IT profile of Norbert Klein

Profile Norbert Klein

Linux System Administrator

* SLES (Novell Suse Linux Enterprise Server)
* GPFS (IBM General Parallel File System)
* Nagios and Cacti
* Apache hardening
* IDS/IPS systems with Snort
* Training

Personal Data
Contact
IT knowledge / experience
Projects
Permanent positions
Advanced training

Setup of a monitoring solution for the technology of the parking decks in Mainz based on Nagios, NagVis and PNP4Nagios.
Documentation for end users and administrators.
The main focus here was to create a graphical front-end with NagVis which is nice and easy to use. For that I created some new iconsets and arranged them in NagVis so that the status of all parking decks can be viewed on one screen.
The Nagios configuration has been structured in a way that different views of the parcking deck technology can be displayed in NagVis: e.g. according to location, according to the type of the devices, etc..
The long-term logging of all the data and its graphical presentation has been realised with PNP4Nagios.
This flexible open source solution saved more than 5000 Euro initial licence fees compared to a solution with Microsofts SCOM (System Center Operations Manager)!

2010-03-02 – 2010-03-03
Kommunales Rechenzentrum Niederrhein (KRZN) Kamp-Lintfort

Setup of a GPFS cluster.
Installation of lin_taped with driver and utilities.
Creation of necessary udev rules for the IBM tape devices.

2010-11-29
[A web hoster]

Writing of a bash script to clean up the web content of customers after a successful hacking attack.

2010-11-11 – 2010-06-02
DB Systel GmbH Erfurt
Design of a distributed and redundant monitoring architecture with Nagios 3, NRPE, check_multi and check_logfiles for about 1800 Servers.

Planning and design

As-is analysis of the existing monitoring environment.
Rough concept for setting up Nagios, NRPE, check_multi and check_logfiles with central configuration.
Concept for a Nagios configuration frontend which allows large-scale modifications of the Nagios configuration. Every change can be made on an arbitray number of hosts and/or services. This frontend also serves as an interface to existing systems and generates a new Nagios configuration automatically based on the data of those systems. Thus, the monitoring is integrated in the IT environment and the Nagios configuration remains up-to-date.
Definition of processes for operation and maintenance of this archticture.
Evaluation of Thruk and MK Livestatus.

Implementation

Porting of checks from the existing monitoring system to Nagios.
Writing of SPEC files and RPM packaging for all Nagios components.
Connecting Nagios to a Netcool console via syslog-ng, logger and bash scripts. Every check result is sent to Netcool. Acknowledgements are synchronized between Nagios and Netcool. A heart beat is sent from Nagios to Netcool.
Usage of check_multi with central configuration. "Feed passive" tested.
Writing of additional Nagios plugins as bash scripts.
Writing of helper scripts for several operations via external commands which are not yet supported by the Nagios web interface.
Customizing of the Nagios web frontend.
Creation of new init scripts.
Configuration of several services like Postfix and syslog/syslog-ng.

Load testing and performance tuning

Testing of the performance impact if nsca encryption is enabled in a distributed Nagios environment.
Using of OCP daemons for performance improvement.
Writing of a script which allows to analyse the performance of every single Nagios plugin.
Writing of bash skripts to automate load testing for an arbitray number of running Nagios instances, hosts and services.
Nagios performance tuning so that more than 2000 servers with more than 51000 services can be monitored on a single machine with 8 cpu cores. The average host and service latency is below 0.5 seconds. The check interval is 5 minutes.

Documentation and knowledge transfer

Creation of diagrams and presentations.
Very detailed documentation as word documents and wiki pages.

2009-11-27
Carpe diem GmbH Wiesbaden

Nagios 3 training on SLES 11, with NConf, PNP4Nagios and NagVis. Workshop with ready-to-run Nagios VMware images for all participants.

2009-11-05
eXstor GmbH Wiesbaden

Translation of the whole web presence into English.

2009-10-20 – 2009-10-26
Mario Größler

OS and web server hardening. Setup of a web application firewall.
Adjustment of the WAF rule set to various web applications.

15.09.2009 – 01.10.2009
Deutsche Bausparkasse Badenia AG Karlsruhe

Design and test of a deployment for a hardened Apache reverse proxy. The absolute maximum of security was required with modifications of the source code, the deployment of a web application firewall, etc.

2009-09-07
Carpe diem GmbH

Training for Cacti, rrdtool and snmp on SLES 10.

2009-07-27
esacom GmbH

Set-up of GPFS for a HA cluster on SLES 10.
udev configuration for IBM tape and changer.

2009-06-22 – 2009-07-06
AVL Deutschland GmbH

General consulting regarding Nagios and Cacti.
Creating of special data templates and their associated data queries in Cacti for temperature and fan speed measuring.
Programming of PHP scripts to import these snmp values into Cacti.
The challenge here was that the snmp data was not provided in an index-based structure and could not be walked. Additionally there was the requirement that several IP addresses had to be associated with one single device in Cacti.
Training for the Cacti plugins Discovery and Weathermap along with detailed documentation.

2009-06-10 - 2009-06-16
eXstor GmbH

Setting up the hardware raid for an IBM xSeries 306m server.
New installation and configuration of SLES 11.
Manual installation of the IBM tape driver lin_tape, installation of the daemon lin_taped and the tape utilities IBMtapeutil.

2008-09-01 - 2009-06-09
www.infosecprojects.net