I am looking for some advise about tools for openstack monitoring. This is a project that I am looking to take on and try out. You advise is much appreciated.
I am looking for software/application that I can install on my OpenStack to allow monitoring of security events.
In particular, I am trying to look into virtual machine monitoring, SLA based monitoring, Event based monitoring and Policy Based Monitoring.
Note, I am not really interested in resource allocation or usage. Any advise on existing tools that I can try would be much appreciated.
The OpenStack docs and the OpenStack wiki seem to have some good recommendations. However, this question might be better suited for ServerFault, and you would likely get better answers posting there.
Related
I am building a website for a client. He's asking me to do security audit of the website. I don't have expertise in security audits and the budget is low. However, I am trying to give the best value to my client. Is there any tool using which I can perform security audit of the website at a low cost?
There are also a few SaaS vulnerability scanning tools that I personally use for my website. Some are free or have subscription-based plans according to users' budgets. Providing you with a detailed report along with consultation from a security expert if required.
I have faced similar issues in the past, it's difficult to find an all in one solution as it is and usually the clients don't even know what they want, also they don't realize that getting security audits done will subsequently increase the cost from the original budget by a huge margin.
I did however, go through the comments and found https://reconwithme.com mentioned, will have a look and provide feed back after using it. I have tried acunetix and they're good but is extremely expensive for start ups who are just entering the game.
Forgot to mention the tool I use, its called ReconwithMe.
Is it possible to learn Azure practical skills without paying or providing my card info?
I found out about the https://portal.azure.com/. And about the modular tutorials https://learn.microsoft.com/en-us/learn/browse/?products=azure. But I am not sure whether or not it will be feasible for me to cover all important for the commercial development topics with just the free resources above.
Maybe there are other ways to learn Azure profoundly without paying or providing my card info? It is an important question for me, because I really want to learn Azure a lot, but if there is no free plan to learn it, then I will have to pick something else (e.g. AWS or Heroku).
Here learning Azure implies being able to access theoretical knowledge base and documentation (both of which I am sure are present) and also being able to use a fully free (and without any card info) sandbox environment. And the question is a doubt that such a free sandbox environment exists.
The Microsoft Learn resource is very good and free. I use it all the time. However, not every learning module is free. Some require an account. This might be around 5% that require your own Azure account.
Can you learn Azure for free with Microsoft Learn? Absolutely YES. There are almost 1,000 modules on the site to choose from. I recommend this site even for very experienced Azure developers. For example, the VPN Gateway modules are free to practice with.
Microsoft Learn
After a while I was able to come over the Azure sandboxes. And that is what I was looking for in the question. E.g. this article explains how to use them.
Will CKAN be the best solution for a portal like asiapacificenergy.org?
If yes, can you provide an estimate of how much effort, time and developers would be required?
Any tips or best practices you can share for an inexperienced team? Any pitfalls to avoid?
Thank you very much.
Any help would be highly appreciated!
Kind of hard to say. Depends exactly what you want to do exactly.
From ckan.org:
CKAN, the world’s leading Open Source data portal platform CKAN is a powerful data management system that makes data accessible – by providing tools to streamline publishing, sharing, finding and using data.
CKAN is like wordpress but instead of blog posts its datasets. It helps manage and inventory datasets for an organization. It has other cool and powerful features too but that site you mentioned reminds me of ArcGIS kind of. There is also Socrata or many other vendor offerings. I prefer CKAN though.
There is a demo site (demo.ckan.org) you can play with, add and remove stuff from, etc to get a feel for it.
They have decent documentation as well that you can follow https://docs.ckan.org/en/2.8/user-guide.html . You could setup a local version to get a feel for how hard or easy it is. https://docs.ckan.org/en/2.8/maintaining/installing/install-from-source.html
I'd say you need someone with python and server experience to get you setup and then basic usage and administration can be delegated. But it can be learnt.
Gov.uk uses ckan for their data catalogue and have some helpful docs available as well. https://docs.publishing.service.gov.uk/manual/data-gov-uk-supporting-ckan.html
I'm looking for examples that show Azure scales up well. Does anyone know of any large, high-volume sites that run on Azure?
This type of question seems out of scope. That said, try looking at some Windows Azure case studies. This is where you're likely to find information on deployment details. Typically, deployment details aren't revealed to the general public, and those of us who do know about such deployments are usually bound by NDA's.
What I am looking specifically for is software thats runs on Linux (CentOS) that can do the following:
Show human readable CPU, Memory, Disk, Apache, MySQL utilization/performance.
Provide historic reports on the above metrics (today, week, month, year etc...)
Provide this data in an easy to view web based report or at least exportable to excel/csv.
I have looked at Cacti and I don't think its really an enterprise solution. I don't care if this is free or paid for software, though open source would be nice I am really just looking for the best solution.
Does anything like this exist for Linux? The problem this company is faced with is we have no way of measuring how the changes we make in our code and server configurations impact overall performance. So when I saw lets do this - then do it, I can't shows the benefits or revert back cause it was a negative in terms of performance. I am not a linux guru, just a developer with some linux skills, but am open to all suggestions. Thanks for reading.
Even though there are lot of open source projects but the main drawback they suffer is that they are away harder to configure. I have some across a free to called SeaLion which is way easier to install and configure. And it has awesome timeline base to representing outputs. Also there are different paid tools line new relic, server density, solar wind which you can also give a look.
Check out the eginnovations monitoring tool
http://www.eginnovations.com
Monitors Linux, Apache, mySQL and other applications and is web-based, so you dont have to be a linux expert.
M.
Cacti is a simple one. OpenNMS is more complete.
You are not limited to linux, using SNMP you can fetch this data from a remote host and use any NMS you like.
IMHO one of the best "freemium" tools is Zenoss (http://community.zenoss.org/).
The community edition is free. It will do everything you need, and comes with a simple RPM based installation process. It's a lot easier than Cacti or Nagios to setup and use. I would give it a try.
I use munin. I'ts much much simpler to set up than cacti. It's better to compile it yourself than pull it with apt-get (or other) because that way it has more built-in data-gathering scripts.
Basically there is no single dashboard where you can get all reports metrics. There are a range of opensource softwares which and can serve your need.
For server performance many people recommends munin, you will have to learn how to read teh report data. You can also write custom scripts to get certain report parameters of Mysql. Additionally if your server host provides an API, you can then do lot more related to reports in your admin panel.
you have a look at following url which can provide you more idea about choosing best fit to your need.
https://serverfault.com/questions/44/what-tool-do-you-use-to-monitor-your-servers
http://sixrevisions.com/tools/10-free-server-network-monitoring-tools-that-kick-ass/