TOC & Recently Viewed

Recently Viewed Topics

Tenable.io On-prem System Requirements

You can deploy Tenable.io on-prem on dedicated hardware using the on-prem ISO. You cannot deploy on-prem in virtual environments.

Hardware Requirements

Instead of hardware requirements, Tenable provides a transparent look at successful environments where on-prem has been tested. Consider the tested environments below and customize your environment depending on the needs of your organization.

Note: The Small asset size environment is the minimum supported environment for deploying Tenable.io on-prem

Number of Assets Tested Environment
Small (25,000 or fewer)

Processor: Intel® Xeon® E5-2620 v4 2.1GHz, 20M Cache, 8.0GT/s QPI, Turbo, HT, 8C/16T (85W) Max Mem 2133MHz (8 cores).

Memory: 4 x 16GB RDIMM, 2400MT/s, Dual Rank, x8 Data Width (64 GB).

RAID: 1 x PERC H730 RAID Controller, 1GB NV Cache / Raid 5.

Disk Space: 4 x Seagate 1TB 7.2K RPM SATA drives. For more information, see Disk Space Usage Guidelines.

Medium (25,001 - 50,000)

Processor: 2 x Intel® Xeon® E5-2620 v4 2.1GHz, 20M Cache, 8.0GT/s QPI, Turbo, HT, 8C/16T (85W) Max Mem 2133MHz (16 cores).

Memory: 4 x 32GB RDIMM, 2400MT/s, Dual Rank, x4 Data Width (128 GB).

RAID: 1 x PERC H730 RAID Controller, 1GB NV Cache / Raid 10.

Disk Space: 8 x 1TB 7.2K RPM SATA 6Gbps 2.5in Hot-plug Hard Drive. For more information, see Disk Space Usage Guidelines.

Network: 4 x 1GB.

Large (50,001 - 75,000)

Processor: 2 x Intel® Xeon® E5-2650 v4 2.2GHz, 30M Cache, 9.60GT/s QPI, Turbo, HT, 12C/24T (105W) Max Mem 2400MHz (24 total cores).

Memory: 8 x 32GB RDIMM, 2400MT/s, Dual Rank, x4 Data Width (256 GB).

RAID: 1 x PERC H730 RAID Controller, 1GB NV Cache / Raid 10.

Disk Space: 6 x 2TB 7.2K RPM NLSAS 12Gbps 512n 2.5in Hot-plug Hard Drive. For more information, see Disk Space Usage Guidelines.

Network: 4 x 1GB.

Extra Large (75,001 - 100,000)

Processor: 2 x 2 - Intel Xeon E5-2699 v4 2.2GHz, 55M Cache, 9.60GT/s QPI, Turbo, HT, 22C/44T (145W) Max Mem 2400MHz (44 total cores).

Memory: 8 x 32GB RDIMM, 2400MT/s, Dual Rank, x4 Data Width (256 GB).

RAID: 1 x PERC H330 Integrated RAID Controller.

Disk Space: 4 x 480GB Solid State Drive SATA Read Intensive MLC 6Gbps 2.5in Hot-plug Drive, S3520 and 1 x 1TB 7.2K RPM SATA 6Gbps 2.5in Hot-plug Hard Drive, 13G4 x 480 SSD 7200 RPM SATA, 1 x 1TB 7200 RPM SATA. For more information, see Disk Space Usage Guidelines.

Network: 4 x 1GB.

Disk Space Usage Guidelines

You may want to increase your available disk space depending on your number of assets and expected scan frequency.

Note: The following guidelines are based on average-sized scan results. If your scan results are smaller or larger than average, your actual usage varies.

Number of Assets Disk Space Used if Scanning Daily Disk Space Used if Scanning Weekly Disk Space Used if Scanning Monthly
2,000 1095 GB per year 156 GB per year 36 GB per year
20,000 10950 GB per year 1560 GB per year 360 GB per year
50,000 27375 GB per year 3900 GB per year 900 GB per year
100,000 54750 GB per year 7800 GB per year 1800 GB per year

Browser Requirements

For more information about on-prem configuration interface browser requirements, see http://cockpit-project.org/running.

Port Access Requirements

Your Tenable.io on-prem deployment requires access to specific ports for inbound and outbound traffic.

Inbound Traffic

Port Traffic
22 All SSH connections.
443 The Tenable.io interface and NNM scanner, Nessus scanner, and Nessus agent connections.
3000 The Grafana interface, if enabled.
8000 The Tenable.io on-prem configuration interface.
8900 The Kibana interface, if enabled.

Outbound Traffic

Port Traffic
443 The appliance.cloud.tenable.com server (for system updates) and the plugins.nessus.org server (for activation and plugin updates).

Copyright 2017 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.  Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc.  All other products or services are trademarks of their respective owners.