How do I download an NSS from the admin portal?

Ensure that you have all the requirements in place before you start deploying the Nanolog Streaming Service (NSS). (See NSS Requirements.)

Before you download the NSS OVA file, you are required to enter information about your traffic and users so the Zscaler service can compute the appropriate resources for your NSS. The NSS buffer logs for at least one hour. If a SIEM goes offline for maintenance or if the connection between the NSS and the SIEM is disrupted, the NSS buffers the logs and sends them once the connection is re-established. The amount of memory required to buffer the logs is incorporated into the VM spec computation. The buffer size increases proportionally to the amount of RAM allocated to the NSS.

On the Zscaler admin portal, complete the tasks below to register an NSS and download the NSS OVA file and SSL certificate.

  1. Go to Administration > Settings > Nanolog Streaming Service.
  2. From the Nanolog Streaming Service page, click Add.
  3. In the Add NSS Server dialog, enter a name for the NSS.
    • NSS for Web is selected by default. If you are configuring an NSS for firewall logs, select NSS for Firewall.
    • The NSS is Enabled by default.
  4. Click Save to close the dialog.

On the NSS Servers tab of the Nanolog Streaming Service page, do the following:

  1. Click Download in the SSL Certificate column of the NSS that you are configuring, and then save the certificate. You will upload the certificate to the vSphere client.
  2. Click Download NSS Virtual Appliance to enter data that the Zscaler service needs to compute the appropriate resources for your NSS.
    See image.
  3. Do either of the following:
    • If you are configuring an NSS for web logs, enter the following information to determine the memory and bandwidth requirements, and then click Compute.
      • The peak number of transactions in an hour. You can retrieve this data by going to Analytics > Web Overview Dashboard. This is recommended to fine-tune the VM specification to your organization’s workload.
      • Enter the number of users. The service displays the recommended resources for NSS and the ESX/ESXi hypervisor.
        See image.
        Note that the recommended Internet bandwidth is the peak bandwidth required to download the logs from the Nanolog in the Zscaler service cloud. If the NSS is not allocated the bandwidth it needs, the logs could accumulate in the Nanolog. This can result in frequent connection resets and the logs will not be streamed to the NSS.
    • If you are configuring an NSS for firewall logs, enter the following information to determine the memory and bandwidth requirements, and then click Compute.
      • The peak number of sessions and DNS requests in an hour. You can retrieve this data by going to the Firewall Overview and DNS Overview dashboards. This is recommended to fine tune the VM specification to your organization’s workload.
      • Enter the number of users
        The service displays the recommended resources for NSS and the ESX/ESXi hypervisor.
        See image.
        Note that the recommended Internet bandwidth is the peak bandwidth required to download the logs from the Nanolog in the Zscaler service cloud. If the NSS is not allocated the bandwidth it needs, the logs could accumulate in the Nanolog. This can result in frequent connection resets, and the logs will not be streamed to the NSS.
  4. Click Download NSS Virtual Appliance to download the NSS OVA file.
  5. Click Close to exit the dialog.

download NSS

download NSS

VM specs

VM specs

VM specs firewall

VM specs firewall