Blog Entries

25. 09. 2023 Tobias Goller NetEye, Unified Monitoring, Visual Synthetic Monitoring

Alyvix Modules in NetEye

Today I want to report on my first experience with the new Alyvix integration in NetEye. At the same time as NetEye version 4.30, another revised update of the Alyvix module was released for NetEye. And just recently in August I had my first opportunity to install and operate this revised module together with its…

Read More
10. 07. 2023 Tobias Goller Unified Monitoring

ntop News in the Next Release

At the end of June, Luca Deri gave a webinar presenting the new features of the next ntopng release. I’d like to take this opportunity now to present these innovations to all of you. The main enhancements of the new release have been made in the following areas: Extension of the ntopng functionalities for the…

Read More
27. 04. 2023 Tobias Goller Anomaly Detection, Unified Monitoring

Alerting on Network Traffic Anomalies with ntopng

Today I’d like to tell you about the possibility of alerting when anomalies in network traffic are encountered. I use ntopng to generate, evaluate and forward these alerts. If you don’t know about ntopng, let me briefly describe for you what it does. According to its creator, ntopng is a High-Speed Web-based Traffic Analysis and…

Read More
01. 03. 2023 Tobias Goller NetEye

Enable DNS Caching on RedHat 8

I was recently with a customer when he pointed out to me that his NetEye 4 system with its RedHat 8 operating system was sending an extremely large number of DNS queries to the DNS servers. After quickly analyzing the situation I found that RHEL does not cache DNS queries by default. Obviously the customer…

Read More
21. 10. 2022 Tobias Goller NetEye

GlusterFS on NetEye 4 and RedHat 8

As you’ve probably read in a previous blog by my colleague Jürgen Vigna, we use GlusterFS for particular requirements in our NetEye 4 cluster environments. After we completed the migration from the operating system CentOS 7 to RedHat 8, a few small things have changed or been updated. For all those who are new to…

Read More
22. 08. 2022 Tobias Goller NetEye

NetEye Upgrade to RedHat 8 – My Experience

As you probably all know, a new NetEye version is released every two months. For this reason I’d like to emphasize that we recommend regular updating of your NetEye system. In particular with version 4.23 we released a major update of the operating system from CentOS 7 to RedHat 8. Since we’re doing a lot…

Read More
12. 04. 2022 Tobias Goller Unified Monitoring

News from nBox and ntopng

In the last few weeks I installed and configured some nBoxes with the new ntopng version 5.2. Now I’d like to briefly tell you all about it. For all of you who don’t know what an nBox is, I’ll relay the official definition here: nBox Recorder is a network traffic disk recorder application. With nBox…

Read More
22. 03. 2022 Tobias Goller Icinga Web 2, Machine Learning, NetEye

Performance Metrics Collection from NetEye to Elastic

Today my objective is to collect the performance metrics from various NetEye Icinga checks and write them out to Elasticsearch so I can apply Machine Learning (ML) algorithms to identify potential anomalies. This is a task that’s not possible with the open-source version of InfluxDB installed in NetEye. Moreover, this data in Elastic is used…

Read More
14. 03. 2022 Tobias Goller Unified Monitoring

SOS Berlin JobScheduler – JS7

As is by now almost a tradition, this year I am again writing a blog post about the SOS JobScheduler. In this blog I’d like to introduce you to some major changes and improvements to the SOS Berlin JobScheduler. As has already been officially announced on the SOS Berlin website, beginning with Release 2.0.0 the…

Read More
15. 11. 2021 Tobias Goller NetEye

The NetEye 4 SMS Tools Module

As perhaps all NetEye users who have already used NetEye 3 know, NetEye 3 included the SMS Tools module. This simple module allowed a user to send SMS messages via a connected SMS gateway. These weren’t the usual monitoring alarms, but simple messages that were to be sent to various cell phones. Contacts could be…

Read More
04. 08. 2021 Tobias Goller NetEye

NetEye 4 Notifications from Satellites

Recently I was asked why alerting in a NetEye 4 environment isn’t run via the central master, but instead via the satellites. The background to this is that the NetEye Master is located in Italy, which controls various satellites in other European and African countries. It’s therefore a strategic decision that alarms are sent from…

Read More
17. 05. 2021 Tobias Goller Service Management

SOS Berlin JobScheduler – NEWS

As is almost the norm by now, I am writing a blog on the subject of the SOS JobScheduler again this year. As you already know, Würth Phoenix is ​​an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler…

Read More
10. 05. 2021 Tobias Goller Log-SIEM, NetEye

Installing Elastiflow on NetEye SIEM

First of all, I’d like to explain in simple terms what Elastiflow is all about. ElastiFlow is a NetFlow analyzer that works with the Elastic Stack. The Elastiflow Analyzer can collect various network flows, such as netflow or sflow, and write them to Elastic, taking into account the ECS format. In addition, the Elastiflow Analyzer…

Read More
11. 02. 2021 Tobias Goller Asset Management

IPTool: A New GLPI Plug-in

One of my customers, who uses GLPI very extensively for asset management, recently brought me a new request wanting a central overview of their host and IP registration. These host names and IPs are currently being maintained across various applications and tools, although GLPI is used as the central administrative application. As is so often…

Read More
02. 11. 2020 Tobias Goller Unified Monitoring

Tornado Use Case: Receiving Traps

During one of my last customer assignments, I migrated the NetEye Event Handler Trap rules to Tornado. Since many customers use the event handler in a similar way, I’d like to explain here the creation of these rules in Tornado. In the following I’ll briefly explain the following use case: Passive service checks have been…

Read More