Supported Systems

Operating Systems

The following operating systems are supported by the OSSEC agent:

• GNU/Linux (all distributions, including RHEL, Ubuntu, Slackware, Debian, etc)
• Windows 7, 8, 10
• Windows Server 2008r2, 2012, 2016
• FreeBSD (all current versions)
• OpenBSD (all current versions)
• NetBSD (all current versions)
• Solaris 10
• AIX 5.2 and 5.3
• Mac OS X 10.x
• HP-UX 11

Devices Supported via syslog

These systems/devices are also supported via remote syslog:

• Cisco PIX, ASA and FWSM (all versions)
• Cisco IOS routers (all versions)
• Juniper Netscreen (all versions)
• SonicWall firewall (all versions)
• Checkpoint firewall (all versions)
• Cisco IOS IDS/IPS module (all versions)
• Sourcefire (Snort) IDS/IPS (all versions)
• Checkpoint Smart Defense (all versions)
• Bluecoat proxy (all versions)
• Cisco VPN concentrators (all versions)

Devices and Operating Systems via Agentless

Using OSSEC agentless options, the following systems are also supported (for log analysis and file integrity checking):

• Cisco PIX, ASA and FWSM (all versions)
• Cisco IOS routers (all versions)
• Juniper Netscreen (all versions)
• SonicWall firewall (all versions)
• Checkpoint firewall (all versions)
• All operating systems specified in the “operating systems” section

Notes about support

The OSSEC project is made up of volunteers, mostly working on the project in their free time. Some systems will be harder to support due to availability. While we may all want a spare AIX or HP-UX system in our network closets, it’s a luxury not all of us can afford.