System Requirements

Supported Operating Systems

• Red Hat Linux 7.X, 8.X

• Oracle Linux 8.X, 9.X - Unbreakable Enterprise Kernel (UEK)

• CentOS Stream 8.X, 9.X (RHEL9-Compatible)

• AlmaLinux 8.X

• RockyLinux 8.X

Note: Classic CentOS 8 is no longer maintained and does not receive security updates. Customers should migrate to CentOS Stream 9, AlmaLinux 9, or Rocky Linux 9 for continued support and compliance with security policies.

Supported Web Browsers

• Google Chrome

• Mozilla Firefox

• Opera

• Microsoft Edge

Network Communication Requirements

From	To	Port	Protocol	Description
SIEM Agent	SIEM service	1514	TCP (default)	Agent connection service
		1514	UDP (optional)	Agent connection service (disabled by default)
		1515	TCP	Agent enrollment service
SIEM service		1516	TCP	SIEM cluster daemon
Source		****	UDP (default)	SIEM Syslog collector (disabled by default)
		****	TCP (optional)	SIEM Syslog collector (disabled by default)
SIEM service		55000	TCP	SIEM server RESTful API
Every ELS component	ELS Data Node	9200	TCP	License verification through License Service
Integration source		9200	TCP	ELS Data Node API
Other cluster nodes		9300	TCP	ELS Data Node transport
User browser	ELS Console	5601	TCP	Default GUI
		5602	TCP	Admin console
		5603	TCP	Wiki GUI
GUI	License Service	9000	TCP	Manage files, services and pipelines

Hardware Requirements

Minimum Requirements (Development/Testing)

Component	CPU	RAM	Storage	Network
All-in-One	4 cores	32 GB	500 GB SSD	1 Gbps
ELS Data Node	4 cores	16 GB	200 GB SSD	1 Gbps
ELS Console	2 cores	8 GB	50 GB	100 Mbps
ELS Network Node	2 cores	8 GB	50 GB	1 Gbps

Production Requirements (Recommended)

Component	CPU	RAM	Storage	Network
ELS Data Node	16+ cores	64 GB	1 TB NVMe SSD	10 Gbps
ELS Console	8 cores	32 GB	200 GB SSD	1 Gbps
ELS Network Node	8 cores	32 GB	200 GB SSD	10 Gbps
Note: RAM requirements updated to handle millions of events efficiently