DOCSLIB.ORG

SERVER HARDWARE HEALTH STATUS MONITORING Examining the Reliability of a Centralized Monitoring Architecture

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
SERVER HARDWARE HEALTH STATUS MONITORING Examining the Reliability of a Centralized Monitoring Architecture SERVER HARDWARE HEALTH STATUS MONITORING Examining the reliability of a centralized monitoring architecture Bachelor Degree Project in Computer Science G2E, 22,5 ECTS Spring term 2018 Victor Jarlow Supervisor: Dennis Modig Examiner: Jianguo Ding Abstract Monitoring of servers over the network is important to detect anomalies in servers in a datacenter. Systems management software exist which can receive messages from servers on which such anomalies occur. Network monitoring software are often used to periodically poll servers for their hardware health status. A centralized approach to network monitoring is presented in this thesis, in which a systems management software receives messages from servers, and is polled by a network monitoring software. This thesis examines the reliability of a centralized monitoring approach in terms of how accurate its response is, as well as the time it took to respond with the correct hardware health status when polled, when it is affected by varying degrees of traffic through conducting an experiment. The results of the experiment show that the monitoring architecture is accurate when exposed to a level of load which is in line with scalability guidelines as offered by the company developing the systems management software, and that the time it takes for a hardware health status to be poll-able for the majority of the measurements lie within the interval 0 to 15 seconds. Keywords: network monitoring, hardware health status monitoring, centralized, distributed, accuracy, scalability, presentation-time Table of contents 1 INTRODUCTION ............................................................................................................................................ 1 2 BACKGROUND .............................................................................................................................................. 2 2.1 SIMPLE NETWORK MANAGEMENT PROTOCOL (SNMP) ................................................................................. 2 2.2 WEB-APPLICATION PROGRAMMING INTERFACE (WEB-API) ......................................................................... 3 2.3 OUT-OF-BAND CONTROLLER .......................................................................................................................... 3 2.3.1 Dell Remote Access Controller (DRAC) ............................................................................................... 4 2.4 SYSTEM MONITORING .................................................................................................................................... 5 2.4.1 Network monitoring software ................................................................................................................ 5 2.5 SYSTEMS MANAGEMENT SOFTWARE .............................................................................................................. 6 2.5.1 OpenManage Essentials (OME) ............................................................................................................ 6 2.6 CENTRALIZATION VS DISTRIBUTED SYSTEMS ............................................................................................... 7 2.7 MONITORING ARCHITECTURES .................................................................................................................... 8 2.7.1 Distributed monitoring architecture ...................................................................................................... 9 2.7.2 Centralized monitoring architecture ................................................................................................... 10 2.8 RELATED WORK ......................................................................................................................................... 12 3 PROBLEM DESCRIPTION ........................................................................................................................... 13 3.1 MOTIVATION ............................................................................................................................................... 13 3.2 AIM ............................................................................................................................................................. 14 3.3 RESEARCH QUESTION .................................................................................................................................. 14 3.4 LIMITATIONS ............................................................................................................................................... 15 4 METHOD ......................................................................................................................................................... 16 4.1 TESTING ARCHITECTURE RELIABILITY ......................................................................................................... 16 4.1.1 Triggering alerts.................................................................................................................................. 16 4.1.2 Collecting data .................................................................................................................................... 17 4.1.3 Generating load ................................................................................................................................... 20 4.1.4 Extracting data .................................................................................................................................... 22 4.1.5 Lab environment .................................................................................................................................. 23 4.2 THREATS TO VALIDITY ................................................................................................................................ 24 5 RESULTS ......................................................................................................................................................... 25 5.1 PILOT TEST .................................................................................................................................................. 25 5.2 ACCURACY .................................................................................................................................................. 27 5.3 PRESENTATION-TIME ................................................................................................................................... 27 5.3.1 Best-case scenario ............................................................................................................................... 28 5.3.2 Worst-case scenario ............................................................................................................................ 29 6 CONCLUSIONS .............................................................................................................................................. 30 7 DISCUSSION ................................................................................................................................................... 31 7.1 VALIDITY..................................................................................................................................................... 31 7.2 ETHICAL CONSIDERATIONS .......................................................................................................................... 32 7.3 FUTURE WORK ............................................................................................................................................. 32 REFERENCES .................................................................................................................................................... 33 APPENDIX A – DISTRIBUTED MONITORING PLUGIN APPENDIX B – CENTRALIZED MONITORING PLUGIN APPENDIX C – DATA-COLLECTION SCRIPT APPENDIX D – DATA-EXTRACTION SCRIPT APPENDIX E – TRAP-GENERATION SCRIPT APPENDIX F – ACTIVITY DIAGRAMS OF FUNCTIONS IN DATA-COLLECTION SCRIPT APPENDIX G – PILOT TEST RESULTS APPENDIX H – EXPERIMENT RESULTS, BASELINE APPENDIX I – EXPERIMENT RESULTS, LOW LOAD LEVEL APPENDIX J – EXPERIMENT RESULTS, MEDIUM LOAD LEVEL APPENDIX K – EXPERIMENT RESULTS, HIGH LOAD LEVEL 1 Introduction Accurate hardware monitoring of servers is an integral part of properly managing and maintaining a large-scale datacenter, since inaccurate hardware monitoring can lead to a waste of company resources, in the sense that undiscovered alerts can lead to equipment breaking prematurely, and false alarms can lead to employees having to spend time solving non- existent errors (Barrosso, Clidaras & Hölzle, 2013). When monitoring servers over the network, what is called network monitoring software are often used to periodically poll servers for their hardware health status through executing status checks using plugins (Nagios, n.d.). Server manufacturers provide software for centrally managing their products, often called systems management software, which provide functionality such as: discovering and inventorying servers, monitoring the health of servers, performing updates, performing remote tasks and enforcing compliance policies (Zahoor, Qamar & ur Rasool, 2015). This systems management software can receive alerts from servers about the status of the hardware, which can provide useful detailed information about what component has failed or if a component is about to fail, as well as informational messages such as a threshold value returning to normal. This thesis aims to explore the viability of monitoring servers through
Load more

Recommended publications
  • Naemonbox Manual Documentation Release 0.0.7
    NaemonBox Manual Documentation Release 0.0.7 NaemonBox Team September 16, 2016 Contents 1 Introduction 3 1.1 Target audience..............................................3 1.2 Prerequisite................................................3 2 About Naemonbox 5 2.1 Project..................................................5 2.2 Features..................................................6 3 Installation Guide 7 3.1 System requirements...........................................7 3.2 Recommended system requirements...................................7 3.3 Client Operating Systems........................................7 3.4 Openvz VPS installation.........................................8 3.5 GNU/Linux Debian 7 (or later) Installation...............................8 3.6 Installing Naemonbox..........................................8 4 Getting Started 9 4.1 Step one.................................................9 4.2 Step two................................................. 10 4.3 Step three................................................. 10 4.4 Step four................................................. 10 5 Configuring Naemon 11 5.1 Introduction............................................... 11 5.2 Actions.................................................. 11 5.3 Hosts Definition............................................. 12 5.4 Services.................................................. 13 5.5 Commands................................................ 14 5.6 Time periods............................................... 15 5.7 Contacts................................................
    [Show full text]
  • Josh Malone Systems Administrator National Radio Astronomy Observatory Charlottesville, VA
    heck What the #%!@ is wrong ^ with my server?!? Josh Malone Systems Administrator National Radio Astronomy Observatory Charlottesville, VA 1 Agenda • Intro to Monitoring • Internet protocols 101 • • Nagios SMTP • IMAP • Install/Config • HTTP • Usage • Custom plugins • Packet sniffing for dummies • Intro to Troubleshooting • Tools • telnet, openssl • grep, sed • ps, lsof, netstat 2 MONITORING 3 Automated Monitoring Workflow 4 Monitoring Packages: Open Source • • Pandora FMS • Opsview Core • Naemon • • • • • • Captialware ServerStatus • Core • Sensu All Trademarks and Logos are property of their respective trademark or copyright holders and are used by permission or fair use for education. Neither the presenter nor the conference organizers are affiliated in any way with any companies mentioned here. 5 Monitoring Packages: Commercial • Nagios XI • Groundwork • PRTG network monitor • CopperEgg • WhatsUp Gold • PRTG network monitor • op5 (Naemon) All Trademarks and Logos are property of their respective trademark or copyright holders and are used by permission or fair use for education. Neither the presenter nor the conference organizers are affiliated in any way with any companies mentioned here. 6 Why Automatic Service Monitoring? • Spot small problems before they become big ones • Learn about outages before your users do • Checklist when restoring from a power outage • Gives you better problem reports than users • Problems you might never spot otherwise • Failed HDDs in RAIDs • Full /var partitions • Logs not rotating • System temperature rising 7 Why Automatic Service Monitoring? • Capacity planning • Performance data can generate graphs of utilization • RAM, Disk, etc. • Availability reports - CAUTION • Easy to generate -- even easier to generate wrong • Make sure your configurations actually catch problems • Will also include problems with Nagios itself :( • If you’re going to quote your availability numbers (SLAs, etc.) make sure you understand what you’re actually monitoring.
    [Show full text]
  • Market Impact Report Juniper Networks’ Appformix: Intent-Driven Cloud-Scale Infrastructure
    Market Impact Report Juniper Networks’ AppFormix: Intent-Driven Cloud-Scale Infrastructure EXECUTIVE SUMMARY Today, we live in a cloud-centric world with cloud-native applications and services reaching hundreds of millions of users globally via massive data centers located KEY FEATURES around the world. Until recently, the cloud has been the domain of a relatively • Autonomous, intent-driven small number of web-scale giants, cloud computing platforms, cloud-native infrastructure operation for businesses and global software companies. However, enterprises are now workload and resource migrating IT applications to hybrid clouds and network service providers are optimization reducing costs and increasing service agility by deploying cloud-scale platforms to • Smart agents streamline support Network Functions Virtualization (NFV). infrastructure monitoring by applying machine learning to Cloud-scale infrastructure presents significant operational challenges that arise metrics local to each node because of the massive scale, software-driven complexity and highly dynamic nature of applications deployed in run-time environments supported by the • Analytics modules monitor Docker, Kubernetes and Openstack frameworks, in which workloads and SLAs and correlate anomalies and events across the entire resources fluctuate constantly. infrastructure Traditional monitoring solutions rooted in legacy infrastructure are not well • Policy-driven controller suited to the real-time, full stack monitoring requirements of today’s cloud-scale assures pre-defined
    [Show full text]
  • Examensarbete Nätverksövervakning
    Examensarbete Nätverksövervakning En jämförelse av Sensu och op5 Monitor Författare: Kristoffer NILSSON & Ashour SHAMOUN Handledare: Marcus WILHELMSSON Examinator: Jacob LINDEHOFF Termin: VT2014 Ämne: Datavetenskap Nivå: G1E Kurskod: 1DV41E Sammanfattning Rapporten beskriver arbetet och resultaten av en jämförelse mellan Sensu och op5 Monitor, vilka är verktyg som används för att övervaka enheter i nätverk, så kallade network monitoring systems. Arbetet har utförts för att utbudet av nätverksövervak- ningsverktyg ständigt växer och det ansågs värdefullt att jämföra en ny aktör med ett äldre verktyg som är byggd på ett annat tankesätt. Det som ansågs intressant att testa var hur dessa verktyg hanterade de rapporter som skapades och samlades in, om det slutgiltiga resultatet från detta skulle skilja sig åt eller inte. För att testa detta sattes en virtuell testmiljö upp, där Sensu och op5 Monitor rullade parallellt med varandra och övervakade samma system och använde sig utav samma plugin för övervakningen. Experimenten utfördes på två stycken tjänster, BIND9 samt Apache2, i och med att de två pluginen som användes var uppbyggda på olika sätt konstruerades även olika experiment. Under dessa experiment samlades information in om hur de två över- vakningsverktygen hanterade de rapporter de fick in, vilket sedan sammanställdes och analyserades. Slutsatsen av det hela var att Sensu och op5 Monitor hanterar sina insamlade rapporter på ett likvärdigt sätt, de rapporterade resultaten blev i samtliga fall detsamma, således fungerade de två övervakningsverktygen på ett jämgott vis. Nyckelord: Sensu, op5 monitor, Nagios, nätverksövervakning, nms Abstract The report describes the work and results of a comparison between Sensu and op5 Monitor, which are both tools used to monitor devices in a network, more commonly known as network monitoring systems.
    [Show full text]
  • Forcepoint Appliances Command Line Interface (CLI) Guide
    Forcepoint Appliances Command Line Interface (CLI) Guide V Series, X Series, & Virtual Appliances v8.4.x ©2018, Forcepoint All rights reserved. 10900-A Stonelake Blvd, Quarry Oaks 1, Suite 350, Austin TX 78759 Published 2018 Forcepoint and the FORCEPOINT logo are trademarks of Forcepoint. Raytheon is a registered trademark of Raytheon Company. All other trademarks used in this document are the property of their respective owners. This document may not, in whole or in part, be copied, photocopied, reproduced, translated, or reduced to any electronic medium or machine- readable form without prior consent in writing from Forcepoint. Every effort has been made to ensure the accuracy of this manual. However, Forcepoint makes no warranties with respect to this documentation and disclaims any implied warranties of merchantability and fitness for a particular purpose. Forcepoint shall not be liable for any error or for incidental or consequential damages in connection with the furnishing, performance, or use of this manual or the examples herein. The information in this documentation is subject to change without notice. Contents Topic 1 Forcepoint Appliances Command Line Interface . .1 Conventions . .1 Logon and authentication . .2 CLI modes and account privileges . .2 Basic account management . .3 Command syntax. .9 Help for CLI commands . .9 System configuration . .10 Time and date . .11 Host name and description . .14 User certificates. .15 Filestore definition and file save commands. .16 Appliance interface configuration. .18 Appliance vswitch configuration . .29 Content Gateway Decryption Port Mirroring (DPM) . .29 Static routes. .31 Appliance status . .35 SNMP monitoring (polling) . .35 SNMP traps and queries . .38 Module-specific commands .
    [Show full text]
  • Monitoring Im 21. Jahrhundert
    Monitoring im 21. Jahrhundert Sebastian ‘tokkee’ Harl <[email protected]> collectd core developer Grazer Linuxtage 2014 04. April 2014 Graz • Wer verwendet Performance-Daten seines Monitoring-Systems? • Wer basiert (den Großteil) sein(es) Monitorings auf Performance-Daten? • Wer kennt collectd? • Wer kennt Riemann-Monitoring? Uberblick¨ • Wer verwendet Nagios/Icinga/Naemon/OpenNMS/etc.? c 2014 Sebastian ‘tokkee’ Harl Monitoring im 21. Jahrhundert – Folie 2 • Wer basiert (den Großteil) sein(es) Monitorings auf Performance-Daten? • Wer kennt collectd? • Wer kennt Riemann-Monitoring? Uberblick¨ • Wer verwendet Nagios/Icinga/Naemon/OpenNMS/etc.? • Wer verwendet Performance-Daten seines Monitoring-Systems? c 2014 Sebastian ‘tokkee’ Harl Monitoring im 21. Jahrhundert – Folie 2 • Wer kennt collectd? • Wer kennt Riemann-Monitoring? Uberblick¨ • Wer verwendet Nagios/Icinga/Naemon/OpenNMS/etc.? • Wer verwendet Performance-Daten seines Monitoring-Systems? • Wer basiert (den Großteil) sein(es) Monitorings auf Performance-Daten? c 2014 Sebastian ‘tokkee’ Harl Monitoring im 21. Jahrhundert – Folie 2 • Wer kennt Riemann-Monitoring? Uberblick¨ • Wer verwendet Nagios/Icinga/Naemon/OpenNMS/etc.? • Wer verwendet Performance-Daten seines Monitoring-Systems? • Wer basiert (den Großteil) sein(es) Monitorings auf Performance-Daten? • Wer kennt collectd? c 2014 Sebastian ‘tokkee’ Harl Monitoring im 21. Jahrhundert – Folie 2 Uberblick¨ • Wer verwendet Nagios/Icinga/Naemon/OpenNMS/etc.? • Wer verwendet Performance-Daten seines Monitoring-Systems? • Wer basiert (den Großteil) sein(es) Monitorings auf Performance-Daten? • Wer kennt collectd? • Wer kennt Riemann-Monitoring? c 2014 Sebastian ‘tokkee’ Harl Monitoring im 21. Jahrhundert – Folie 2 Uberblick¨ Warum Monitoring auf Performance-Daten basieren? Umdenken: Was passiert?“ statt Wie ist der Status?“ ” ” • Mehr Information als f OK, WARNING, CRIT g • Push statt Poll → besser skalierbar • Einfache(re) Aggregierung → z.B.
    [Show full text]
  • Automated System Monitoring
    Automated System Monitoring Josh Malone Systems Administrator [email protected] National Radio Astronomy Observatory Charlottesville, VA https://blogs.nrao.edu/jmalone 2 One night, about 8 or 9 years ago, the chiller in our DC failed. Co-worker arrive in the morning to find room was 90F ambient. Quickly set up fans to vent the room. Checked servers - found that main web server had lost both disks in its OS RAID mirror. (15k disks, ran hot) Main page was being served from memory, but the OS was freaking out. We had minimal monitoring scripts. No environment monitoring. No disk health checks. Failure caught us completely by surprise. We decided that we weren’t going to let this happen ever again. Over the next year or so we implemented 2 independent monitoring systems - one for servers/ services and one for environmentals. Set up each system to also monitor the other. WHAT IS AUTOMATED MONITORING? 7 Some sort of dedicated, automatic instrumentation to check services and/or servers Detect and report service problems, server hardware issues Usually provides a central “dashboard” to track problems Can be distributed; but still under control of a central daemon * Diferentiates it from “a bunch of scripts” used to check on things; that doesn’t have the ability to determine cause or eliminate false alarms. Automated Monitoring Workflow 8 Most packages implement this type of workflow Not all packages provide event handlers ack’ing page is important - let’s other admins know that someone is working on the problem so they don’t step on each other’s toes Monitoring Packages: Open Source • • Pandora FMS • Opsview Core • Naemon • • • • • • Captialware ServerStatus • Core • Sensu All Trademarks and Logos are property of their respective trademark or copyright holders and are used by permission or fair use for education.
    [Show full text]
  • Mysecureshell Documentation Release 1.33 Pierre Mavro
    MySecureShell Documentation Release 1.33 Pierre Mavro & Sebastien Tardif November 28, 2016 Contents 1 Introduction 3 2 Quick Try 5 3 Installation 13 4 Configuration 21 5 Usages 61 6 Frequently Asked Questions 67 7 Contribute 71 8 Third Party and Others 75 i ii MySecureShell Documentation, Release 1.33 Contents 1 MySecureShell Documentation, Release 1.33 2 Contents CHAPTER 1 Introduction 1.1 What is MySecureShell? MySecureShell is a solution which has been made to bring more features to sftp/scp protocol given by OpenSSH. By default, OpenSSH brings a lot of liberty to connected users which imply to thrust in your users. The goal of MySecureShell is to offer the power and security of OpenSSH, with enhanced features (like ACL) to restrict connected users. MySecureShell was created because of the lack of file transfer features in OpenSSH. OpenSSH was not designed as a file transfer solution, that’s why we made MySecureShell. MySecureShell is not a patch for OpenSSH, it’s a shell for users. It has the advantage to: • Avoid including security holes in OpenSSH • No dependency on against an OpenSSH version • No OpenSSH recompilation is required So MySecureShell remains easy to install, secure and easy to configure. 1.2 Why SFTP and not FTP? If you’re wondering why you should take MySecureShell as an SFTP server instead of a classical FTP, there are several reasons: 1. You do not have to open some dedicated firewall ports for file transfers 2. You are using one of the most used and secure protocol (SSH) 3. You do not have to manage SSL certificates to guaranty the security 4.
    [Show full text]
  • Using XMPP for System Monitoring and Administration
    Die approbierte Originalversion dieser Diplom-/ Masterarbeit ist in der Hauptbibliothek der Tech- nischen Universität Wien aufgestellt und zugänglich. http://www.ub.tuwien.ac.at The approved original version of this diploma or master thesis is available at the main library of the Vienna University of Technology. http://www.ub.tuwien.ac.at/eng Using XMPP for System Monitoring and Administration DIPLOMARBEIT zur Erlangung des akademischen Grades Mag.rer.soc.oec. im Rahmen des Studiums Informatikmanagement eingereicht von Adi Kriegisch Matrikelnummer 9625495 an der Fakultät für Informatik der Technischen Universität Wien Betreuung: Univ.-Prof. Dipl.-Ing. Dr. Werner Purgathofer Wien, 15.11.2015 (Unterschrift Verfasser) (Unterschrift Betreuung) Technische Universität Wien A-1040 Wien Karlsplatz 13 Tel. +43-1-58801-0 www.tuwien.ac.at Using XMPP for System Monitoring and Administration MASTER’S THESIS submitted in partial fulfillment of the requirements for the degree of Mag.rer.soc.oec. in Informatics Management by Adi Kriegisch Registration Number 9625495 to the Faculty of Informatics at the Vienna University of Technology Advisor: Univ.-Prof. Dipl.-Ing. Dr. Werner Purgathofer Vienna, 15.11.2015 (Signature of Author) (Signature of Advisor) Technische Universität Wien A-1040 Wien Karlsplatz 13 Tel. +43-1-58801-0 www.tuwien.ac.at Erklärung zur Verfassung der Arbeit Adi Kriegisch Leystrasse 23/11/27, 1200 Wien Hiermit erkläre ich, dass ich diese Arbeit selbständig verfasst habe, dass ich die verwende- ten Quellen und Hilfsmittel vollständig angegeben habe und dass ich die Stellen der Arbeit - einschließlich Tabellen, Karten und Abbildungen -, die anderen Werken oder dem Internet im Wortlaut oder dem Sinn nach entnommen sind, auf jeden Fall unter Angabe der Quelle als Ent- lehnung kenntlich gemacht habe.
    [Show full text]
  • Mysecureshell Documentation Release 1.33
    MySecureShell Documentation Release 1.33 Pierre Mavro & Sebastien Tardif Dec 10, 2018 Contents 1 Introduction 3 2 Quick Try 5 3 Installation 11 4 Configuration 19 5 Usages 65 6 Frequently Asked Questions 71 7 Contribute 75 8 Third Party and Others 81 i ii MySecureShell Documentation, Release 1.33 Contents 1 MySecureShell Documentation, Release 1.33 2 Contents CHAPTER 1 Introduction 1.1 What is MySecureShell? MySecureShell is a solution which has been made to bring more features to sftp/scp protocol given by OpenSSH. By default, OpenSSH brings a lot of liberty to connected users which imply to trust in your users. The goal of MySecureShell is to offer the power and security of OpenSSH, with enhanced features (like ACL) to restrict connected users. MySecureShell was created because of the lack of file transfer features in OpenSSH. OpenSSH was not designed as a file transfer solution, that’s why we made MySecureShell. MySecureShell is not a patch for OpenSSH, it’s a shell for users. It has the advantage to: • Avoid including security holes in OpenSSH • No dependency on against an OpenSSH version • No OpenSSH recompilation is required So MySecureShell remains easy to install, secure and easy to configure. 1.2 Why SFTP and not FTP? If you’re wondering why you should take MySecureShell as an SFTP server instead of a classical FTP, there are several reasons: 1. You do not have to open some dedicated firewall ports for file transfers 2. You are using one of the most used and secure protocol (SSH) 3. You do not have to manage SSL certificates to guaranty the security 4.
    [Show full text]
  • Graphite Documentation Release 1.2.0
    Graphite Documentation Release 1.2.0 Chris Davis Apr 19, 2021 Contents 1 Overview 1 2 FAQ 3 3 Installing Graphite 7 4 The Carbon Daemons 35 5 Feeding In Your Data 39 6 Getting Your Data Into Graphite 41 7 Administering Carbon 43 8 Administering The Webapp 45 9 Using The Composer 47 10 The Render URL API 49 11 The Metrics API 71 12 Functions 73 13 The Dashboard User Interface 105 14 The Whisper Database 113 15 The Ceres Database 117 16 Alternative storage finders 121 17 Graphite Events 125 18 Graphite Tag Support 129 19 Graphite Terminology 137 20 Tools That Work With Graphite 139 i 21 Working on Graphite-web 145 22 Client APIs 147 23 Who is using Graphite? 149 24 Release Notes 151 25 Indices and tables 207 Python Module Index 209 Index 211 ii CHAPTER 1 Overview 1.1 What Graphite is and is not Graphite does two things: 1. Store numeric time-series data 2. Render graphs of this data on demand What Graphite does not do is collect data for you, however there are some tools out there that know how to send data to graphite. Even though it often requires a little code, sending data to Graphite is very simple. 1.2 About the project Graphite is an enterprise-scale monitoring tool that runs well on cheap hardware. It was originally designed and written by Chris Davis at Orbitz in 2006 as side project that ultimately grew to be a foundational monitoring tool. In 2008, Orbitz allowed Graphite to be released under the open source Apache 2.0 license.
    [Show full text]
  • Cyberx Documentation Release Latest
    CyberX Documentation Release latest Aug 26, 2021 Contents 1 About 1 2 Introduction 3 2.1 Elasticsearch...............................................4 2.2 Kibana..................................................4 2.3 Logstash.................................................4 2.4 ELK...................................................5 3 Data source and application management7 3.1 Data source................................................7 3.2 System services.............................................7 3.3 First configuration steps.........................................8 3.4 First login................................................. 14 3.5 Index selection.............................................. 16 3.6 Changing default users for services................................... 17 3.7 Custom installation the CyberX..................................... 18 3.8 Plugins management in the Elasticsearch................................ 22 3.9 ROOTless management......................................... 23 3.10 CyberX Elasticsearch encryption.................................... 24 3.11 Transport layer encryption........................................ 26 3.12 HTTP layer encryption.......................................... 26 3.13 Browser layer encryption......................................... 28 3.14 Index rollover............................................... 29 3.15 Default home page............................................ 29 4 Discovery 31 4.1 Time settings and refresh......................................... 31 4.2 Fields..................................................
    [Show full text]