Blog Entries

01. 03. 2023 TobiasGoller NetEye

Enable DNS Caching on RedHat 8

I was recently with a customer when he pointed out to me that his NetEye 4 system with its RedHat 8 operating system was sending an extremely large number of DNS queries to the DNS servers. After quickly analyzing the situation I found that RHEL does not cache DNS queries by default. Obviously the customer…

Read More
21. 10. 2022 TobiasGoller NetEye

GlusterFS on NetEye 4 and RedHat 8

As you’ve probably read in a previous blog by my colleague Jürgen Vigna, we use GlusterFS for particular requirements in our NetEye 4 cluster environments. After we completed the migration from the operating system CentOS 7 to RedHat 8, a few small things have changed or been updated. For all those who are new to…

Read More
22. 08. 2022 TobiasGoller NetEye

NetEye Upgrade to RedHat 8 – My Experience

As you probably all know, a new NetEye version is released every two months. For this reason I’d like to emphasize that we recommend regular updating of your NetEye system. In particular with version 4.23 we released a major update of the operating system from CentOS 7 to RedHat 8. Since we’re doing a lot…

Read More
12. 04. 2022 TobiasGoller Unified Monitoring

News from nBox and ntopng

In the last few weeks I installed and configured some nBoxes with the new ntopng version 5.2. Now I’d like to briefly tell you all about it. For all of you who don’t know what an nBox is, I’ll relay the official definition here: nBox Recorder is a network traffic disk recorder application. With nBox…

Read More
22. 03. 2022 TobiasGoller Icinga Web 2, Machine Learning, NetEye

Performance Metrics Collection from NetEye to Elastic

Today my objective is to collect the performance metrics from various NetEye Icinga checks and write them out to Elasticsearch so I can apply Machine Learning (ML) algorithms to identify potential anomalies. This is a task that’s not possible with the open-source version of InfluxDB installed in NetEye. Moreover, this data in Elastic is used…

Read More
14. 03. 2022 TobiasGoller Unified Monitoring

SOS Berlin JobScheduler – JS7

As is by now almost a tradition, this year I am again writing a blog post about the SOS JobScheduler. In this blog I’d like to introduce you to some major changes and improvements to the SOS Berlin JobScheduler. As has already been officially announced on the SOS Berlin website, beginning with Release 2.0.0 the…

Read More
15. 11. 2021 TobiasGoller NetEye

The NetEye 4 SMS Tools Module

As perhaps all NetEye users who have already used NetEye 3 know, NetEye 3 included the SMS Tools module. This simple module allowed a user to send SMS messages via a connected SMS gateway. These weren’t the usual monitoring alarms, but simple messages that were to be sent to various cell phones. Contacts could be…

Read More
04. 08. 2021 TobiasGoller NetEye

NetEye 4 Notifications from Satellites

Recently I was asked why alerting in a NetEye 4 environment isn’t run via the central master, but instead via the satellites. The background to this is that the NetEye Master is located in Italy, which controls various satellites in other European and African countries. It’s therefore a strategic decision that alarms are sent from…

Read More
17. 05. 2021 TobiasGoller Service Management

SOS Berlin JobScheduler – NEWS

As is almost the norm by now, I am writing a blog on the subject of the SOS JobScheduler again this year. As you already know, Würth Phoenix is ​​an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler…

Read More
10. 05. 2021 TobiasGoller Log-SIEM, NetEye

Installing Elastiflow on NetEye SIEM

First of all, I’d like to explain in simple terms what Elastiflow is all about. ElastiFlow is a NetFlow analyzer that works with the Elastic Stack. The Elastiflow Analyzer can collect various network flows, such as netflow or sflow, and write them to Elastic, taking into account the ECS format. In addition, the Elastiflow Analyzer…

Read More
11. 02. 2021 TobiasGoller Asset Management

IPTool: A New GLPI Plug-in

One of my customers, who uses GLPI very extensively for asset management, recently brought me a new request wanting a central overview of their host and IP registration. These host names and IPs are currently being maintained across various applications and tools, although GLPI is used as the central administrative application. As is so often…

Read More
02. 11. 2020 TobiasGoller Unified Monitoring

Tornado Use Case: Receiving Traps

During one of my last customer assignments, I migrated the NetEye Event Handler Trap rules to Tornado. Since many customers use the event handler in a similar way, I’d like to explain here the creation of these rules in Tornado. In the following I’ll briefly explain the following use case: Passive service checks have been…

Read More
15. 07. 2020 TobiasGoller Unified Monitoring

GLPI and Ticketing

At the beginning of the year, the OCS and GLPI asset management solutions were integrated into NetEye 4. And so we have been increasingly implementing projects in this environment. In fact recently I was once again able to activate and configure a ticketing system in GLPI for a customer. It’s always amazing how easy it…

Read More
19. 05. 2020 TobiasGoller NetEye, Unified Monitoring

An Experience with Shutdown Manager in NetEye 4

In one of my last consulting activities, I finally had the opportunity to set up a shutdown policy with the new Shutdown Manager in NetEye 4. As you probably know, the use of a shutdown management solution is particularly useful in a disaster recovery environment. And that’s exactly why I used the Shutdown Manager. Let…

Read More
10. 04. 2020 TobiasGoller Service Management

News from SOS JobScheduler

As you may already know from our other blog posts, Würth Phoenix is an official partner of the German company SOS Berlin, the creator of the SOS JobScheduler. In our role as partner, we not only resell the JobScheduler solution, but also offer consulting activities for SOS JobScheduler implementations, sizing and so on. Today I…

Read More