Set up the Broker VM on Google Cloud Platform (GCP)

You can deploy the Broker VM on Google Cloud Platform on which you can install applets that facilitate communication with external services.
You can deploy the Broker VM on Google Cloud Platform. The Broker VM facilitates communication with external services through the installation and setup of applets such as the syslog collector.
To set up the Broker VM on the Google Cloud Platform, you install the VMDK image provided in Cortex XDR. To complete the set up, you must have G Cloud installed and have an authenticated user account.
  1. Download the Broker VM VMDK image from Cortex XDR (see Configure the Broker VM).
  2. From G Cloud, create a Google Cloud Storage bucket to store the broker VM image.
    1. Create a project in GCP and enable Google Cloud Storage, for example: brokers-project. Make sure you have defined a
      Default Network
      .
    2. Create a bucket to store the image, for example: broker-vms
  3. Open a command prompt and run:
    gcloud config set project
    <project-name>
  4. Upload the VMDK image to the bucket, run:
    gsutil cp
    </path/to/broker.vmdk>
    gs://
    <bucket-name>
  5. Import GCP image.
    You can import the GCP image using either G Cloud CLI or Google Cloud console.
    The import tool uses Cloud Build API, which must be enabled in your project. For image import to work, Cloud Build service account must have
    compute.admin
    and
    iam.serviceAccountUser
    roles. When using the Google Cloud console to import the image, you will be prompted to add these permissions automatically.
    • gcloud CLI
      The following command uses the minimum required parameters. For more information on permissions and available parameters, refer to the Google Cloud SDK.
      Open a command prompt and run:
      gcloud beta compute images import <VMDK image> --os=ubuntu-1804 --source-file="gs://<image path>" --network=<network_name> --subnet=<subnet_name> --zone=<region> --async
    • Google Cloud Console
    1. Navigate to
      Compute Engine
      Images
      .
    2. Create Image
      .
    3. Complete the following fields:
      • Enter a meaningful
        Name
        for this image, for example: broker-9-0-32
      • Select
        Virtual disk (VMDK, VHD)
        as the
        Source
        .
      • To select the
        Cloud Storage file
        ,
        Browse
        and select the bucket and the VMDK image you uploaded.
      • Select
        Ubuntu 18.04 Bionic
        as the
        Operating system on virtual disk
        .
      • Allow Compute Engine to
        Install guest packages
        .
      • Create
        the image.
        The image creation process can take up to 20 minutes.
  6. When the Google Compute completes the image creation, create a new instance.
    1. From the Google Cloud Platform, select
      Compute Engine
      VM instances
      .
    2. Create instance
      .
    3. In Boot disk option, choose
      Custom images
      and select the image you created.
    4. In the Firewall section,
      Allow HTTPS traffic
      .
    5. Set up the instance according to your needs.
      If you are using the broker VM to facilitate only Agent Proxy, use
      e2-startdard-2
      . If you are using the broker VM for multiple applets, use
      e2-standard-4
      .
  7. Continue the steps to Configure the Broker VM.

Recommended For You