Best posts made by NetworkNerd

@scottalanmiller said in Choosing a SIP Provider - What Should I Look For?:

Voip.ms and Twilio are the plances to look first.

I'd consider Intelepeer as well. We used them at my previous company, and they were very good.

Also look at the way things are priced. Some carriers charge based on number of concurrent calls, while other charge a low per-minute fee or give you a bucket of minutes and charge a small overage fee if you go over that bucket amount. Find out how much the new carrier charges for things like inbound / outbound CNAM, how much they charge per DID you have using their service, etc.

Knowing the max concurrent calls happening right now can help you plan for how much bandwidth gets used. If you plan for 100 Kbps per concurrent call of internet bandwidth needed, that's a decent estimate if the provider is using G711u as the codec (less if G729).

@travisdh1 - did you install the web UI on your OSSEC server? It looks like that has not been updated since 2015, so it seemed like that would not be wise (although someone else shows they did it here. But it also looks like if you don't install the web UI you're basically managing all things via command line. The documentation is what I'd call less than stellar.

To give some frame of reference, I was able to stand up a CentOS 7 minimal install and install OSSEC without much trouble. It's the configuration part that is a bit challenging. It looks like /var/ossec/etc/ossec.conf controls a great deal of the magic.

We decided to stick with Wazuh. It runs on CentOS 7 and has a shiny OVA we used to deploy it. So for the purposes of this thread, we have our distro selected. Thanks everyone for the help.

I think this may answer it. The Wazuh employee I had been chatting with sent me here - https://github.com/wazuh/wazuh-kibana-app. They don't officially list Kibana 5.6.3 there, but the upgrade and Wazuh app install worked like a champ.

I'd still love community opinions nonetheless.

After asking the Wazuh employee I had been speaking to about Kibana 5.6.3, the GitHub repo was updated to include it.

Those are great points, Scott. In my case I already know the boss reads my blog, but I completely understand the need to think about the audience (as in really step back and think about who might read the content). And in some cases, your boss may not want you sharing as much detail as you have in a post so as to not give too much away about the company's infrastructure.

This is one of my favorite SAM IT videos.

I have a friend who uses Automatic in conjunction with his car's ODB-II connector. He's also a SE who does a ton of driving.

I'll throw in a couple of recommendations here as well. One thing you want to be careful of is not spanning a NUMA boundary with the number of vCPU you're giving the SAP VM as this can actually slow down the VM overall. Make sure you do not turn on hotplug CPU for the VM (ability to add additional vCPU with the VM powered on if supported by the guest OS) because it will disable vNUMA.

Also, I would highly recommend watching this session from VMworld 2017 about monster VMs that could help anyone needing to virtualize a DB server - https://www.youtube.com/watch?v=sXbOoRo_Wn4. You can get the slide deck here.

What versions of vCenter and vSphere are you running?

Make sure if you do backup the SQL databases and restore that the security gets backed up and restored as well. I've seen instances where a database was restored along with security permissions on the database, but there were no SQL logins created on the target instance to map to the restored database permissions.

In the end, it is about what can help your business meet its RPO and RTO. That is going to determine the budget.

@travisdh1 said in Enterprise password management:

LastPass Enterprise will integrate with your Active Directory environment. You'd be able to delegate password permissions by AD group. While I use it, I'm hesitant to recommend it.

Don't know what the other well known names are able to do in the space. I'd assume that Dashlane would have the same capability, but I haven't looked into any others in a good while now.

Dashlane should be able to compete pretty well with LastPass, but I seem to remember it being more expensive for some reason. Maybe that has changed in the last year or so.

I've been helping attend to some of the technology needs at a church where my family and I worship. I've seen other congregations use YouStream to do a live stream of the minister's Powerpoint and music for songs that would normally be displayed on projectors. But I'm curious about what it might take to stream not only that but a camera feed of the congregation at the same time (kind of a picture in picture type feed).

Has anyone done this? Do you have recommendations on the software to use to run the streaming and what type of camera might work well for this? I've been tasked with figuring it out and providing a BOM for what we might need to do it.

I keep hearing great things about using Pi-Hole (both here and from a colleague). But here's what I want to know - why use Pi-Hole instead of a full-blown web filter at the house? For those who are using it, what made you go Pi-Hole instead of the free home edition of Sophos, for example?

I seem to remember someone mentioning to me recently that they used ChromeBits for digital signage. I'm not sure about the specific TV hardware they were using. I think they may have been using Sign Builder as well.

I'd like to take advantage of Filebeat on my Raspberry Pi 3B+ (currently running the latest version of Raspbian) to send logs to an external system, but from everything I have read, there is no package for it for ARM (unless you run ArchLinux, that is). This post from the Elastic community states they do not officially support ARM.

I found this blog someone wrote about building Filebeat from scratch so it would work on ARM, so if I go for it, I would follow their steps and just make necessary tweaks for newer versions of go, etc. The author shows how to build Filebeat for ARM and then how to install and configure, but the interesting thing in my opinion is that there was no mention of how well Filebeat worked long term.

Has anyone here gone through the process and had it work out well? For reference, the repo for Filebeat is here. I'd appreciate any thoughts / feedback.

I've been trying to help launch a live stream for a church lately. They have a Lumens LC200 appliance and one camera (also a Lumens, cannot remember the model number). They are using this with a Presonus sound board / mixer.

They got the LC200 configured to pull in the camera feed, set all camera presets, etc. with no issues. For streaming specifically, the setup it's that hard. You enter the RTMP / RTMPS server address and stream key from Facebook / YouTube, and you're on your way. At least you would think so, right?

We tested Facebook Live the other day twice successfully (once at noon and once at 5 PM). The first was a private post, and the other was public. The church has a page on Facebook, so as long as you are an admin of the Facebook page you can Go Live on the church page.

The third time we tried to stream to Facebook Live (later on the same day as the two successful tests), the video stream never made it to Facebook to preview (so no way to go live). The lumens showed a stream error inside the Director software that someone uses to activate the stream. We double and triple checked stream keys, tried different ones, rebooted the Lumens, blew away configs and added them back. I thought maybe the church was having an internet issue, but there were no problems getting to the internet from any PC there (could always get to Facebook to attempt to go live but never get a video preview).

Yesterday we went back when no one was there to test again. I thought maybe there was an outside chance it would work. But nope...the same stream error happened. We updated firmware on the LC200 and the camera and tried Facebook again. No dice.

But then we tried streaming to YouTube (basically same config parameters). That worked like a champ every time we tried (video preview comes in as expected in seconds once you start the stream from the Lumens).

I have a ticket open with Lumens on this, but I don't see how this could have worked twice successfully and all the sudden stopped working. This video shows the simplicity of the setup on the Lumens side.

I should also add that anyone can Go Live from a mobile device with no issues like they did before the camera and Lumens device came in to play.

Has anyone seen this? I'd love to hear ideas from folks here on what we might be missing. I would rather have had this never work streaming to Facebook Live than to work twice and then fail after that, especially since YouTube works. I checked permissions on the church page, and the account used to login to Facebook is still an admin of the page. We even tried a different user login who is the admin of the page with no success.

@dbeato We don't have web filtering capabilities at this location. It's just a Linksys gateway router (not sure there are filtering capabilities on it). Access to this device is limited to 1 person, and no configs changed.