Alert Logic® is currently not supported on OpenStack platforms. However, if the customer has an OpenStack private cloud running within a larger, traditional IT environment, some coverage is possible:
- Network Intrusion Detection System (IDS): Can be deployed as a physical appliance, collecting network traffic from SPAN sessions on physical switching infrastructure. Consideration would need to be given to the fact that virtualized network traffic within the OpenStack environment (ie. instance to instance communications) would not be visible to the appliance, potentially affecting our detection coverage.
- Log Management: Can be deployed agent-only, or agent + physical appliance, where required.
- Web-app IDS: This is the same scenario as the network IDS.
- In-line Web Application Firewall: This can be deployed as a physical appliance only.