Supported features by platform

Available Deep Security 11.0 features vary by operating systems and platforms and which version of the Deep Security Agent (if any) is installed.

For previous versions of Deep Security, see Supported Features by Platform documentation for previous versions of Deep Security.

For information on what agent versions the Deep Security Manager 11.0 supports for each operating system, see Deep Security Agent platforms .

Platforms

Windows (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-endation Scan Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Windows 7 32  
Windows 7 64
Windows Server 2008 32  
Windows Server 2008 64
Windows Server 2008 R2 64
Windows 8 32  
Windows 8 64
Windows 8.1 32  
Windows 8.1 64
Windows 10 32 (2)  
Windows 10 64 (2)
Windows Server 2012 64
Windows Server 2012 R2 64
Windows Server Core 2012 64
Windows Server Core 2012 R2 64
Windows Server 2016 Version 1607 64
Windows Server 2016 Version 1709 (RS3) 64
Windows Server 2016 Version 1803 (RS4) 64 (5)
Windows Server 2019 Version 1809 64 (5)

Red Hat Enterprise Linux (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Red Hat Enterprise Linux 6 32 (7)  
Red Hat Enterprise Linux 6 64 (7) (1)  
Red Hat Enterprise Linux 7 64 (7) (1)

CentOS (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
CentOS 6 32 (7)  
CentOS 6 64 (7) (1)  
CentOS 7 64 (7) (1)

Oracle Linux (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Oracle Linux 6 32  
Oracle Linux 6 64 (7) (1)  
Oracle Linux 7 64 (7) (1)  

SUSE Linux (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
SUSE Linux Enterprise Server 11 32 (7)  
SUSE Linux Enterprise Server 11 64 (7)  
SUSE Linux Enterprise Server 12 64 (7) (1)  

Ubuntu (11.0 agent)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Ubuntu 16 64 (7) (1)  
Ubuntu 18 64 (4) (7) (1)  

Debian (11.0 agent)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Debian 7 64              
Debian 8 64 (7)     (1)    
Debian 9 64 (7)     (1)    

CloudLinux (11.0 agent)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Cloud Linux 6 64 (6) (7)     (1)    
Cloud Linux 7.1 64 (7) (1)  

Solaris (11.0 Agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Solaris 10 (6)          
Solaris 11 (6)                

Amazon Linux (11.0 agents)

Anti-Malware Web Reputation Service Firewall Intrusion
Prevention
System
Integrity
Monitoring
Log Inspection Application Control Recomm-
endation Scan
Relay FIPS mode
  Real-time On-demand Real-time On-demand
Feature set 1 Feature set 2 Feature set 1 Feature set 2 Unencrypted Traffic SSL Encrypted Traffic File and Directory Scans Scans of Running Services, Processes, Listening Ports File and Directory Scans Registry Scans Scans of Running Services, Processes, Listening Ports
Amazon Linux 64 (7) (1)  
Amazon Linux 2 64 (7) (1)  

Feature set 1 includes signature-based file scanning, spyware scanning, and document exploit protection.

Feature set 2 includes behavior monitoring, process memory scanning, and registry scanning.

1 This platform supports enhanced real-time integrity monitoring. It uses the application control driver to provide file monitoring and captures information about who made changes to a monitored file.

(2) Microsoft releases regular, semi-annual releases for Microsoft Windows 10. For details about which specific releases are supported, see Deep Security Support for Windows 10.

(3) Requires Deep Security (agent and manager) 11.0 Update 1 or a later update.

(4) Requires Deep Security (agent and manager) 11.0 Update 2 or a later update.

(5) Requires Deep Security (agent and manager) 11.0 Update 4 or a later update.

(6) Requires Deep Security (agent and manager) 11.0 Update 6 or a later update for Solaris 10 and Solaris 11.0–11.3. Requires Deep Security (agent and manager) 11.0 Update 7 or a later update for Solaris 11.4.

(7) Real-time Anti-Malware support on Linux: Real-time Anti-Malware scanning is highly dependent on the file system hooking implementation, so file system incompatibility can cause issues with this feature. The following table shows which file systems are compatible with the feature:

File system type Deep Security Agent version
11.0 10.3 10.2 10.1 10.0 9.6
Disk file systems ext2
ext3
ext4
XFS
Btrfs
VFAT
Optical discs ISO 9660
Special file systems tmpfs
aufs  
OverlayFS
Network file systems
(see Note, below)
NFSv3
NFSv4
SMB
CIFS
FTP

To protect network file systems, you must select Enable network directory scan in the malware scan configuration. For information, see Scan a network directory (real-time scan only).

Supported Features by Platform documentation for previous versions of Deep Security