Open NAC Analytics Monitoring

We defined and strongly recommend to have in place monitoring process for every Role (Sensor, Core, Analytics) in any productive environment.

We classify and define different monitoring methods:

• System resources where is monitored hardware performance and its status.
• External services availability where those are checked from outside.
• Processes that are up and running along with its related events.

In order to understand better how to monitor openNAC Analytics we recommend to review openNAC Analytics Architecture section

• System resources:

  • CPU use
  • Memory use
  • Network use
  • Disk performace and use

• External Services: Check service availability:

  • Logstash Port: TCP 5000
  • Kibana Ports: TCP 5601
  • Elastic Ports: TCP 9200

• Processes and Events to be monitored.

  • Logstash
  • Kibana
  • Elastic
  • rsyslog