Bug Fixes for NetEye 4.32
We added an automatic procedure that correctly upgrades the DB schema for Icinga2. Updated packages For NetEye 4.32 we updated the following packages:
Read More
Blog Entries
How to Monitor NetEye with OpsGenie Heartbeats
Have you ever thought about how to monitor your NetEye system or other critical applications in a network failure scenario? To manage this scenario, in some customer cases some solutions have been implemented using SMS notifications, thus relying on the support of the mobile network as a notification channel.But what happens when even the mobile…
Read MoreAdding SOAR Features to the SOC – Part 1: Vulnerability Management
Security Orchestration, Automation and Response (SOAR) is a set of functionalities used by the SOC team to automate security activites, improve workflow management and share threat intelligence data. Security Operation Centres (SOCs) can leverage SOAR to gain in-depth knowledge of the threats they face, trigger automatic responses to security issues and achieve better efficiency. In this…
Read MoreHow to Fix OpenShift Console not Showing the Characters in Firefox
Recently when opening a console in the web-ui of OpenShift in Firefox, I saw the following: This doesn’t happen when opening the console using Chromium. In the Firefox debugger, we can see that we have the following error: The error is due to a strict Firefox privacy setting that prevents characters from being loaded. To…
Read MoreLVM Disks on Azure for Dockerized Applications
As an example of a Logical Volume Manager ( LVM ) setup on Azure, let me show you a real-world use case. Say we want to run a Pulp 3 container to host an rpm repo on Azure. As the base image let’s choose Rocky Linux 9. The machine that we provision will have two…
Read MoreTaking RPITIT ― Rust’s Shiny New Feature ― for a Test Ride with Type-system-level Lambda Calculus.
With the upcoming Rust version 1.75.0, two important new features will be stabilized. These features go by the names return-position impl Trait in trait (RPITIT) and async fn in trait (AFIT).
Read MoreFrom Chaos to Case: How SLAs Make Life Better!
One of the primary responsibilities of a Security Operation Center (SOC) is to effectively manage issues related to monitoring the security perimeter. This involves the meticulous analysis of alerts, the creation of subsequent cases, and if necessary, the escalation of incidents to the client through ticketing systems or, in some cases, the closure of incidents…
Read MoreBug Fixes for NetEye 4.32
In the Tornado GUI, we fixed the behavior of the “Group Match IDX” input of the regex extractor. Updated packages For NetEye 4.32 we updated the following packages:
Read MoreMaking Your Own Video Tutorials, Part 15: Using a Teleprompter
Have you (like me) been spending too much time memorizing a script so in the final video you look as natural as possible? Maybe it’s because the ideas behind each video keep becoming more and more complicated, but I’m sure my scripts are longer than they used to be. And for me, there’s a point…
Read MoreThe Configurator: Moving from a Monolithic to a Modular Approach in NetEye Upgrade
Over the last few months, I’ve had the chance to work on a number of issues that involved many NetEye modules. In all these situations, we had to face the same problem: how to release a new module version without impacting the automated NetEye upgrade procedure. Nothing new for us, but we’d like to improve…
Read MoreIntegration of Elasticsearch Clients without Authentication and without TLS
Introduction Let’s say… you have a product that has some Elasticsearch output, which deals with parsing and indexes, and also comes with a nice dashboard, etc., and let’s suppose… you would like to use this built-in functionality. And let’s say… the product in question wants to connect to Elasticsearch in an unauthenticated manner over HTTP….
Read MoreTeam Building: Sailing at Lake Garda
Why Sailing? Sailing is the perfect team building event: it combines cooperation, responsibility and commitment, along with a great dose of fun! That’s why this summer we decided to head up to Lake Garda to take part in a sailing team building event. Program The day started early in the morning, our bus picked us…
Read Morentopng – Display Multiple Metrics in One Graph
After my last ntopng trainings, which I taught as an instructor, I noticed that many ntopng users were not familiar with the display of multiple time series charts overlapping in one graphic. Since I believe that this is one of the most important display options, I’ll use this blog post to show you how to…
Read MoreBug Fixes for NetEye 4.32
We have fixed the following bugs in the Tornado GUI: Updated packages For NetEye 4.32 we updated the following packages:
Read Morestunnel TCP keepalive Settings Preventing Firewall from Blocking Log Traffic
Infrastructure Scenario An image says more than 1000 words 😉 Basically, the log source continuously sends log messages encrypted via TLS to the NetEye server. TLS is handled by stunnel and then content is internally forwarded unencrypted to an Elastic Agent Integration “Custom TCP Logs” inside the NetEye server. Cause: Logs lost due to firewall…
Read More