As you begin installing agents and Threat Manager, Log Manager, Web Security Manager Premier, and Web Security Manager appliances, confirm that you meet system requirements.
Alert Logic provides you with an agent that gathers data - such as log messages, network traffic, metadata, and host identification information - that we need to collect for analysis of your environments. The main use for an Alert Logic virtual appliance is for network intrusion detection system and scanning in VMware deployments. The Alert Logic physical appliance is a server that is pre-configured by Alert Logic to collect intrusion detection system data and provide web application firewall services.
Note: The following information applies only to those customers who have Alert Logic® Cloud Defender, Threat Manager, Log Manager, or Web Security Manager entitlements.
Note: This information and more can also be found within Alert Logic Product Documentation.
Operating System and Browser Support
The Alert Logic console supports the current version and the previous major version of the following operating systems and browsers:
Operating System Support | Browser Support |
Mac |
Chrome Safari Firefox Opera Internet Explorer |
Note: Alert Logic cannot guarantee that other browsers and versions will work with our products.
Agent Requirements
The following table describes the basic requirements to install the Alert Logic agent:
Components | System Requirements |
Operating systems |
Windows users: Linux - Red Hat Enterprise users: Linux - SUSE users: Amazon Linux |
Memory | 96 MB of available memory |
Disk space for agent | 30 MB of available disk space |
Disk space for local cache | 500 MB of available disk space |
Packet access | WinPcap 4.1.2 |
CPU utilization | 1-10%, depending on log volume |
RAM | 15 MB maximum |
Disk space | 30 MB maximum |
Log collection support | Windows, Flat File |
Supported environments | Agent-only deployments with virtual and physical appliances, VPC, and public clouds |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit bulk encryption |
Log collection frequency | At minimum, every five minutes logs are collected and sent to Alert Logic cloud |
Host permissions | LocalSystem account has all necessary permissions by default |
Note: The agent requires DNS access to communicate with the Alert Logic server.
Threat Manager Appliance Requirements
Virtual Appliance
The following table describes the basic system requirements to install a Threat Manager virtual appliance:
Components | System Requirements |
CPU | 4 virtual CPUs |
RAM | 8 GB |
Disk space | 40 GB minimum |
Supported virtual environment | VMware only |
Encryption | TLS Standard (SSL): 1024-2048-bit key encryption, 246-bit AES bulk encryption |
Note: This is the recommended basic configuration for the Alert Logic Threat Manager product when deployed on a virtual appliance. Bandwidth volume directly impacts the ability of the appliance to inspect traffic. Therefore, high-traffic environments may require a virtual machine with additional processor and memory resources. If you want to run scans, consider 8 virtual CPUs and 16 GB of memory.
Physical Appliance
The following table describes the basic requirements to install a Threat Manager physical appliance:
Components | System Requirements |
CPU | Intel Xeon |
RAM | 4 GB DDR3 |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Log collection support | Both agent-based and agent-less Windows, Syslog, Flat File log collection |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit key AES bulk encryption |
Log Manager Appliance Requirements
Virtual Appliance
The following table describes the basic requirements to install a Log Manager virtual appliance:
Components | System Requirements |
CPU | 2 cores |
RAM | 2 GB |
Disk space | 1 GB-50 GB |
Supported virtual environment | VMware only |
Log collection support | Syslog via agent or agent-less; Windows and Flat File via agent only |
Encryption | TSL Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Note: The Log Manager virtual appliance is not designed to run in a public cloud environment. Use agent-only deployments instead.
Remote Collector
The following table describes the basic requirements to install a Log Manager remote collector:
Components | System Requirements |
CPU | 2 cores |
RAM | 2 GB |
Disk space | 10 GB minimum |
Supported operating systems | Windows and Linux |
Log collection support | Syslog only via port 1514 |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Log collection frequency | Every five minutes (minimum) - logs collected and sent to Alert Logic cloud |
Host permissions | LocalSystem account has all the required permissions by default |
Physical Appliance
The following table describes the basic requirements to install a Log Manager physical appliance:
Components | System Requirements |
CPU | Intel Xeon |
RAM | 4 GB DDR3 |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Log collection support | Both agent-based and agent-less Windows, Syslog, Flat File log collection |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Virtual Instance without Agent
The following table describes the basic requirements to install a Log Manager virtual instance without the agent:
Components | System Requirements |
Virtual CPUs | 2 |
Storage | 20 GB |
Memory | 2 GB |
Virtual network interface(s) | One interface with DHCP or manual IP addressing for management. If access to customer assets are restricted from management interface, an addition interface, internal to the customer environment with static access, is required for scanning. VMware OVF Tool |
Web Security Manager Premier Appliance Requirements
VMware Virtual Appliance
The following table describes the basic system requirements to install a Web Security Manager Premier virtual appliance:
Components | System Requirements |
CPU | 2 CPUs 64-bit |
RAM | 4 GB |
Disk space | 250 GB |
Virtual network interface(s) | An interface with an external IP address for management An interface with access to the web servers to be protected |
Encryption / decryption for SSL traffic | AES-NI CPU instruction set for encryption/decryption of SSL traffic on VMs and host OS is recommended |
Clustering | For clustering to work, make sure promiscuous mode, forged transmits, and MAC address changes are allowed on the VMware virtual switch (vSwitch) or the port group in the VMware ESX network configuration |
Physical Appliance
The following table describes the basic requirements to install a Web Security Manager Premier physical appliance:
Components | System Requirements |
Equipment | 100-250 Mbit |
CPU | Intel Xeon E3 4 cores |
RAM | 8 GB |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Encryption | TLS Standard (SSL): 1024-2048-bit key encryption, 256-bit AES bulk encryption |
Processing Capacity
The following table describes the bandwidth limits for the managed web application firewall physical appliance:
Appliance Type | Throughput | # of Virtual Hosts | # of SSL Certificates | # of Proxies |
Tier 1 – R410, R220, R230 | 0-250 Mbps | 1000 | 100 | 200 |
Tier 2 – R630 | 250-1000 Mbps | 1000 | 100 | 200 |
Web Security Manager Appliance Requirements
Virtual Appliance
The following table describes the basic system requirements to install a Web Security Manager virtual appliance:
Components | System Requirements |
CPU | 4 virtual CPUs |
RAM | 16 GB |
Disk space | 30 GB minimum |
Supported virtual environment | VMware only |
Encryption | TSL Standard (SSL): 1024-2048-bit key encryption, 256-bit AES bulk encryption |
Note: This is the recommended basic configuration for the Web Security Manager product when deployed on a virtual appliance. Bandwidth volume directly impacts the ability of the appliance to inspect traffic. Therefore, high traffic environments may require a virtual machine with additional processor and memory resources.
Physical Appliance
The following table describes the basic requirements to install a Web Security Manager physical appliance:
Components | System Requirements |
CPU | Intel Xeon |
RAM | 4 GB DDR3 |
Disk space | 500 GB |
Chassis | 1U rack mounted |
Power | 250W |
Log collection support | Both agent-based and agent-less Windows, Syslog, Flat File log collection |
Encryption | TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption |
Comments
0 comments
Please sign in to leave a comment.