1. Introduction
The sizing requirements of the OneFirewall Alliance solution, depending on the Service Level Agreement (SLA) and the log throughput, are summarized in the following table:| OFA Type | Size | SLA | Capability | License |
|---|---|---|---|---|
| P-Micro (Collaudo/Test) | 8 vCPU / 24–32 GB RAM / 300 GB SSD | 99% (No High Availability) | 1 Tenant, no backup, 100–300 log/s, Non-scalable | Trial License |
| P-0 | 8 vCPU / 32 GB RAM / 1000 GB SSD | 99.9% (No High Availability) | 1 Tenant, up to 10 users per tenant, daily backup, 100–300 log/s, Non-scalable | Single Tenant License |
| P-1 | 3× 8 vCPU / 3× 32 GB RAM / 3× 10 000 GB SSD | 99.999% (High Availability) | 2–6 Tenants, up to 15 users per tenant, daily backup, 300–700 log/s, Non-scalable | Single Tenant License |
| P-2 | 3–5× 8 vCPU / 3–5× 32 GB RAM / 3× 1000 GB SSD | 99.9999% (High Availability) | 7+ Tenants, up to 30 users per tenant, daily backup, 700–1600 log/s, Scalable | While Label License |
2. P-Micro
The P-Micro sizing solution targets a testing environment, enabling the installation of the OneFirewall solution on a single VM.Requirements and Costs
| Requirements | Description | Monthly Cost (USD) |
|---|---|---|
| 1 VM (Compute Engine) | n2-standard-8 (Spot Instance) | 39.40 |
| 1 SSD (gp3) | 500 GB | 98.60 |
| Cloud NAT | Internet update, app.onefirewall.com, gitlab.com | 41.50 (100 GB/month) |
| Snapshot | N/A | 0 |
| Total | 179.50 USD/month |
sudoers privileges or unrestricted RBAC management).
3. P-0 (ProdSmall)
Requirements and Costs
| Requirements | Description | Monthly Cost (USD) |
|---|---|---|
| 1 VM (Compute Engine) | n2-standard-8 (Committed Use Discount) | 148.04 |
| 1 SSD (gp3) | 1000 GB | 197.20 |
| Cloud NAT | Internet update, app.onefirewall.com, gitlab.com | 41.50 (100 GB/month) |
| External Load Balancer 443 | e.g. onefirewall.example.it (or ingress GKE equivalent) | Variable |
| Snapshot | 1 per day | — |
| Total | 376.74 USD/month |
sudoers or unrestricted RBAC), and IAM rules for ingress and external load balancer 443.
4. P-1 (ProdMedium)
Requirements and Costs
| Requirements | Description | Monthly Cost (USD) |
|---|---|---|
| 3 VM (Compute Engine) — one per AZ (or GKE Multi-Node, Multi-AZ) | n2-standard-8 (Committed Use Discount) | 73 (GKE) + 444.12 |
| 3 SSD (gp3) | 1000 GB each | 591.60 |
| Cloud NAT | Internet update, app.onefirewall.com, gitlab.com | 41.50 (100 GB/month) |
| External Load Balancer 443 | e.g. onefirewall.example.it (or ingress GKE equivalent) | Variable |
| Snapshot | 1 per day | — |
| Total | 1108.72 USD/month |
sudoers or unrestricted RBAC), and manage IAM rules for ingress and external load balancer 443.
5. P-2 (ProdEnterprise)
Requirements and Costs
| Requirements | Description | Monthly Cost (USD) |
|---|---|---|
| 3–5 VM (Compute Engine) — one per AZ (or GKE Multi-Node, Multi-AZ) | n2-standard-8 (Committed Use Discount) | 73 (GKE) + 740.20 |
| 3 SSD (gp3) | 1000 GB each | 986.00 |
| Cloud NAT | Internet update, app.onefirewall.com, gitlab.com | 41.50 (100 GB/month) |
| External Load Balancer 443 | e.g. onefirewall.example.it (or ingress GKE equivalent) | Variable |
| Snapshot | 1 per day | — |
| Total (up to) | 1840.70 USD/month |
sudoers or unrestricted RBAC access, and appropriate IAM rules for ingress and external Load Balancer 443.