As you begin installing virtual and physical appliances for Alert Logic intrusion detection and managed web application firewall products, confirm that your systems meet appliance requirements.
The main use for an Alert Logic virtual appliance is for network intrusion detection system and scanning in VMware deployments, while the Alert Logic physical appliance is a server that is pre-configured by Alert Logic to collect intrusion detection system data and provide web application firewall services.
Note: The following information applies only to those customers who have Alert Logic® Managed Detection & Response entitlements.
Note: This information and more can also be found within Alert Logic Product Documentation.
Intrusion Detection System Appliance Requirements
Virtual Appliance
The following table describes the basic system requirements to install a virtual intrusion detection system appliance:
Virtual CPU cores | Components | System Requirements |
---|---|---|
4 cores | RAM | 16 GB |
Disk space | 40 GB minimum | |
Supported virtual environment | VMware and Hyper-V | |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption | |
Peak supported throughput | 500 Mbps | |
8 cores | RAM | 32 GB |
Disk space | 40 GB minimum | |
Supported virtual environment | VMware and Hyper-V | |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption | |
Peak supported throughput | 1 Gbps | |
16 cores | RAM | 64 GB |
Disk space | 40 GB minimum | |
Supported virtual environment | VMware and Hyper-V | |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption | |
Peak supported throughput | 2 Gbps (1 Gbps per fiber interface) |
Note: Bandwidth volume directly impacts the ability of the appliance to inspect traffic. Therefore, high traffic environments may require a virtual machine with additional processor and memory resources. If you want to run scans, consider 8 virtual CPUs and 16 GB of memory.
Physical Appliance
The following table describes the basic requirements to install an intrusion detection system physical appliance:
Components | System Requirements |
CPU | Intel Xeon |
RAM | 4 GB DDR3 |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Managed Web Application Firewall Appliance
VMware Virtual Appliance
The following table describes the basic system requirements to install a VMware virtual appliance:
Components | System Requirements |
CPU | 2 CPUs 64-bit |
RAM | 4 GB |
Disk space | 250 GB |
Virtual network interface(s) |
An interface with an external IP address for management An interface with access to the web servers to be protected |
Encryption / decryption for SSL traffic | AES-NI CPU instruction set for encryption/decryption of SSL traffic on VMs and host OS is recommended |
Clustering | For clustering to work, make sure promiscuous mode, forged transmits, and MAC address changes are allowed on the VMware virtual switch (vSwitch) or the port group in the VMware ESX network configuration |
Note: If your CPU usage is above 80% for extended periods, Alert Logic recommends adding processor resources.
Processing Capacity
The following table describes the bandwidth limits for the managed web application firewall physical appliances:
Appliance Type | Throughput | # of Virtual Hosts | # of SSL Certificates | # of Proxies |
Tier 1 – R410, R220, R230 | 0-250 Mbps | 1000 | 100 | 200 |
Tier 2 – R630 | 250-1000 Mbps | 1000 | 100 | 200 |
Note: This is the recommended basic configuration for the Alert Logic web application firewall product when deployed on a virtual appliance. Bandwidth volume directly impacts the ability of the appliance to inspect traffic. Therefore, high traffic environments may require a virtual machine with additional processor and memory resources. If you want to enable scans, the recommended configuration is 8 virtual CPUs and 16 GB of memory.
Physical Appliance
The following table describes the basic requirements to install a Web Security Manager Premier physical appliance:
Components | System Requirements |
CPU | Intel Xeon |
RAM | 4 GB DDR3 |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Comments
0 comments
Please sign in to leave a comment.