AWS Deployment
Introduction
This Deployment Guide provides step-by-step instructions for deploying MetaDefender ICAP Server on Amazon Web Services infrastructure.
Organizations interested in protecting their solutions deployed in AWS can leverage MetaDefender to analyze and sanitize files residing, or transitioning, their AWS deployment. MetaDefender can scan and either sanitize or check for known vulnerabilities, depending on the type of traffic it's seeing. The ideal use case would be an organization that allows files to be uploaded to AWS through an external facing web portal. Analyzing files before they are made accessible to the end-users is critical to ensure that no malicious content is allowed and distributed through the web application.
Advanced attacks are concealing the malicious payload and are relying on productivity files (documents, pdfs, images) as a distribution mechanism. Productivity files allow active content to be leveraged, but these features are frequently exploited to execute the malicious behavior.
This guide is for IT infrastructure architects, administrators and DevOps professionals who are seeking to prevent potential malicious traffic being allowed in their AWS Cloud deployment. Threat Prevention is ensured for both productivity files that might be uploaded and for known vulnerabilities that can be identified for all running services/applications deployed in AWS. The vulnerability scanning is checking known vulnerabilities for unpatched OS and running applications.
MetaDefender is provided as:
- AMI through the AWS Marketplace (MetaDefender products)
- Packaged installer available for download through the My OPSWAT
- Helm Charts for MetaDefender products in GitHub together with the container images available in the OPSWAT Docker Hub Repository
There are currently no restrictions on AWS regions in which you can deploy MetaDefender. The only caveat is that MetaDefender is not available in AWS GovCloud at this time.
OPSWAT Contact Information
Sales:sales-inquiry@opswat.com
Support:https://www.opswat.com/support
Other:https://www.opswat.com/contact
For installing our solution, please review the guideline listed below:
Database Configuration
MetaDefender ICAP Server supports Amazon Aurora or AWS RDS that are service that deploy PostgreSQL servers provided by AWS. This section information is extended in AWS Database Services
EC2 Key Management
The EC2 key pair is only used to SSH or RDP to the EC2 instance. This is a very uncommon scenario, used primarily for debugging. You can create a new key pair, or use an existing pair.
Costs
MetaDefender is made available as an annual subscription. The only mandatory service that needs to be purchase is MetaDefender ICAP Server. MetaDefender ICAP Server is a paid service and is currently licensed on the BYOL (Bring Your Own License) model. Contact our sales team via our Contact form, available here: https://www.opswat.com/contact
Considering that are over 60 different options to license MetaDefender, it is highly coupled to the use case and the advanced features that you are considering deploying. Note that the more functionality you are adding to MetaDefender, the more need will be of CPU from the EC2 instance.
Our recommendation would be a minimum 8 vCPU for our lower tiers.
We recommend General Purpose (m family) and Compute Optimized (c family) instance types, preferably that are using NVMe-based SSDs for high throughput expectations:
- m5.xlarge
- m5.2xlarge
- m5.4xlarge
- c5d.2xlarge
- c5d.4xlarge
- c5d.8xlarge
We recommend to go with Reserved Instances, considering that you are committing to an annual subscription for MetaDefender.
For pricing per instance, please refer to the official AWS pricelist: https://aws.amazon.com/ec2/pricing/
Sizing
MetaDefender needs an EC2 instance with minimum 8 vCPU, in order to have an optimal response rate to submitted files for analysis. However, depending on the use case and expected throughput (analysis SLA), higher tier instances are recommended.
The system requirements (hardware and supported operating system) are defined here: System Requirements
Operation Guidance for EC2 deployments
Monitoring
For monitoring indications please read the (Link Removed) page created for this topic.
Troubleshooting
For troubleshooting indications please read the troubleshooting page created for this topic.
Support
To receive support, please visit our Support Portal. From there after you log in click on "Cases" on menu at the top of the page and then click "New" on the right hand side to create a new case.
Support policies, costs, levels and SLA's are described on our website, at the Support section: https://www.opswat.com/support. Please view our support tiers in the table below:
Note: Please visithttps://www.opswat.com/supportfor the most updated information on support.
| Standard | Gold | Platinum | |
|---|---|---|---|
| Prices | Included with your license | 20% ($500.00 minimum) * | 25% ($2000.00 minimum) * |
| Support Hours | |||
| Support via Portal Ticket System | 8AM to 5PM business days (local to you) | 7AM to 7PM business days (local to you) | 24 x 7 x 365 |
| Support via Chat | 8AM to 5PM business days (local to you) | 7AM to 7PM business days (local to you) | 24 x 7 x 365 |
| Support via Phone | 24 x 7 x 365 | ||
| Incident Response Times | |||
| Blocker Issues First Response Times | Within 1 business day | Within 2 hours | Within 1 hour |
| Non-blocker Issues First Response Times | Within 3 business days | Within 2 business days | Within 1 business day |
| Support Account Management | Yes | ||
| Support Account Manager | Yes | ||
| Quarterly Conference Call Reviews | Yes | ||
| Yearly Roadmap Review with the Product Team | Yes | ||
| Quarterly Summary Reports | Yes | Yes |
Accessibility
Reference Materials
All MetaDefender documentation is available on docs.opswat.com
Localization
MetaDefender products and documentation are available exclusively in English for now.