This page explains the policy on third-party software, custom scripting, and additional cloud services within the Lobster Cloud environment. The policy exists to maintain the security, stability, and standardization of all customer environments.
Policy statement
Customers have no ability to install software or components in the Lobster Cloud environment. This includes third-party software, custom scripts, containers, and any other external applications. Lobster only provides components that are an integral part of the Lobster Data Platform. This policy applies without exception to all customer systems (production, test, DEV, DMZ).
Prohibited | Examples |
|---|---|
Third-party software | Virus scanners, VPN clients, monitoring agents, database tools, custom applications, printers, and printer software |
Custom scripts | Bash scripts, Python scripts, PowerShell scripts, shell scripts, or any other scripted automation |
Containers | Docker containers, Kubernetes pods, or any other container runtime |
Additional services | Any software or service not part of the standard Lobster Cloud provisioning |
Reasoning
This policy exists for the following reasons:
Reason | Explanation |
|---|---|
Cyber security | Uncontrolled software or scripts can introduce security vulnerabilities that compromise the integrity of the cloud environment. Lobster maintains complete control over the security posture of all cloud environments. |
Standardization | patches, |
Stability | Third-party software can interfere with the Lobster Data Platform, consume system resources, or cause unexpected behavior during maintenance windows. |
Support | standardized |
Supported AWS services
Only the following AWS services are provisioned and supported as part of the Lobster Cloud environment:
AWS service | Purpose |
|---|---|
EC2 | Lobster Data Platform |
RDS | Managed database instances (PostgreSQL/Aurora) |
VPC | Network Isolation and Security Groups |
Redis | Session management and caching (High Availability environments only) |
EFS | Shared file system (High Availability environments only) |
FSx | High-performance file system (High Availability environments with specific performance requirements) |
No additional AWS services are provisioned or supported beyond the list above.
What you can do
While the cloud infrastructure is fully managed and locked down, you have full flexibility within the Lobster Data Platform itself.
Capability | Details |
|---|---|
Platform configuration | Full access to configure profiles, mappings, channels, and integrations via the web interface. |
API integrations | Connect to external systems via standard protocols (HTTPS, SFTP, AS2, OFTP2) and APIs. |
Custom certificates | Install and manage your own SSL certificates within the Lobster Data Platform. |
User management | Create, modify, and delete user accounts within the platform. |
Custom network configurations
Custom network configurations are not permitted. This includes:
Prohibited | Details |
|---|---|
Additional listeners | You cannot add custom listeners or services on non-standard ports. |
Only the standard ports defined during provisioning are available. | |
Custom routing | You cannot modify routing tables, Network ACLs or VPC configurations. |
All network changes must be requested via support ticket to support@lobster.de and are subject to Lobster's standard configuration options.