This article helps you with installing Trisul Network Analytics in CentOS Operating System.

The Trisul Network Analytics system consists of 3 Core and 3 Optional Plugin packages.

Core packages These three packages are required.

1. trisul-probe | the probe node
2. trisul-hub | the hub node
3. webtrisul | the webserver

Plugin packages Optional packages to provide extra functionality.

1. trisul-badfellas | Badfellas plugin – compares traffic with public intel sources
2. trisul-geo | Geo plugin – adds country and ASN metering
3. trisul-urlfilter | Urlfilter – classifies web traffic

You can use yum or download and install the individual RPM packages manually.

If you plan on using yum you need to add the Trisul.org repository to your sources.

cd /etc/yum.repos.d
curl -LO https://trisul.org//trisulfull.repo

You can install trisul packages together at a stretch by using this command,

yum group list
yum groupinstall "Trisul Full"

You can also individually install the packages using yum

sudo yum install trisul-hub trisul-probe webtrisul

to install the plugins,

sudo yum install trisul-badfellas trisul-urlfilter trisul-geo

The RPM packages can be found on the Downloads page.

Download each RPM package and install them manually using rpm -Uvh trisul-probe-6.0_xxx.rpm etc.

After installing the core packages, You will get a message saying 'Welcome to Trisul Network Analytics'.

Once the Installation is done, You can access the Trisul UI which provides you with Real-Time Network Analytics. By Default,

For User Login, Username: user | Password: user

For Admin Login, Username: admin | Password: admin

After Logging in, The Trisul UI will look like this correesponding to the traffic(inbound/outbound).