Topology

The Topology page displays an interactive diagram that uses color-coded icons to show the distribution of exposures and threats across your network assets.

Topology allows you to select regions or assets to see details about the item, exposures, and remediations for those exposures.

Access the Topology page in the Alert Logic console under the Overview tab, and then click the Topology subheading.

Topology page

The Topology page header allows you to specify a deployment and a region, and displays the number of VPCs, VNETs or networks, subnets, and hosts in that selected deployment.

The Topology menu bar allows you to group the assets displayed in the diagram, customize how and what assets are displayed, view details on the status of those assets, and search for specific assets.

Specify a deployment

Use the Deployment drop-down to switch the displayed topology diagram to another deployment.

Specify a region

By default, the displayed topology diagram includes all regions in the selected deployment. If your deployment includes multiple regions, you can click the All Regions drop-down menu to specify a single region for a more focused view of deployment assets.

Customize the diagram display

The Alert Logic console allows you to customize your view of the topology diagram.

Group by — Click the Group by drop-down menu to if you want to specify the grouping of regional assets to VPC, VNET, or network, or subnet. By default, the topology diagram groups assets by region.

Scope — Click Scope icon to only include assets within the deployment scope in the topology diagram.

Incidents — Click the Incidents icon to display the topology diagram with asset icons that appear in the color that identifies their threat levels. Color codes for incident states are as follows:

  • Red: Critical
  • Orange: High
  • Yellow: Medium
  • Gray: Low

Remediations — Click Remediations icon to display the topology diagram with asset icons that appear in colors that identify their exposure levels. Color codes for remediation states are as follows:

  • Red: Critical
  • Orange: High
  • Yellow: Medium
  • Gray: Low

Scan map — Click Scan map to display the topology diagram with asset icons that appear in colors that identify their scan states. Color codes for scan states are as follows:

  • Blue : Scanned
  • Dark gray with a blue halo: Currently being scanned
  • Dark gray: Not scanned
  • Light gray: Not in scope

Credentials map — Click Credentials map to display the topology diagram as a credentials map in which assets with assigned credentials are highlighted in green.

Add assets to view

You can add the following assets to the topology diagram:

Load balancers

Security groups

AMIs

Containers

Stopped instances

Asset details

Click a region, or asset to view its information, manage or add credentials, view incidents and recommended remediations for the asset, or add the asset to the Watch List.

Add or manage asset credentials

Alert Logic uses credentials to gather information about the assets in your environment. Click a region, VPCs, VNETs or networks, subnets, and hosts , and then click credentials to manage the asset credentials. For more information about configuration of asset credentials, see Set up authenticated scanning.

Take action on incidents and remediations

Click a region or asset, and then click action to see the incidents and recommended remediations for that asset, or to add the selected asset to the Watch List. Use the watch list to monitor selected assets for changes in threat levels.