Architecture Details

You can find the details of how we manage things behind the scenes

Deployment Options

Deployment Type
Node Count
CPU
RAM
Disk
OS

Minimum

1

4 cores

16 GB

200 GB SSD

Ubuntu 22.04.05 LTS

POC

1

8 cores

32 GB

200 GB SSD

Ubuntu 22.04.05 LTS

Production / Staging

3

4 cores

16 GB

200 GB SSD

Ubuntu 22.04.05 LTS

High Load Production

3

8 cores

32 GB

200 GB SSD

Ubuntu 22.04.05 LTS

For production environments, the master node should have at least a 1TB SSD for optimal performance and stability.

In production environments, nodes create two VLANs for communication: one for the Pod network (default: 10.42.0.0/16) and another for the Service network (default: 10.43.0.0/16). If there are issues with these subnets, nodes must be able to communicate at Layer 2 (L2) for proper functionality.

The Pod (default: 10.42.0.0/16) and Service (default: 10.43.0.0/16) CIDRs can be customized during the installation process.

You can download the check script from here to verify if your environment meets the requirements to run the Malwation HookMesh

Single Node Architecture

Malwation HookMesh needs various technologies to run. HookMesh setup script installs all these technologies automatically.

  • Kubernetes (K3s)

    • MongoDB

    • MinIO

    • RabbitMQ

    • Redis

    • Grafana

    • Promtail

    • Loki

    • Prometheus

    • Apache Tika Server

  • Containerd

Network Access Requirements

Outbound Rules

Protocol
Address
Port
Description

TCP

hub.malwation.com

443

Malwation image registry server. HookMesh downloads all container images from this server.

Inbound Rules

Protocol
Port
Description

TCP

443

HookMesh Web Interface and HookMesh API

TCP

25

HookMesh MTA server. This port is not required by default. It is required if you are using mail integration.

HookMesh Single Cluster Architecture

Multi Node Architecture

To use multi node architecture, you need at least 3 servers.

Malwation HookMesh needs various technologies to run. HookMesh setup script installs all these technologies automatically.

  • Kubernetes (K3s)

    • MongoDB

    • MinIO

    • RabbitMQ

    • Redis

    • Grafana

    • Promtail

    • Loki

    • Prometheus

    • Apache Tika Server

  • Containerd

Network Access Requirements (Each Server)

Outbound Rules

Protocol
Address
Port
Description

TCP

hub.malwation.com

443

Malwation image registry server. HookMesh downloads all container images from this server.

TCP

Local VLAN

2379-2380

Required for high availability.

TCP

Local VLAN

6443

K3s supervisors and Kubernetes API Server

UDP

Local VLAN

8472

Required for Flannel VXLAN

TCP

Local VLAN

10259

Kubelet Metrics

UDP

Local VLAN

51820

Required for Flannel with IPv4

UDP

Local VLAN

51821

Required for Flannel with IPv6

UDP

Local VLAN

5001

Required for embedded registry

Inbound Rules

Protocol
Port
Description

TCP

443

HookMesh Web Interface and HookMesh API

TCP

25

HookMesh MTA server. This port is not required by default. It is required if you are using mail integration.

TCP

2379-2380

Required for high availability.

TCP

6443

K3s supervisors and Kubernetes API Server

UDP

8472

Required for Flannel VXLAN

TCP

10259

Kubelet Metrics

UDP

51820

Required for Flannel with IPv4

UDP

51821

Required for Flannel with IPv6

UDP

5001

Required for embedded registry

HookMesh Multi Cluster Architecture

PreviousHow to InstallNextIntroduction

Last updated