Option 1: Use Network Sensor CloudFormation Template

A CloudFormation template is provided to simplify deployment of Network Sensor. You can access the template by clicking here: https://rapid7-cloudformation-templates.s3.amazonaws.com/sensor/Network_Sensor_Cloudformation.json.

How to deploy the Insight Network Sensor for AWS

In this video, learn how to deploy the Insight Network Sensor for AWS using a CloudFormation template and configure mirroring. You can also follow the steps below to deploy the CloudFormation template.

CloudFormation Template Resources

The CloudFormation template creates the following resources for you:

• Sensor EC2 instance with:
  • Size t3.xlarge
  • Amazon Linux2
  • 2 Network Interfaces (Platform Comms and Mirror)
• A Mirror Filter
• A Mirror Target
• Various tags to help identify resources

When the instance launches, it installs the Network Sensor automatically.

Deploy the CloudFormation Template

To deploy the CloudFormation template, follow these steps:

1. Sign in to your AWS Console.
2. From the “Services” dropdown, select the CloudFormation page.
3. In the top left corner, click the Create Stack button.

4. On the “Select Template” page, select the “Specify an Amazon S3 Template URL” option at the bottom of the page.
5. Enter the following value: https://rapid7-cloudformation-templates.s3.amazonaws.com/sensor/Network_Sensor_Cloudformation.json

6. Click the Next button.
7. Populate the form with the values defined in the required resources.

8. On the “Options” page, you can change any details as desired.
9. Click the Next button when you’re ready.
10. On the “Review” page, review your configuration options.
11. Select Create Stack.

The following shows the stack creation is complete:

12. Wait for the stack creation to complete.