLANs explained

Ansible

Where are Ansible Modules stored
Ansible IOS Command Example
Ansile Backup Cisco Config
How to Install Ansible Tower
Ansible Network Automation Training

Home Office

Best Vertical Mouse
My Standing Desk

Personal Development

How to Focus

Get Connected