Blog Entries

23. 11. 2022 Alessandro Valentini Events

Our Experience at SREcon22 Europe

Looking at how several companies have managed their services, we discovered a relatively new (for us) technical role, the Site Reliability Engineer. As IBM reports: The principle behind the SRE is that using software code to automate oversight of large software systems is a more scalable and sustainable strategy than manual intervention – especially as those…

Read More
05. 10. 2022 Alessandro Valentini DevOps

My OpenShift Journey #3: Active Directory Integration and User Management

In our migration journey from multiple VMs to OpenShift, one mandatory step is the integration with our company’s Active Directory. This is the default IdP for our services like Jenkins, NetEye, etc., and we want to centralize authentication and permissions as much as possible. Integration with OpenShift is less straightforward than it is with other…

Read More
14. 07. 2022 Alessandro Valentini DevOps

My OpenShift Journey #2: Nginx Load Balancing and SSL Termination

In a previous blog post I described how we installed our first OpenShift cluster and how we used HA Proxy as a load balancer. Our cluster is meant to host both internal services (like CI and docker registry) and public services, and we thus have to expose them on multiple domains with valid SSL certificates….

Read More
07. 07. 2022 Alessandro Valentini DevOps

My OpenShift Journey #1: Getting Started with a Cluster

Within our Research and Development team we maintain a set of both physical and virtual machines for many purposes: internal repository mirrors, CI/CD, testing, internal docker registry, etc… Maintaining them is demanding, especially considering that our infrastructure has grown over the years and was often configured by different colleagues using different software and tools. And…

Read More
06. 05. 2022 Alessandro Valentini Development, NetEye

Pinning a Module to a Specific Kernel Release

During our implementation of the NetEye migration to Red Hat 8 we decided to drop our internal mirror for system packages and instead rely on Red Hat’s official repositories. Our goal was to improve reliability, speed up the delivery of updates, and alleviate the development team’s workload. But it also introduced a new issue: we…

Read More
15. 03. 2022 Alessandro Valentini Bug Fixes, Log-SIEM, NetEye

Bug Fixes for NetEye 4.22

We fixed a wrong behaviour which causes neteye satellite config create to do not work when executed with –tenant parameter. For NetEye 4.22 we updated the following packages: elasticsearch, elasticsearch-autosetup, elasticsearch-neteye-config, filebeat, filebeat-autosetup, filebeat-neteye-config, apm-server, apm-server-autosetup, apm-server-neteye-config, kibana, kibana-autosetup, kibana-neteye-config, logstash, logstash-autosetup, logstash-neteye-config to version 7.15.0_neteye3.37.2-1

Read More
13. 01. 2022 Alessandro Valentini Bug Fixes, Log-SIEM, NetEye

Bugfixes for NetEye 4.21, 4.20, 4.19: Elasticsearch License Renewal

The current Elasticsearch license bundled with NetEye will expire this January 31st. To continue enjoy all the SIEM functionalities you must update to the new license. An automatic update has been released for the most recent NetEye version. Older NetEye releases however, can be updated manually. In the case the health-check light/01004_elastic_license_check.sh is preventing you…

Read More
10. 01. 2022 Alessandro Valentini Bug Fixes, NetEye

Bug Fixes for NetEye 4.21

We fixed three bugs in NetEye 4.21: a bug that prevented the user to import Saved Object using Kibana GUI a bug that prevented the user to enrich the logs going through El Proxy with Elasticsearch Ingest Pipelines a bug in documentation which makes unclear in certain situation whether to execute command on the standby…

Read More
29. 12. 2021 Alessandro Valentini Development, NetEye

NetEye Satellites: a Process-Growth Opportunity

During 2021 we decided to officially support Satellites as part of NetEye. Satellites were already widely used by our customers, in particular as part of the Icinga 2 monitoring infrastructure, but a complex manual configuration was required to install them. The development team faced a difficult challenge in fully supporting Satellites: providing an easy-to-use solution…

Read More
06. 12. 2021 Alessandro Valentini Bug Fixes, NetEye

Bug Fixes for NetEye 4.21

We fixed a bug in NetEye 4.21 which prevents the correct creation of resource telegraf_tornado_monitoring in cluster environment with stopped resources. For NetEye 4.21 we updated the following packages: neteye-setup to version 1.82.1-1

Read More
06. 12. 2021 Alessandro Valentini Bug Fixes, NetEye

Bug Fixes for NetEye 4.20

We fixed a bug in NetEye 4.20 which causes ILM with deletion phase to be applied to ELProxy Acknowledge indices. A second bug that was fixed was related to the event adjustments in the SLM, which in certain cases where not retrieved and correctly from the database and then displayed accordingly on the SLM report….

Read More
05. 11. 2021 Alessandro Valentini Bug Fixes, NetEye

Bug Fixes for NetEye 4.20

We fixed a performance bug in NetEye 4.20 which caused long downtimes while creating or upgrading batches of NetEye Satellites. Now Icinga2 will restart only once at the end of the full configuration procedure, speeding up the Satellite configuration and reducing downtimes. For NetEye 4.20 we updated the following packages: icinga2, icinga2-autosetup, icinga2-bin, icinga2-common, icinga2-debuginfo,…

Read More
28. 10. 2021 Alessandro Valentini Bug Fixes, Log-SIEM, NetEye

Bug Fixes for NetEye 4.20

We fixed a bug which prevents the activation of log signature via Icinga Director for hosts with hostname different than FQDN. Another bug we fixed was causing neteye_secure_install to fail in the cluster environment when influxdb was restarted. In addition, we fixed the background of the quick navigation that was transparent in some conditions. For…

Read More
19. 10. 2021 Alessandro Valentini Bug Fixes, NetEye

Bug Fixes for NetEye 4.20

We fixed a bug which prevents to create tenants names containing underscore making satellite setup unsuitable for some customers. For NetEye 4.20 we updated the following packages: neteye-satellite-manager and neteye-satellite-manager-autosetup to version 0.15.2-1

Read More
19. 10. 2021 Alessandro Valentini NetEye

TLS Certificate Authorities on Satellites

Since the introduction of Satellites in NetEye 4.19 one of the most frequently asked questions has been how CAs and Certificates work on Satellites. In this short blog post I’ll try to answer this question. First of all a bit of introduction about Satellites. A Satellite is a NetEye machine connected to a Master, which…

Read More

Archive