openNAC Sensor Software Architecture¶
openNAC Enterprise solution is the next step in the evolution of data Network Access Control Solutions. openNAC is a simple but feature-rich and flexible solution to build and control enterprise Network Access, which combines existing OpenSource technologies with advanced features for multi-tenancy, automatic provision and elasticity. openNAC follows a bottom-up approach driven by sysadmins, devops and users real needs.
Sizing an openNAC Sensor Instance¶
The dimension of Network Access solution infrastructure can be directly inferred from the expected workload in terms of users, IPs, types of authentication or use cases deployed that the NAC must sustain. The workload may be complicated to estimate, but this is a crucial exercise to build an efficient NAC Architecture.
The minimum recommended specs are for the openNAC solutions are:
| Resources | Minimum | Recommended configuration |
|---|---|---|
| Memory | 16 GB | 64 GB |
| CPU | 8 CPU | 16 CPUs |
| Disk Size | 100 GB | 100 GB |
| Disk Type | SCSI/SATA | SSD |
| Network | 2 NICS | 3 NICS |
Note
Two network interfaces are required, one for administration (Communication between openNAC devices) and one for production purposes (to SPAN Port).
Supported Network Cards
| Capacity | Medium | Network Card |
|---|---|---|
| 1Gb | Copper | Intel 8254x/8256x/8257x/8258x |
| 1Gb | Fiber | Intel 82575/82576/82580/I350 |
| 10Gb | Fiber | Intel 82599/X520/X540/X550 |
| 40Gb | Fiber | Intel X710/XL7100 |