Deploy the ExtraHop Trace Appliance on Google Cloud Platform
The following procedures explain how to deploy a virtual ExtraHop Trace appliance in a Google Cloud environment. You must have experience deploying virtual machines in Google Cloud within your virtual network infrastructure.
To ensure that the deployment is successful, make sure you have access and ability to create the required resources. You might need to work with other experts in your organization to ensure that the necessary resources are available.
System requirements
Your environment must meet the following requirements to deploy a virtual Trace appliance in GCP:
- You must have a Google Cloud Platform (GCP) account
- You must have the ExtraHop deployment file, which is available on the ExtraHop Customer Portal.
- You must have an ExtraHop product key.
- You must have packet mirroring enabled in GCP to forward network traffic to the ExtraHop system. Packet mirroring must be configured to send traffic to nic1 (not nic0) of the ExtraHop instance. See https://cloud.google.com/vpc/docs/using-packet-mirroring.
- You must have firewall rules configured to allow DNS, HTTP, HTTPS, and SSH traffic for ExtraHop administration. Seehttps://cloud.google.com/vpc/docs/using-firewalls.
- You must provision a GCP instance type that most closely matches the virtual
Trace appliance size, as follows:
Appliance Recommended Instance Type Packetstore Disk Reveal(x) ETA 1150v n1-standard-4 (4 vCPU, 15 GB memory) 1 TB to 2 TB standard persistent disk (pd-standard)
Upload the ExtraHop deployment file
- Sign in to your Google Cloud Platform account.
- From the navigation menu, click .
- Click the name of the storage bucket where you want to upload the ExtraHop deployment file. If you do not have a preconfigured storage bucket, create one now.
- Click Upload files.
- Browse to the extrahop-eta-gcp-<version>.tar.gz file you previously downloaded and click Open. Wait for the file to upload, and then continue to the next procedure.
Create the image
- From the navigation menu, click .
-
Click Create Image and complete the following
steps:
- In the Name field, type a name to identify the ExtraHop appliance.
- From the Source drop-down list, select Cloud Storage file.
- In the Cloud Storage file section, click Browse, locate the extrahop-eta-gcp-<version>.tar.gz file in your storage bucket and then click Select.
- Configure any additional fields that are required for your environment.
- Click Create.
Create the packetstore disk
- From the navigation menu, click .
-
Click Create Disk and complete the following
steps:
- In the Name field, type a name to identify the ExtraHop disk.
- From the Type drop-down menu, select Standard persistent disk.
- In the Source type section, click Image.
- From the Source image drop-down list, select the image you created in the previous procedure.
- In the Size (GB) field, type 1000. You can create a disk size between 1000 GB and 2000 GB.
- Configure any additional fields that are required for your environment.
- Click Create.
Register the appliance
Open a web browser and navigate to the ExtraHop system
through the configured management IP address. Accept the license agreement and then
log in. The default login name is setup and the password is the VM
instance ID. Type the product key to license the system.
Next steps
- After the appliance is licensed and you have verified that traffic is detected, complete the recommended procedures in the Trace Post-deployment Checklist.
Thank you for your feedback. Can we contact you to ask follow up questions?