The document discusses a proof of concept for network security monitoring (NSM) in the cloud. It outlines the challenges of cloud NSM due to lack of network visibility. The proposed solution is a server-side NSM client that would capture full packet data and transfer it to a Security Onion server for analysis. The core design principles are to integrate with Security Onion, maintain NSM principles, support multiple platforms, be open source, and ensure security and long-term sustainability. The document describes the basic architecture using WinTAP and OpenVPN to bridge traffic between cloud servers and the Security Onion sensor. It provides details on installation, performance metrics, validation testing, and real world usage scenarios to demonstrate cloud NSM.