Category: security

Posted on

Runecast Analyzer: new release 1.8

Runecast extends functionality to NSX-V

A new release of Runecast Analyzer is scheduled for June, 26th. Version number 1.8 will come with a bunch of improvements and new features. Most important new feature will be support for the NSX-V platform.  Every important function of vSphere- and vSAN analysis will now be available for NSX-V too.

Feature List

  • The Analyzer now detects NSX issues on VMware NSX-V versions 6.2 – 6.4.x
  • Automated scan and evaluation of the NSX-V Best Practices violations.
  • Automatic NSX-V VMware Security Hardening profile analysis and reporting
  • NSX-V DISA-STIG profile analysis and reporting
  • Automatic discovery of the NSX Managers linked to VMware vCenters
  • Web-console performance improvements for bigger environments (dozens of ESXi hosts).
  • vSphere web console Runecast plugin NSX update with a new issue summary widget.

Links

 

Posted on

vShield to NSX migration

Replacing deprecated vShield by NSX for vSphere

VMware vShield is part of the vCloud Networking and Security (vCNS) suite. Its latest version 5.5 has reached EOGS (end of general support) in September 2016 and has been replaced by NSX for vSphere.

We still see quite a lot of vShield installations in productive environments. Mainly used for agentless guest introspection together with security solutions like Trendmicro DeepSecurity,  McAfee Move or others. Now that many customers consider migrating from vSphere 6.0 to vSphere 6.5, they have to face the fact that vShield is no longer supported from vSphere 6.5 onwards. And it is crucial to take product compatibility into account. There is a relationship between different vSphere, NSX and security product versions.

That’s why I show different migration paths in this blog article. Continue reading “vShield to NSX migration”

Posted on

Remove VM objects from Veeam backup-chain

Leverage Powershell to selectively eliminate VMs from backup archives

GDPR / DSGVO casts its shadow onto IT. On Friday 25th of May European privacy regulations will become effective and violations can result in very harmful penalties for enterprises.

In that context an unusual task was addressed to me today by a customer: “Delete all backups of VM KillMe (yes, all)!”

There are several strategies to fulfill the task: Continue reading “Remove VM objects from Veeam backup-chain”

Posted on

Increase efficiency with vRealize Log Insight

Syslog Server – a time saving tool

Today I’m writing about a use case, which is not very popular amongst IT professionals. Troubleshooting by parsing system logs. Sounds attractive as a dental surgery.

Almost any system and any component logs events, warnings and errors into some kind of internal log. Emphasis is on any and internal, because that’s part of the problem. Log information isn’t usually easy accessible. And once you’ve copied all logs to a common location, you need to scroll through it by a text editor. This is cumbersome and tricky. If you – for example – have to align events from a server with events from a switch, you’ll need multiple steps to achieve it. A very time-consuming procedure. If you have bad luck (Murphy says, you will..), one of the components is unavailable, because an error occurred. No log – no analysis. Continue reading “Increase efficiency with vRealize Log Insight”