Amazon AWS Network IDS/IPS Cloud Security

MetaFlows offers a network intrusion detection software solution specifically designed for virtual cloud environments such as Amazon AWS. Our SaaS turn-key solution (MSS-AWS) can be easily deployed in any existing cloud infrastructure to shut down network threats and record, scan and validate all data communications of your cloud-based assets as if they were in a LAN.

How it works

Deploy the MetaFlows Security System in the cloud.
  • Create an MSS-AWS sensor by installing our intrusion detection software in a Linux RHEL/CentOS virtual instance dedicated to monitor the LAN traffic of your cloud. Or use a pre-configured MetaFlows AMI.
  • Install agents on your cloud instances to forward promiscuous traffic through an encrypted tunnel to the MSS-AWS sensor (thus creating a Virtual TAP).
  • The sensor then analyzes the forwarded traffic in real time to generate security events based on 40,000 Emerging Threats IDS signatures and our malware analysis system.
  • Use a standard Browser to perform detailed forensic analysis of incident reports, mange IPS and other policies and user-defined reporting.
  • You can also perform real time and historical IP traffic analysis to see the content of all your network communications!


Our network intrusion detection system generates an unprecedented amount of useful security information. Multiple event types: IDS, Service/Host Discovery, Syslog, File transmission analysis (network antivirus/sandboxing), Intrusion prevention notifications, Multi-session Incident reports, and WAF notifications can be exported to any existing syslog management system (SIEM) or the award winning MetaFlows Security Console.

Splunk or Qradar applications are available for quick integration.

Splunk Application snapshot
Schedule a Demo