openNAC Analytics Architecture¶
openNAC Enterprise solution is the next step in the evolution of data Network Access Control Solutions. openNAC is a simple but feature-rich and flexible solution to build and control enterprise Network Access, which combines existing OpenSource technologies with advanced features for multi-tenancy, automatic provision and elasticity. openNAC follows a bottom-up approach driven by sysadmins, devops and users real needs.
Sizing an openNAC Analytics Instances¶
The dimension of Network Access solution infrastructure can be directly inferred from the expected workload in terms of users, IPs, types of authentication or use cases deployed that the NAC must sustain. The workload may be complicated to estimate, but this is a crucial exercise to build an efficient NAC Architecture.
The hardware specifications for the openNAC Analytics are:
| Resources | Minimun | Recommended configuration |
|---|---|---|
| Memory | 16GB | 64 GB |
| CPU | 8 CPUs | 16 CPUs |
| Disk Size | 200 GB | According with deployment |
| Disk Type | SSD | SSD |
| Network | 2 NIC | 2 NIC |
Note
Depending of number of users and its behaviour, types of authentication, use cases, and retention period, Disk Space should be adapted. Remember that events are collected in indexes to be searchable and the data amount saved depends of disk space. Please ask to openNAC Team or any authorized partner to create an appropiate disk sizing.
Note
Two network interfaces are used for best practices of deployment, one interface is used for administration and the other one for service.