Alert Logic Requirements for Virtual and Physical Appliances

Requirements for Alert Logic IDS virtual appliances

Bandwidth volume directly impacts the ability of the appliance to inspect traffic. High-traffic environments may require a virtual machine with additional processor and memory resources.

The following table describes the basic system requirements to install a virtual IDS appliance:

Virtual CPU cores Components System Requirements
4 cores RAM 16 GB
Disk space 40 GB minimum
Supported virtual environment VMware and Hyper-V
Encryption TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption
Peak supported throughput 500 Mbps
8 cores RAM 32 GB
Disk space 40 GB minimum
Supported virtual environment VMware and Hyper-V
Encryption TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption
Peak supported throughput 1 Gbps
16 cores RAM 64 GB
Disk space 40 GB minimum
Supported virtual environment VMware and Hyper-V
Encryption TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption
Peak supported throughput 2 Gbps (1 Gbps per fiber interface)

Requirements for Alert Logic Managed Web Application Firewall (WAF) appliances

VMware Managed WAF virtual appliance

The following table describes the basic system requirements to install a VMware virtual appliance:

Components System Requirements
CPU 2 CPUs 64 bit
RAM 4 GB
Disk space 250 GB
Virtual network interface(s) An interface with an external IP address for management
An interface with access to the web servers to be protected
Encryption / Decryption for SSL traffic AES-NI CPU instruction set for encryption/decryption of SSL traffic on VMs and host OS is recommended
Clustering For clustering to work, ensure promiscuous mode, forged transmits, and MAC address changes are allowed on the VMware virtual switch (vSwitch) or the port group in the VMware ESX network configuration

If your CPU usage is above 80 percent for extended periods, Alert Logic recommends adding processor resources.

Physical Managed WAF appliance capacity

The following table describes the bandwidth limits for the Managed WAF physical appliances:

Appliance type Throughput Number of Virtual Hosts Number of SSL Certificates Number of Proxies
Tier 1 - R410, R220, R230 0-250 Mbps 1000 100 200
Tier 2 - R630 250-1000 Mbps 1000 100 200

This is the recommended basic configuration for the Managed WAF product when deployed on a virtual appliance. Bandwidth volume directly impacts the ability of the appliance to inspect traffic. Therefore, high traffic environments may require a virtual machine with additional processor and memory resources.

Physical Managed WAF appliance specifications

The following table describes the specifications for the physical appliance:

Components System Specifications
CPU Intel Xeon
RAM 4 GB DDR3
Disk space 500 GB
Chassis 1U rack mounted
Power 250W
Encryption TLS Standard (SSL): 2048-bit key encryption, 256-bit AES bulk encryption