Deployment
Supported clouds, EU regions, required network access, and running on-premises or air-gapped.
Which cloud providers are supported
Reporter (DaemonSet) and Receiver (sidecar) run anywhere: on-premise, any cloud, Kubernetes, VMs.
Retriever currently supports AWS (S3, CloudWatch Logs). Azure and GCP support planned.
Optional hosted metrics (Grafana + Prometheus) run on AWS Managed Services; other clouds are on the roadmap. The agent, engine, and your TSDB run anywhere.
Is Log10x available in EU regions
The agent, engine, and your metrics store all run wherever you deploy them, including any EU region, today. Your data's residency is set by where your time-series database lives, which is yours.
The only US-bound piece is the optional hosted metrics backend; point metrics at your own EU TSDB to keep everything in region. EU hosting for that backend is on our roadmap; contact us for EU options.
What network access do edge apps require
| Connection | Destination | Port | Protocol | Required |
|---|---|---|---|---|
| Metrics push | your TSDB (or optional prometheus.log10x.com) |
443 | HTTPS / TLS 1.3 | Yes (online mode only) |
| License validation | prometheus.log10x.com |
443 | HTTPS / TLS 1.3 | Yes (online mode only) |
| Artifact pull | GitHub / Docker Hub | 443 | HTTPS | Deploy-time only |
Airgapped mode: Set airgapped: true in your Helm values (or TENX_AIRGAPPED=true in the engine environment) and the engine makes zero outbound calls to the Log10x SaaS gateway, no startup validation, no metrics reporting, no user-attribute enrichment. The license JWT is verified locally against the embedded public key. After initial image pull to your private registry, edge apps require zero external connectivity in this mode. Configure metric output to your local TSDB if you still want telemetry. Note: demo and limited license types cannot run airgapped, they warn and fall back to online.
Can I run 10x fully on-premises or airgapped
Yes. The engine, the agent and MCP server, Retriever, and the optional hosted metrics (Grafana + Prometheus) can all run entirely in your infrastructure with no external dependencies. In this model no data reaches Log10x systems; see Compliance for what that means for your audit.
- Full feature parity with the hosted option
- Local authentication via Keycloak or your identity provider
- Private container registry support for fully disconnected environments
- 10x requires zero external connectivity when set to
airgapped: true(see "What network access do edge apps require" above) and configured to output metrics to your local TSDB - Terraform templates provided for airgapped environments