I was recently with a customer when he pointed out to me that his NetEye 4 system with its RedHat 8 operating system was sending an extremely large number of DNS queries to the DNS servers. After quickly analyzing the situation I found that RHEL does not cache DNS queries by default. Obviously the customer…
Read MoreAs you’ve probably read in a previous blog by my colleague Jürgen Vigna, we use GlusterFS for particular requirements in our NetEye 4 cluster environments. After we completed the migration from the operating system CentOS 7 to RedHat 8, a few small things have changed or been updated. For all those who are new to…
Read MoreAs you probably all know, a new NetEye version is released every two months. For this reason I’d like to emphasize that we recommend regular updating of your NetEye system. In particular with version 4.23 we released a major update of the operating system from CentOS 7 to RedHat 8. Since we’re doing a lot…
Read MoreIn the last few weeks I installed and configured some nBoxes with the new ntopng version 5.2. Now I’d like to briefly tell you all about it. For all of you who don’t know what an nBox is, I’ll relay the official definition here: nBox Recorder is a network traffic disk recorder application. With nBox…
Read MoreToday my objective is to collect the performance metrics from various NetEye Icinga checks and write them out to Elasticsearch so I can apply Machine Learning (ML) algorithms to identify potential anomalies. This is a task that’s not possible with the open-source version of InfluxDB installed in NetEye. Moreover, this data in Elastic is used…
Read MoreAs is by now almost a tradition, this year I am again writing a blog post about the SOS JobScheduler. In this blog I’d like to introduce you to some major changes and improvements to the SOS Berlin JobScheduler. As has already been officially announced on the SOS Berlin website, beginning with Release 2.0.0 the…
Read MoreAs perhaps all NetEye users who have already used NetEye 3 know, NetEye 3 included the SMS Tools module. This simple module allowed a user to send SMS messages via a connected SMS gateway. These weren’t the usual monitoring alarms, but simple messages that were to be sent to various cell phones. Contacts could be…
Read MoreRecently I was asked why alerting in a NetEye 4 environment isn’t run via the central master, but instead via the satellites. The background to this is that the NetEye Master is located in Italy, which controls various satellites in other European and African countries. It’s therefore a strategic decision that alarms are sent from…
Read MoreAs is almost the norm by now, I am writing a blog on the subject of the SOS JobScheduler again this year. As you already know, Würth Phoenix is an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler…
Read MoreFirst of all, I’d like to explain in simple terms what Elastiflow is all about. ElastiFlow is a NetFlow analyzer that works with the Elastic Stack. The Elastiflow Analyzer can collect various network flows, such as netflow or sflow, and write them to Elastic, taking into account the ECS format. In addition, the Elastiflow Analyzer…
Read MoreOne of my customers, who uses GLPI very extensively for asset management, recently brought me a new request wanting a central overview of their host and IP registration. These host names and IPs are currently being maintained across various applications and tools, although GLPI is used as the central administrative application. As is so often…
Read MoreDuring one of my last customer assignments, I migrated the NetEye Event Handler Trap rules to Tornado. Since many customers use the event handler in a similar way, I’d like to explain here the creation of these rules in Tornado. In the following I’ll briefly explain the following use case: Passive service checks have been…
Read MoreAt the beginning of the year, the OCS and GLPI asset management solutions were integrated into NetEye 4. And so we have been increasingly implementing projects in this environment. In fact recently I was once again able to activate and configure a ticketing system in GLPI for a customer. It’s always amazing how easy it…
Read MoreIn one of my last consulting activities, I finally had the opportunity to set up a shutdown policy with the new Shutdown Manager in NetEye 4. As you probably know, the use of a shutdown management solution is particularly useful in a disaster recovery environment. And that’s exactly why I used the Shutdown Manager. Let…
Read MoreAs you may already know from our other blog posts, Würth Phoenix is an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler solution, but also offer consulting activities for SOS JobScheduler implementations, sizing and so on. Today I…
Read More