Requirements for deploying MetaDefender OT Security

Component Criteria	MetaDefender OT Security Network Sensor	MetaDefender OT Security Site Bundle Server	MetaDefender OT Security AIO Server	MetaDefender OT Security Site Server	MetaDefender OT Security Enterprise Management Server
Software Installation options	Pre-Bundled Linux Image or VMWare virtual appliance (OVA file)	Pre-Bundled Linux Image or VMWare virtual appliance (OVA file)	Pre-Bundled Linux Image or VMWare virtual appliance (OVA file)	Pre-Bundled Linux Image or VMWare virtual appliance (OVA file)	Pre-Bundled Linux Image or VMWare virtual appliance (OVA file)
Typical number of Assets	Up to 200 Assets per Sensor Up to 500 Assets per Sensor	Up to 5,000 Assets per Site Server	Up to 5,000 Assets per Site Server	Up to 5,000 Assets per Site Server	Multiple Sites Supported
Network Throughput Processing	200Mbps 400Mbps ([1U server form factor](1U server form factor))	200Mbps 400Mbps ([1U server form factor](1U server form factor))	200Mbps 400Mbps ([1U server form factor](1U server form factor))	200Mbps 400Mbps ([1U server form factor](1U server form factor))	200Mbps 400Mbps ([1U server form factor](1U server form factor))
Typical HW specs	CPU Cores: 4 - 8 RAM: 8GB - 16GB Storage: 250GB - 500GB	CPU Cores: 16 - 32 RAM: 32GB - 64GB Storage: 4TB - 8TB	CPU Cores: 16 - 32 RAM: 32GB - 64GB Storage: 4TB - 8TB	CPU Cores: 16 - 32 RAM: 32GB - 64GB Storage: 4TB - 8TB	CPU Cores: 16 - 32 RAM: 32GB - 64GB Storage: 5TB - 10TB
Networking	3 x Gb Ethernet Interfaces Gbps Ethernet port: connects to the SPAN port on the switch of OT network, for passive monitoring/ discovery Gbps Ethernet port: connects to the OT network, for active discovery Gbps Ethernet port (Northbound interface): for connection to MD OT Security Site Manager. The same physical interface can be used for #2 and #3 if there will be appropriate network segmentation and/ or routing configurations. Using the interface #1 (which connects to the SPAN port of switch) with other purposes is NOT recommended as there is heavy network traffics at the SPAN port; and issues on inter-network connection (routing) observed at the interface connected to the SPAN port for some types of switch.	3 x Gb Ethernet Interfaces Gbps Ethernet port: connects to the SPAN port on the switch of OT network, for passive monitoring/ discovery Gbps Ethernet port: connects to the OT network, for active discovery Gbps Ethernet port (Northbound interface): for connection to MD OT Security Enterprise Manager. Using the interface #1 (which connects to the SPAN port of switch) with other purposes is NOT recommended as there is heavy network traffics at the SPAN port; and issues on inter-network connection (routing) observed at the interface connected to the SPAN port for some types of switch.	3 x Gb Ethernet Interfaces Gbps Ethernet port: connects to the SPAN port on the switch of OT network, for passive monitoring/ discovery Gbps Ethernet port: connects to the OT network, for active discovery Gbps Ethernet port (Northbound interface): for connection to MD OT Security Enterprise Manager. Using the interface #1 (which connects to the SPAN port of switch) with other purposes is NOT recommended as there is heavy network traffics at the SPAN port; and issues on inter-network connection (routing) observed at the interface connected to the SPAN port for some types of switch.	2 x Gb Ethernet Interfaces Gbps Ethernet port (Southbound interface): for connecting with the sensors Gbps Ethernet port (Northbound interface): for connection to MD OT Security Enterprise Manager.	2 (or 3) x Gb Ethernet Interfaces Gbps Ethernet port (Southbound interface): for connecting with the Site Managers Gbps Ethernet port: exposes the Enterprise Management Console, users accessing to the IP of this interface for interacting with the Enterprise Management Console Gbps Ethernet port (optional): for Enterprise Manager connecting to Internet for (online) license activation and auto update/ upgrade of MD OT Security product. The same physical interface can be used for #2 and #3 if there will be appropriate routing configurations.

Last updated on

Was this page helpful?