MineMeld is a low latency processor of indicators feeds. You can think of it as the Swiss army knife of feeds. It can be used to continuously retrieve indicators from external sources, process them and produce new feeds that can be directly consumed by Palo Alto Networks platforms. Viceversa it can be used to continuosly retrieve indicators from Palo Alto Networks platforms and produce feeds that can be consumed by trusted peers and 3rd party security platforms.
A typical installation of MineMeld is made of different components, all of them will be made available in Open Source after the launch. MineMeld has been designed to run on a Linux system even with reasonably low system resources (1 VCPU and 1GB of RAM).
To quickly set up a basic installation of MineMeld a pre-configured loader is provided for the Ubuntu 14.04 LTS cloud images. The loader can be used to bootstrap MineMeld on all the platforms supported by Ubuntu cloud images: VMWare desktop, VMWare ESXi, Amazon EC2, OpenStack, KVM. It should work even on the good old bare metal!
At the first boot the loader will connect to the minemeld auto update API to retrieve and install the latest available release of MineMeld. So, yes, you need Internet connectivity to install MineMeld for the first time.