FAQs

1) What is the difference between the Self Hosted vs SaaS model?

Ans: The Self hosted model is an instance that is hosted for the MSP and in your cloud account. The only access that ConnectSecure has is to update the latest threat information and bug fixes and enhancements and when access is provided for support. The uptime of the Server is maintained by the partner and no data is transported to the ConnectSecure server except for a small set of anonymised statistics. The SaaS model shifts the burden of maintaining the uptime to ConnectSecure. However no data is transported to the ConnectSecure server except for a small set of anonymised statistics.

2) What are the security measures in place?

Ans: The system runs on Ubuntu Linux 20.04 that is hardened. It runs with SELinux and does not run with root privileges where not required. It has a built in DDOS(Distributed Denial-of-Service) avoidance system and WAF(Web Application Firewall) before the webserver. The code has been run through SonarQube and has been penetration tested. We patch vulnerabilities on the base system within 24 hours of a patch being available. All actions on the UI and backend are audited and presented in the UI.

3) What ports need to be opened between the agent and the server?

Ans: Ports 4505,4506, and 443 must be opened inbound on the server from the agent machines. For SaaS, we only need 443 for V3 and all three ports for V2 on premise.

4) How do you backup the server?

Ans: We can setup a backup to a S3 bucket that you can restore from in case of the Self hosted options. One can use AWS and Azure snapshot backups to get the older version of a server restored.