10-10-2017, 01:47 PM
Thanks Robbie,
I've been playing with 'security onion' and NEMS. Together they really do make an amazing and complete solution for what I was looking for. The biggest hurdle with adding the network security to NEMS might actually be storage as logs grow fast with pcap data.
Unless I've missed how to setup in NEMS, I remember why Nagios was a challenge for me getting device SNMP traps. Nagios XI has the nice web UI, core does not. I see there appear to be a few community extensions for Nagios (which I have not completely researched) as yet but these may be something to consider in future development of NEMS to make dealing with the full potential of SNMP configuration and visualization. (and keep with your projects focus on performance rather than security).
SNMP and NEMS might make for a great show idea as well If you haven't done one already.
Cheers
mpacey
I've been playing with 'security onion' and NEMS. Together they really do make an amazing and complete solution for what I was looking for. The biggest hurdle with adding the network security to NEMS might actually be storage as logs grow fast with pcap data.
Unless I've missed how to setup in NEMS, I remember why Nagios was a challenge for me getting device SNMP traps. Nagios XI has the nice web UI, core does not. I see there appear to be a few community extensions for Nagios (which I have not completely researched) as yet but these may be something to consider in future development of NEMS to make dealing with the full potential of SNMP configuration and visualization. (and keep with your projects focus on performance rather than security).
SNMP and NEMS might make for a great show idea as well If you haven't done one already.
Cheers
mpacey