Every now and then I like to keep you up to date about news in the ntop environment. This time it’s not news about analysis methods or software, but about a new hardware solution. If you’re someone looking for a hardware-based, scalable, optimized, and purpose-built solution, without the hassle of software installation, chances are you’re…
Read MoreFirst of all, I’ll briefly explain what the “Tornado” in NetEye actually is. Tornado is a Complex Event Processor that receives reports of events from data sources such as monitoring, email, and SNMP Traps, matches them against rules you’ve configured, and executes the actions associated with those rules, which can include sending notifications, logging to…
Read MoreAfter my last ntopng trainings, which I taught as an instructor, I noticed that many ntopng users were not familiar with the display of multiple time series charts overlapping in one graphic. Since I believe that this is one of the most important display options, I’ll use this blog post to show you how to…
Read MoreToday I want to report on my first experience with the new Alyvix integration in NetEye. At the same time as NetEye version 4.30, another revised update of the Alyvix module was released for NetEye. And just recently in August I had my first opportunity to install and operate this revised module together with its…
Read MoreAt the end of June, Luca Deri gave a webinar presenting the new features of the next ntopng release. I’d like to take this opportunity now to present these innovations to all of you. The main enhancements of the new release have been made in the following areas: Extension of the ntopng functionalities for the…
Read MoreToday I’d like to tell you about the possibility of alerting when anomalies in network traffic are encountered. I use ntopng to generate, evaluate and forward these alerts. If you don’t know about ntopng, let me briefly describe for you what it does. According to its creator, ntopng is a High-Speed Web-based Traffic Analysis and…
Read MoreI was recently with a customer when he pointed out to me that his NetEye 4 system with its RedHat 8 operating system was sending an extremely large number of DNS queries to the DNS servers. After quickly analyzing the situation I found that RHEL does not cache DNS queries by default. Obviously the customer…
Read MoreAs you’ve probably read in a previous blog by my colleague Jürgen Vigna, we use GlusterFS for particular requirements in our NetEye 4 cluster environments. After we completed the migration from the operating system CentOS 7 to RedHat 8, a few small things have changed or been updated. For all those who are new to…
Read MoreAs you probably all know, a new NetEye version is released every two months. For this reason I’d like to emphasize that we recommend regular updating of your NetEye system. In particular with version 4.23 we released a major update of the operating system from CentOS 7 to RedHat 8. Since we’re doing a lot…
Read MoreIn the last few weeks I installed and configured some nBoxes with the new ntopng version 5.2. Now I’d like to briefly tell you all about it. For all of you who don’t know what an nBox is, I’ll relay the official definition here: nBox Recorder is a network traffic disk recorder application. With nBox…
Read MoreToday my objective is to collect the performance metrics from various NetEye Icinga checks and write them out to Elasticsearch so I can apply Machine Learning (ML) algorithms to identify potential anomalies. This is a task that’s not possible with the open-source version of InfluxDB installed in NetEye. Moreover, this data in Elastic is used…
Read MoreAs is by now almost a tradition, this year I am again writing a blog post about the SOS JobScheduler. In this blog I’d like to introduce you to some major changes and improvements to the SOS Berlin JobScheduler. As has already been officially announced on the SOS Berlin website, beginning with Release 2.0.0 the…
Read MoreAs perhaps all NetEye users who have already used NetEye 3 know, NetEye 3 included the SMS Tools module. This simple module allowed a user to send SMS messages via a connected SMS gateway. These weren’t the usual monitoring alarms, but simple messages that were to be sent to various cell phones. Contacts could be…
Read MoreRecently I was asked why alerting in a NetEye 4 environment isn’t run via the central master, but instead via the satellites. The background to this is that the NetEye Master is located in Italy, which controls various satellites in other European and African countries. It’s therefore a strategic decision that alarms are sent from…
Read MoreAs is almost the norm by now, I am writing a blog on the subject of the SOS JobScheduler again this year. As you already know, Würth Phoenix is an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler…
Read More