16. 12. 2014 Thomas Forrer NetEye

Eventhandler Replaces SNMP Traphandler

For the new release NetEye 3.5 we replaced the existing NetEye SNMP-Traphandler with the new so-called Eventhandler.

When we previously where able just to handle snmp traps, we now can also handle e-mails, sms and logs. This list clearly isn’t a closed one – it can be extended to other types of events.

NetEye Eventhandler: Events -> Rule Matching Engine -> Action (Event Monitoring)

Within the eventhandler module of NetEye 3.5 specific rules for any type of event can be defined, similar as using the traphandler (these rules can be modified and deleted at any time). Once an event takes place the rule matching engine searches for predefined rules and takes the corresponding action. Such actions can vary from sending an email/sms to displaying the event within the eventconsole (in prior versions called messageconsole) or even ignore it at all.

We developed the new eventhandler to address old traphandler performance issues. Thanks to a modern multiprocessed/multithreaded design, the module is now powerful enough to handle more than 10.000 events per second – basically the bottleneck is the incoming network traffic bandwith.

Moreover, the new dashboard shows at any time all live events coming into the rule matching engine, providing you with real time information about actual events.

 

Thomas Forrer

Thomas Forrer

Team Leader Research & Development at Würth Phoenix
Hi folks! I began loving computer since 1994, it was still the time of windows 3.1. Immediately I learned starting DOS games from the command promt, and while typing some white text on black background I felt like some hackish dude in a hollywoodian movie. Later during the studies at the university, I discovered the magic world of opensource, and it was love at first sight. Finally I got rid of BSOD's =) I love everything that is connected to some network, especially in a security perspective. My motto is: "With motivation, nothing is impossibile. It only requires more time."

Author

Thomas Forrer

Hi folks! I began loving computer since 1994, it was still the time of windows 3.1. Immediately I learned starting DOS games from the command promt, and while typing some white text on black background I felt like some hackish dude in a hollywoodian movie. Later during the studies at the university, I discovered the magic world of opensource, and it was love at first sight. Finally I got rid of BSOD's =) I love everything that is connected to some network, especially in a security perspective. My motto is: "With motivation, nothing is impossibile. It only requires more time."

Leave a Reply

Your email address will not be published. Required fields are marked *

Archive