Elastic 7.3 is coming to NetEye 4.8. In order to prepare for this significant change, you must first update Log Manager on NetEye 4.7 to receive the Elastic 6.8.2 update that will set up the necessary migrations for updating Elasticsearch, Logstash and Kibana. In addition to the ELK stack, SearchGuard will also be updated to…
Read MoreSecurity information and event management (SIEM) technology supports threat detection and security incident response through the real-time collection. Visit us at the Security Summit edition in Verona to hear from our team how to best identifying, gathering, monitoring and reporting security-related events in your software environment with NetEye.
Read MoreOur continued development of the Tornado event processing module has led to a new set of functionalities and capabilities. Among these is the possibility of altering host and service statuses as the result of a certain event. Let’s look at a typical use case for this feature. Suppose you want to trigger a webhook that…
Read MoreIn our ethical hacking activities there are three different phases in which we clash with the themes of SIEM: PLANNING – The phase prior to the activity where we define the scope of engagement, be it for a Vulnerability Assessment, a Penetration Test or simulating a real attack CHALLENGE – The activity, corresponding to Vulnerability…
Read MoreAt Würth Phoenix we take testing very seriously. NetEye 4 is a sophisticated product that operates in complex and business-critical environments, so it requires lots of tests before being released. One challenging part of the testing phase is load testing, where the functionalities of a system are subject to predetermined levels of load. NetEye customers…
Read MoreThe introduction of the new Elastic Features (formerly, X-Pack packages) for the Elastic Stack added many new functionalities to the previous implementation in Net-Eye. One of them is the Watcher feature. Let’s discuss a use case based on this feature. Imagine you as a user want to somehow trigger a webhook alert every time something…
Read MoreOn June 13, we announced a new OEM Partnership with Elastic, and Elastic updated its relationship with OEM, MSP and CSP partners, with the result that in NetEye 4 we now have some new features. Starting with NetEye 4.6, you can now activate the X-Pack feature. After I activate X-Pack and open NetEye, I see:…
Read MoreModern society has continued its increasing use of digital solutions, and today large amounts of sensitive data are stored digitally. As the value and sensitivity of this information increases, the number of potential threats will increase accordingly. Verizon Enterprise’s RISK team recently published a report in cooperation with the United States Secret Service (USSS), the…
Read MoreUntil now, authentication of NetEye users on Grafana was achieved by means of session cookies, which were provided by the Grafana server when authenticating in Icinga Web 2. However, with the upgrade of Grafana from version 5.2 to version 6.2, we can no longer employ this authentication procedure because Grafana has discontinued the use of…
Read MoreIn a previous blog post I presented how the Log Management architecture fits in a NetEye cluster, and now I want to summarize my recent experiences to help you diagnose Elasticsearch health issues. Elasticsearch provides a set of APIs which help to identify and debug a number of potential causes. But NetEye Log Management is…
Read MoreMagic happens when collaboration really works and community spirit grows. This month, Würth Phoenix announced the expansion of its partnership with Elastic to make it faster and easier for users to deploy Elasticsearch within NetEye 4. Elastic is the company behind Elasticsearch, Kibana, Beats, and Logstash, an ecosystem of Open Source-based search and analytics tools….
Read MoreNetEye 4 is composed of various modules, such as the NetEye 4 Log Manager that houses Elastic Stack with Search Guard. Our vision for the future of the NetEye 4 Log Manager is shown in the following diagram: Here you can see the various modules and technologies. For instance, you can see that we have…
Read MoreThe new challenge for monitoring solutions is to monitor infrastructure, software, and platforms that run in the cloud, or that are outsourced. The various contract models with cloud providers/outsourcers no longer focus on infrastructure monitoring, such as monitoring the fans or power supply in a physical server, but rather the availability and performance of applications,…
Read MoreUpdated neteye to version 4.5.1-1: Define neteye-cluster-local.target Updated neteye-setup to version 1.7.1-1: Manage target neteye single instance and cluster Update creation of icingaweb2 DB resource with dynamic creation of DB hostname Updated elasticsearch-neteye-config to version 1.5.0-1: Relate elasticsearch.service to neteye-cluster-local.target Updated eventhandler to version 1.7.6-1: Fix module DB hostname for cluster environment Updated auditlog to…
Read MoreNetEye 4 Log Manager, as already presented in this blog post, allows you to easily manage the collection, navigation, visualization and analysis of large numbers of logs. For many reasons, I as a user may want to limit log access to a subset of users. For example a network administrator should only see the logs…
Read More