Deployment
Supported clouds, EU regions, tenant isolation in the managed console, required network access, and running on-premises or air-gapped.
Which cloud providers are supported
Reporter (DaemonSet) and Reducer (sidecar) run anywhere -- on-premise, any cloud, Kubernetes, VMs.
Retriever currently supports AWS (S3, CloudWatch Logs). Azure and GCP support planned.
Self-hosted Console uses AWS Managed Services. Other cloud options are on the roadmap.
Is Log10x available in EU regions
Currently available in US regions. EU deployment is on our roadmap.
Self-managed deployments can run in any region today using your own infrastructure. Contact us for EU self-managed options.
All edge processing runs in your infrastructure regardless of region. Only the management console is region-specific.
How is tenant data isolated in the managed console
Each customer gets dedicated infrastructure in the managed console:
- Separate Prometheus workspace per customer -- metrics are never co-mingled
- Isolated Grafana organization -- dashboards and data sources are tenant-scoped
- AWS managed service infrastructure with VPC-level network isolation
- Access audited via AWS CloudTrail
Self-managed: Single-tenant by definition. You deploy your own Prometheus and Grafana.
What network access do edge apps require
| Connection | Destination | Port | Protocol | Required |
|---|---|---|---|---|
| Metrics push | prometheus.log10x.com (SaaS) or your TSDB |
443 | HTTPS / TLS 1.3 | Yes |
| Artifact pull | GitHub / Docker Hub | 443 | HTTPS | Deploy-time only |
| License validation | prometheus.log10x.com |
443 | HTTPS | Optional |
Air-gapped mode: After initial image pull to your private registry, edge apps require zero external connectivity. Configure metric output to your local TSDB and use a local License Receiver.
Can I run 10x fully on-premises or air-gapped
Yes. All 10x apps (Reporter, Reducer, Retriever, MCP), plus the Console (Grafana + Prometheus), can run entirely in your infrastructure with no external dependencies. In this model no data reaches Log10x systems — your existing compliance controls (SOC 2, HIPAA, PCI DSS) apply directly.
- Full feature parity with SaaS version
- Local authentication via Keycloak or your identity provider
- Private container registry support for fully disconnected environments
- 10x apps require zero external connectivity when configured to output metrics to your local TSDB
- Terraform templates provided for air-gapped environments