Help Setting up Domain Name

[Joe]

Currently my dashboards are accessible from the public IP of my EC2 however I would like to change this so that they are accessible from a hostname. I have assigned the hostname to my EC2 but can someone help me with what configuration files for Wazuh that I need to update? 

[Matias Pereyra]

Hello Joe!
I might not be completely sure about what you need.

Are you unable to access the dashboard? Can you share the content of the file opensearch_dashboard.yml ? If you find that server.host is 0.0.0.0, then it should accept all the available IP addresses of the host.

Or maybe you refer to the certificate creation and deployment? This documentation section has more details: https://documentation.wazuh.com/current/user-manual/certificates.html

Regards.

[Jeff Dyke]

you need a route53 DNS record that points to that public IP.  Wazuh or the dashboard doesn't care what it's pointed at b/c it's going to make all calls to localhost:9200 for data from the indexer. You can use a built in/home rolled certificate, I use Lets Encrypt, mainly b/c of my other applications, and everything is on private subnets.  But ACM will create a cert for you, and actually create the DNS text records for validation.

Don't consider wazuh as part of this issue, this is the same thing you would do to serve and lockdown any application.

On Thu, Aug 3, 2023 at 3:26 PM Joe <joseph....@holistiplan.com> wrote:

Currently my dashboards are accessible from the public IP of my EC2 however I would like to change this so that they are accessible from a hostname. I have assigned the hostname to my EC2 but can someone help me with what configuration files for Wazuh that I need to update? 

--
You received this message because you are subscribed to the Google Groups "Wazuh mailing list" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/81ff42b4-0dee-4b57-85ae-5fa5d9932235n%40googlegroups.com.

[Joe]

Thank you, I do have an A record setup in route53 DNS pointing to the public IP of my EC2. My ping test to the hostname resolves the IP, however if I hit the hostname in a browser I do not get my Wazuh dashboards. This is why I thought maybe I had missed something within a Wazuh configuration file on my EC2 telling it to use the hostname and not the IP of the EC2 to load the dashboard interface.

[Jeff Dyke]

What do you get?  If ip worked that means security groups are likely working. 

To view this discussion on the web visit https://groups.google.com/d/msgid/wazuh/6ab65929-73d0-4dea-8247-07953d158b68n%40googlegroups.com.

[Joe]

Thanks for your help. I double-checked my DNS and I had a typo in the name. Once I corrected that, I was able to get to my dashboards via domain name. 

[Matias Pereyra]

Glad to know it's working Joe!
Thank you Jeff for your help.

[Rohan Goswami]

can you help me how have you configured wazuh on EC2 via public IP, i am struck here!!!! why executing certs file it is showing me error that The wazuh-indexer {IP} is a Public IP.

[Matias Pereyra]

Hi Rohan.

Please create a new thread so we can help you properly.

Regards.