Need Wazug manager, indexer and dashboard install on a poublic IP VPS. How one goes about it?
12 views
Skip to first unread message
Zoltan Szasz Benedek
2:35 AM (14 hours ago) 2:35 AM
to Wazuh | Mailing List
As subject states how can one have Wazuh manager on a public static IP VPS server ?????
Rafael Bailon Robles
4:02 AM (13 hours ago) 4:02 AM
to Wazuh | Mailing List
Yes, this deployment is fully supported. When all components run on the same VPS, they share the same public IP and are differentiated by service ports.
#### Component behavior on a shared public IP
- Wazuh Manager:
- Agents connect to the VPS public IP (or DNS) on manager ports.
- Wazuh Dashboard:
- Users open the dashboard using the same public IP (or DNS) on the web port.
- It is publicly reachable only if that web port is exposed.
- Wazuh Indexer:
- Used by Wazuh services; it is not the endpoint agents use.
- Internal service communication on the same VPS.
#### Official documentation
- Quickstart
- Installation guide
- Architecture and required ports
- Agent enrollment
- Wazuh server (Manager)
- Wazuh indexer
- Wazuh dashboard
#### Component behavior on a shared public IP
- Wazuh Manager:
- Agents connect to the VPS public IP (or DNS) on manager ports.
- Wazuh Dashboard:
- Users open the dashboard using the same public IP (or DNS) on the web port.
- It is publicly reachable only if that web port is exposed.
- Wazuh Indexer:
- Used by Wazuh services; it is not the endpoint agents use.
- Internal service communication on the same VPS.
#### Official documentation
- Quickstart
- Installation guide
- Architecture and required ports
- Agent enrollment
- Wazuh server (Manager)
- Wazuh indexer
- Wazuh dashboard
Rafael Bailon Robles
5:11 AM (12 hours ago) 5:11 AM
to Wazuh | Mailing List
Three practical points may help here:
1. A VPS with a public static IP is not a special case. For Wazuh, it is just another server, the same as an EC2 instance or any other VM.
2. In a single-server deployment, Manager, Indexer, and Dashboard can run on the same VPS and share the same public IP. They are separated by ports, not by different IP addresses.
3. The important part is not the VPS itself, but having control over public access.
Public access control:
- Open only required ports in the provider firewall/security group.
- Mirror the same rules in the OS firewall.
- Publish Dashboard only if you need Internet access.
- Keep Indexer private unless you have a specific need.
- Restrict source IPs where possible.
Deployment notes (using public IP in config):
- Use the public IP as the Manager endpoint for agent enrollment.
- Use that same public IP/DNS as the Manager address in agent configuration.
- Use that same public IP/DNS for Dashboard access URL.
- Keep one consistent endpoint value across deployment docs and configs to avoid enrollment/connection issues.
So yes, a public-IP VPS is a valid and supported way to deploy Wazuh. The key is simply that the server is reachable and that public access is properly controlled.
1. A VPS with a public static IP is not a special case. For Wazuh, it is just another server, the same as an EC2 instance or any other VM.
2. In a single-server deployment, Manager, Indexer, and Dashboard can run on the same VPS and share the same public IP. They are separated by ports, not by different IP addresses.
3. The important part is not the VPS itself, but having control over public access.
Public access control:
- Open only required ports in the provider firewall/security group.
- Mirror the same rules in the OS firewall.
- Publish Dashboard only if you need Internet access.
- Keep Indexer private unless you have a specific need.
- Restrict source IPs where possible.
Deployment notes (using public IP in config):
- Use the public IP as the Manager endpoint for agent enrollment.
- Use that same public IP/DNS as the Manager address in agent configuration.
- Use that same public IP/DNS for Dashboard access URL.
- Keep one consistent endpoint value across deployment docs and configs to avoid enrollment/connection issues.
So yes, a public-IP VPS is a valid and supported way to deploy Wazuh. The key is simply that the server is reachable and that public access is properly controlled.
Reply all
Reply to author
Forward
0 new messages