Prerequisites

Software Prerequisites

The software required for installation is provided on the DeepFinder Download Site(http://download.deepfinder.co.kr).
For detailed installation instructions, please refer to the installation manual in this document.

DeepFinder Manager

The DeepFinder Manager is a server that centrally manages Agents. It provides functions to classify and manage web servers by domain, store and distribute all security policies, and save security threat audit data. An Agent control interface is provided to the administrator, which is divided into super administrator and general user modes based on permissions. The super administrator can change and apply all security policies, while the general administrator can only monitor real-time audit results.

DeepFinder Agent

The DeepFinder Agent is installed as a dynamic library module on the web server to be protected. It is responsible for inspecting the request/response data of the web application to detect and block threats according to security policies.

System Prerequisites

System Power Check

Check if the server power is securely connected and inspect the status of auxiliary power devices such as UPS.

Laptop and Peripheral Connection Check

Verify that peripheral devices such as a LAN cable and a console PC are correctly connected to the target system.

Minimum System Specifications Check

                                                                                                                                           

Module	Specification
Manager	CPU	2GHz (Quad Core or higher recommended)
	Memory	16GB or higher recommended
	DISK	500GB or more
	OS	Redhat-based Linux (e.g., Redhat Linux, Rocky Linux 9, Amazon Linux 2)
Agent	It operates as a dynamic library for the web server, consuming up to 10% of CPU and about 100MB of RAM, and requires 100MB of disk space for installation.

Tip

(Example) AWS EC2 Instance: m5.large tier or higher recommended

Network Prerequisites

For proper communication of DeepFinder, network connections between the components as shown below must be possible, and if a firewall is present, policy configuration is required.

                                                                                                                               

Connection Direction	PORT	Function
Manager ← Agent	TCP 10012 - 10020	Security Policy Synchronization
		Detection Log Transmission
Manager ← Admin PC	TCP 80/443	Security Policy Management
		Log and Dashboard Viewing
		Report Generation and Output

Tip

The Manager Server must allow Inbound rules for the ports specified in the table, and the Agent must allow Outbound communication to the Manager Server.
The listed ports are default values and can be changed according to the network environment.