With the release of NetEye 4, we have also redesigned the Log Management module. In this blog post I would like to briefly discuss the main innovations and improvements in NetEye 4 Log Management. First, the management and configuration interface of NetEye 4 Log Manager appears in the unified NetEye 4 layout. Basically, it has…
Read MoreThis blog post describes the basic architecture of an Elasticsearch cluster. The deployment of a cluster is needed to provide high-availability and, whenever possible, to increase performance. NetEye 4’s clustering service is based on RedHat 7’s High Availability Clustering technologies: Corosync: Provides group communication between a set of nodes, application restart upon failure, and a quorum…
Read MoreWhen you need to manage and collect large amounts of data, there can be a lot of hard tasks to do. So we decided to take some of the best Open Source tools to help us do it in the best possible way. Let me introduce you to Rsyslog and the Elastic Stack implementation for…
Read MoreOur rapidly changing digital world is demanding new monitoring strategies for managing your IT infrastructure and adapting business transformations in real time. IoT, mobility and Hybrid Clouds offer opportunities as well as potential risks and challenges. How can you succeed in shifting your security posture from reactive to active, and your IT service monitoring from…
Read MoreReady to take your IT process skills beyond the traditional? Our new training offerings will help you acquire, maintain and improve your knowledge and skills around our solutions. This year’s training program contains courses for NetEye, EriZone or Alyvix customers and partners, each lasting between 2 and 4 working days. The main focus will be…
Read MoreSuppose you have an OpenLDAP Server and you want to analyze what it does. A good way to do this is to send the logs to NetEye’s LogServer. Some elements you will see include: – Returned Entries! (ENTRY) – Search Operations! (SEARCH) – Total Connections! (BIND) To do this you need to add a new…
Read MoreIf you have an Elasticsearch Database like the one in the NetEye Elastic Stack Module then you are surely interested in integrating this information into your Monitoring environment. To do this, use this new plugin: check_elasticsearch_query # /data/neteye/usr/lib/nagios/plugins/local/check_elasticsearch_query –help Check a count of number of events fount in elasticsearch over a query and timeframe Usage:…
Read MoreNow that your company has invested time and resources in gathering information about your entire installed base of software and equipment, how can we analyze and measure its level of security protection? Can we identify the vulnerabilities in your company’s software? Can we create a scoring function that measures security and how it changes over…
Read MoreGrok is a plug-in installed by default in Logstash, which is supplied with the Elastic package (the ELK – Elasticsearch, Logstash and Kibana), one of the integrated modules in our NetEye Unified Monitoring solution.What is this plug-in for? First of all, Grok is an English neologism that means “to understand profoundly, intuitively or by empathy,…
Read MoreIn this post, and in the one that will follow in the next weeks, I would like to analyze the role of IT Asset Management in adapting to the new General Data Protection Regulations (GDPR). In this first article I will briefly introduce what the GDPR is, what measures it introduces, and how the IT…
Read MoreDo you use Cisco’s network infrastructure? Would you like to view its logs through the syslog protocol in an Elasticsearch database? Find out below about the filters and templates needed for the Logstash setup. As you probably already know, you need a Logstash instance in order to get indexed data into the Elasticsearch database. Cisco…
Read MoreIT security is one of the highest priorities for every CIO. Cyber-attacks are now a reality that we must deal with on a daily basis. More and more organizations have been the victims of so-called cybercrimes that are the cause of financial losses, operational problems and consequences to the company’s reputation. That is why trying…
Read MoreMachine learning and anomaly detection are being mentioned with increasing frequency in performance monitoring. But what are they and why is interest in them rising so quickly? From Statistics to Machine Learning There have been several attempts to explicitly differentiate between machine learning and statistics. It is not so easy to draw a line between…
Read MoreKeeping an offline copy of your logs does not only provide better visibility from the system management point of view, but also turns out to be extremely precious in case of a security incident during which your local copies have been affected. As many of you might know, the Log Management module of NetEye offers…
Read MoreThe Smith-Family is driving on the highway to arrive to their holiday destination in Italy, as a car in front of them suddenly brakes. A truck accidently has lost demolition debris and thereby almost caused a multiple-vehicle collision. Mrs. Jones is driving the car just behind the truck and as her car brakes, it simultaneously…
Read More