In a previous blog post I presented how the Log Management architecture fits in a NetEye cluster, and now I want to summarize my recent experiences to help you diagnose Elasticsearch health issues. Elasticsearch provides a set of APIs which help to identify and debug a number of potential causes. But NetEye Log Management is…
Read MoreMagic happens when collaboration really works and community spirit grows. This month, Würth Phoenix announced the expansion of its partnership with Elastic to make it faster and easier for users to deploy Elasticsearch within NetEye 4. Elastic is the company behind Elasticsearch, Kibana, Beats, and Logstash, an ecosystem of Open Source-based search and analytics tools….
Read MoreNetEye 4 is composed of various modules, such as the NetEye 4 Log Manager that houses Elastic Stack with Search Guard. Our vision for the future of the NetEye 4 Log Manager is shown in the following diagram: Here you can see the various modules and technologies. For instance, you can see that we have…
Read MoreThe new challenge for monitoring solutions is to monitor infrastructure, software, and platforms that run in the cloud, or that are outsourced. The various contract models with cloud providers/outsourcers no longer focus on infrastructure monitoring, such as monitoring the fans or power supply in a physical server, but rather the availability and performance of applications,…
Read MoreUpdated neteye to version 4.5.1-1: Define neteye-cluster-local.target Updated neteye-setup to version 1.7.1-1: Manage target neteye single instance and cluster Update creation of icingaweb2 DB resource with dynamic creation of DB hostname Updated elasticsearch-neteye-config to version 1.5.0-1: Relate elasticsearch.service to neteye-cluster-local.target Updated eventhandler to version 1.7.6-1: Fix module DB hostname for cluster environment Updated auditlog to…
Read MoreNetEye 4 Log Manager, as already presented in this blog post, allows you to easily manage the collection, navigation, visualization and analysis of large numbers of logs. For many reasons, I as a user may want to limit log access to a subset of users. For example a network administrator should only see the logs…
Read MoreCreating hosts in NetEye’s Director module can sometimes be time-consuming and a repetitious, tiring and boring job. Especially if you have to populate Director with a large number of hosts for setting up a test environment, for example. One solution is to create a script consisting of nothing but icingacli commands. Each command line instruction…
Read MoreThe Safed agent keeps track of the events it receives from the Eventlog by keeping the LastEventID in registry. At start time the agent tries to retrieve all events from Windows Eventlog since starting from the LastEventID. When the amount of events since LastEventID is too large or the LastEventID has been removed from the…
Read MoreThe regulations of the GDPR in many cases require that some user data is not always present, and / and or that they are anonymized. So I would like to show you now how NetEye 4 responds to this new requirement. NetEye 4 is composed of various modules. In the NetEye 4 Log Manager, we have Elastic…
Read More– Retrieved events from eventlog (win 2008 +) starts from bookmark but should not be older than defined cache days
Read MoreIn many circumstances, monitoring systems need to be extended to locations where we have no direct control. We can think for instance of a company that provides monitoring services to various customers: each with its own firewalls and each with its own security rules. The deployment of firewall rules from the central monitoring node to…
Read MoreThe Safed agent can be configured via https and send its collected logs to the log collector though a TLS connection. The latest released version – 1.9.1 – supports TLS 1.2 (at a minimum) and TLS 1.3. The first step is to upload the private key, the local certificate and the CA certificate to the…
Read MoreWith the release of NetEye 4, we have also redesigned the Log Management module. In this blog post I would like to briefly discuss the main innovations and improvements in NetEye 4 Log Management. First, the management and configuration interface of NetEye 4 Log Manager appears in the unified NetEye 4 layout. Basically, it has…
Read MoreThis blog post describes the basic architecture of an Elasticsearch cluster. The deployment of a cluster is needed to provide high-availability and, whenever possible, to increase performance. NetEye 4’s clustering service is based on RedHat 7’s High Availability Clustering technologies: Corosync: Provides group communication between a set of nodes, application restart upon failure, and a quorum…
Read MoreWhen you need to manage and collect large amounts of data, there can be a lot of hard tasks to do. So we decided to take some of the best Open Source tools to help us do it in the best possible way. Let me introduce you to Rsyslog and the Elastic Stack implementation for…
Read More