UTMStack Lab — Guide et Procédures de déploiement
UTMStack v11.2.8 Community Edition — Procédures de déploiement pour lab PME Suisse. Installation VMware, Suricata, CrowdSec, SOAR, OPNsense.
UTMStack Lab 🛡️
UTMStack v11.2.8 Community Edition — Deployment Guide Lab environment — Independent IT Consultant — Switzerland 🇨🇭
📋 Table of Contents
Lab Environment
| Component | Details |
|---|---|
| UTMStack | v11.2.8 Community Edition |
| Physical Host | HP ProDesk 400 G2 Mini, i7-6700, 32 GB RAM |
| Hypervisor | VMware Workstation |
| Firewall | OPNsense 26.1 |
| UTMStack OS | Ubuntu 24.04 |
| Windows Agents | gest-srv (10.100.1.16), DC01 (10.100.1.1) |
✅ Available Guides
🔧 Installation & Architecture
→ UTMStack v11 Installation on VMware Workstation
VM configuration, installation procedure, post-install optimizations, important ports.
🔍 Suricata Integration (OPNsense)
→ OPNsense → UTMStack Pipeline
Syslog architecture, native parser port 7019, OPNsense services, file rotation handling.
🛡️ CrowdSec Integration
Decision forwarding script, persistent service, CrowdSec dashboard.
📊 UTMStack Dashboards
→ Building Suricata & CrowdSec Dashboards
OpenSearch visualizations, v11-log-suricata-* index, geolocation fields.
⚡ SOAR & Automation
→ Automated CrowdSec Playbooks
YAML correlation rules, SOAR flows, automatic IP banning via SSH.
📋 OPNsense Post-Migration Checklist
GUI port 8081, OpenVPN TLS static key, syslog-ng restart hook.
📅 Documentation Roadmap
| Volume | Content | Pages | Status |
|---|---|---|---|
| V1 | Installation & Architecture | ~35p | 🟡 In Progress |
| V2 | SIEM Configuration | ~45p | 📋 Planned |
| V3 | Additional Modules | ~40p | 📋 Planned |
| V4 | SOAR & Incident Response | ~30p | 📋 Planned |
| V5 | Red Team / Kali Validation | ~70p | 📋 Planned |
☕ Support the Project
These guides represent dozens of hours of testing in real environments.
👉 
ℹ️ References and writing assistance provided by AI, with final human validation.
Hosted on GitHub Pages — Theme by orderedlist