Versions Compared

Version Old Version 3 New Version 4
Changes made by

maria ieropoulos

Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The Snare Central is capable of running on a variety of hardware configurations, from laptops, right up to Linux partitions on mainframe systems and VMs. Hardware requirements are significantly dependent on the volume of audit received by the Snare Central, and the type and number of audit objectives defined. As an appliance-style solution, expanding storage post-install is not a supported option. supported, however, It is therefore recommended that storage allocation is sized with a view towards long term requirements.
However, in order for the Snare Central to be in a supported configuration, the following requirements MUST be followed. There should be no deviations from the specifications listed below.

Info
titleSnare Central - Minimum Hardware Requirements
  • A 64-bit x86 compatible CPU (eg: Pentium Core I5, AMD64), preferably with two cores or more.
  • One or more 500GB hard disk disks or larger. This These should be recognized by an operating system as one single disk, and may be either IDE, SATA ,Fiber Channel SAN or SCSI. Hardware RAID may be used, as long as the RAID controller is capable of either emulating normal IDE/SATA/SCSI protocols, or has a supported driver available in Snare.
  • An IDE, SATA or USB DVD writer supported by Snare. Most modern CD/DVD writers are ATAPI compatible, and will therefore work with the Snare Central. Some brands of USB Writers may be supported. Please consult the general compatibility notes below for more details.
  • 2 Gb RAM minimum, 4GB recommended or more.
  • A 100 megabit, or (preferably) a 1000 megabit (1 Gigabit) network card.

  • Keyboard, mouse and monitor as appropriate. 


This configuration may also be appropriate for sites with a medium to large number of source systems, that just want to use the Snare Central for the reflector functionality, and do not require any local reporting or data analysis. Reflector-only sites with high volumes of incoming data, or a count of source agents that is in the upper quarter of the 'larger configuration maximum, may need to increase the CPU and memory capacity to cope with the additional load.

...

Info
titleSnare Central- Larger Configurations

Moderate environment up to 2,000 systems (<= 5,000 EPS)

  • A 64-bit x86 compatible CPU (eg: Pentium Core I7, Xeon), preferably with four (4) cores (8 virtual cpu's) or more.
  • One or more 1TB hard disk disks or larger. This These should be recognized by an operating system as one single disk, and may be either IDE, SATA, Fiber Channel SAN or SCSI. Hardware RAID is recommended to be used, as long as the RAID controller is capable of either emulating normal IDE/SATA/SCSI protocols, or has a supported driver available in Snare.
  • An IDE, SATA or USB DVD writer supported by Snare. Most modern CD/DVD writers are ATAPI compatible, and will therefore work with the Snare Central. Some brands of USB Writers may be supported. Please consult the general compatibility notes below for more details.
  • 8 Gb RAM minimum, 16 GB RAM or more.
  • A 100 megabit, or (preferably) a 1000 megabit (1 Gigabit) network card.

  • Keyboard, mouse and monitor as appropriate. 


For large to very large environments please contact your Snare Sales representative.

...

Info
titleSnare Central - AMC Configurations

Where Snare Central is used just for Agent Management then the disk space requirements can be reduced as the system is not collecting any logs

  • A 64-bit x86 compatible CPU (eg: Pentium Core I5, AMD64), preferably with two cores or more.
  • 100GB 350GB hard disk or larger. This should be recognized by an operating system as one single disk, and may be either IDE, SATA ,Fiber Channel SAN or SCSI. Hardware RAID may be used, as long as the RAID controller is capable of either emulating normal IDE/SATA/SCSI protocols, or has a supported driver available in Snare.
  • An IDE, SATA or USB DVD writer supported by Snare. Most modern CD/DVD writers are ATAPI compatible, and will therefore work with the Snare Central. Some brands of USB Writers may be supported. Please consult the general compatibility notes below for more details.
  • 4GB recommended or more.
  • A 100 megabit, or (preferably) a 1000 megabit (1 Gigabit) network card.

  • Keyboard, mouse and monitor as appropriate. 


Note: If there is less than 300GB 350GB of disk allocated to the system, it will default to a single partition AMC configuration. Only environments using 300GB 350GB or more will use the new disk layouts as per Appendix B.

...