Tuesday, July 26, 2022
Saturday, July 23, 2022
Nutanix HCI vs Sangfor HCI
| | Nutanix HCI | Sangfor HCI | Remarks |
| Hypervisor Support | AHV / vSphere ESXi / Hyper-V | SANGFOR aSV | Nutanix AHV officially certified and support third-party mainstream application or OS (e.g. Oracle / RHEL / Security virtual appliance / Backup software). Sangfor aSV Sangfor Hypervisor aSV Named in the Gartner Magic Quadrant for Hyperconverged Infrastructure, Sangfor's hypervisor able to virtualize x86 servers and create virtual servers based on that, it comes with built-in VM management, backup, high availability, distributed resource scheduling and automated hot add for VM. Ref: https://www.sangfor.com/downloads/sangfor-hci-brochure IDC 2021 Q1 HCI market share in China, Sangfor is 13.3% higher than SmartX and Nutanix in China mainland market. Ref: https://mp.weixin.qq.com/s/4BOErtnuNNW2RgGMKbAQXg |
| HCI Management | Nutanix Cloud Management | SANGFOR Cloud Platform(SCP) | Nutanix not only provide HCI management capability, but also advance features like cloud like operation console that automate IT operation tasks, forecast resource usage and capacity planning…etc Sangfor HCI Management: Sangfor's management HCI and SCP is web-based and visualized, VM resource consumption is displayed in real-time, all of Sangfor's cloud features are unified and able to be managed from the web UI, it also includes comprehensive logs and alerts. Sangfor cloud platform, runs on HCI, supports multi-tenancy, self-service portal, billing, approval workflow customization and automation, also supports management for x86 physical servers, VMware and AWS. Ref: https://www.sangfor.com/downloads/sangfor-hci-user-manual https://www.sangfor.com/downloads/sangfor-scp-user-manual |
| Automation features | DBaaS (Era) / App Self Services / Playbook | IT Automation, Self-Service Portal, Sangfor DMP, security automated response | Nutanix provide different automation features to helps you simplify application management and operation tasks. E.g. DBaaS (Era) – Multiple DB automation and management IaaS – Automated application deployment and management Playbook – Automate IT operations tasks Sangfor Automation Features: IT Automation, Self-Service Portal Sangfor DMP Standardized database service delivery, automated operation and maintenance management, real-time monitoring and data backup protection Ref: https://www.sangfor.com.cn/product-and-solution/sangfor-cloud/dmp Cyber Command correlated security service 1. For scenarios like zombie network, CC works with distributed firewall to quarantine infected cloud host automatically. 2. In ransomware scenario, CC leverages storage snapshot API to take snapshot of the infected VM to minimize loss. 3. For mining scenario, CC sends command to power off/ suspend the mining VM to avoid unnecessary resource consumption |
| Security feature | Network micro segmentation / Ransomware protection / WORM unified storage | SANGFOR aNET/ NFV | Nutanix HCI platform are security ready HCI platform that help you meet certification and standards with ease
Sangfor aNET: 1. Sangfor aNET support network micro segmentation, Distributed firewall, NFV(NFV-NGAF, NFV-SSL and so on). 2. Can integrate with Sangfor NDR solution 3. Built-in WAF protect HCI console |
| Cloud Native Application | Cloud native ready | PaaS-KubeManager | Nutanix are ready for cloud native solutions. It offer k8s deployment and management on AHV. Also certified for Redhat Openshift platform for advance DevOps environment Sangfor PaaS Features: PaaS-KubeManager: Sangfor PaaS KubeManager is based on Kubernetes, it supports built-in Harbor-based image registry, application store, auto-scaling for PODs, multi-cluster management, integrated web interface as well as KubeCtl interface, CSI integration with aSAN, supports 3rd party App Store and standard Kubernetes API. Ref: https://www.sangfor.com/downloads/sangfor-kubemanager-brochure https://www.sangfor.com/downloads/sangfor-kubemanager-whitepaper https://www.sangfor.com/downloads/sangfor-paas-solution---kubemanager |
Thursday, July 21, 2022
McAfee Endpoint Security deteced a file with an unknown reputation pop up after deploy McAfee TIE
User will receive a pop up like the following:
In the McAfee report, you will find a event prompt – timed Out (If user did not respond) and the action taken will be "Adaptive Threat Protection Allowed"
| Event Category | Threat Type | Action Taken |
| Prompt - Timed Out | Trojan | Adaptive Threat Protection Allowed |
Cybersechub announced several threat intelligence (TI) feeds provided by HKCERT, FortiGuard Labs and TrendLabs
Cybersechub announced several threat intelligence (TI) feeds provided by HKCERT, FortiGuard Labs and TrendLabs today (20/7/2022). For members, who is able to subscribe it to put into your firewall and SIEM to automate security and respond. It is for free.
You can automate the integration with your systems via the machine-to-machine (M2M) threat intelligence application programming interface (API) feature. By subscribing the M2M sharing service, you can collect the latest indicators of compromise (IoCs) data in machine readable formats (CSV / JSON / STIX) from multiple sources in one go and correlate the IoCs with the system logs of your organisation in order to react promptly to potential cyber attacks.
Saturday, July 16, 2022
VooV Meeting and WeMeet troubleshooting
If you receive the following errors:
Delete those file at the following:
C:\Users\<Username>\AppData\Roaming\Tencent\VooVMeeting\Global\Database
腾讯会议
C:\Users\<Username>\AppData\Roaming\Tencent\WeMeet\Global\Database
Remark:
The proxy setting and also some saved setting will be removed. (You can backup the proxy setting by backup the file "proxy.dat")
Saturday, July 9, 2022
Nutanix HCI vs SmartX HCI
| | Nutanix HCI | SmartX HCI | Remarks |
| Hypervisor Support | AHV / vSphere ESXi / Hyper-V | ELF / vSphere ESXi/Citrix XenServer | Nutanix AHV officially certified and support third-party mainstream application or OS (e.g. Oracle / RHEL / Security virtual appliance / Backup software). SmartX SMTX software is certified by Citrix and Vmware. And SMTX software is also certified by many domestic vendors, such as UOS OS, Kylin OS, Kunpeng and Phytium. |
| HCI Management | Nutanix Cloud Management | SmartX CloudTower | Nutanix not only provide HCI management capability, but also advance features like cloud like operation console that automate IT operation tasks, forecast resource usage and capacity planning…etc SmartX HCI management: CloudTower provides advanced features including: 1. Cross-cluster migration 2. Content library 3. Self-service portal 4. Resource optimization and recommendation 5. USB device 6. One-click upgrade 7. Active-active cluster 8. Restful API and CLI management 9. VM level or volume level storage QoS 10. Placement group |
| Automation features | DBaaS (Era) / App Self Services / Playbook | No such product | Nutanix provide different automation features to helps you simplify application management and operation tasks. E.g. DBaaS (Era) – Multiple DB automation and management IaaS – Automated application deployment and management Playbook – Automate IT operations tasks Currently, SMTX does not have DBaaS or PaaS products. |
| Security feature | Network micro segmentation / Ransomware protection / WORM unified storage | Everoute | Nutanix HCI platform are security ready HCI platform that help you meet certification and standards with ease
Everoute is an SMTX micro-segmentation product. 1. It supports setting network security policies according to vm labels. 2. It also supports isolating abnormal VMs in the cluster. |
| Cloud Native Application | Cloud native ready | Roadmap only | Nutanix are ready for cloud native solutions. It offer k8s deployment and management on AHV. Also certified for Redhat Openshift platform for advance DevOps environment Cloud native solution is in the roadmap. The new solution will support managing VM and containers (k8s-based) in one platform. |
Friday, July 1, 2022
Fireeye (Trellix) Network Security (NX) failed to reconnect (via proxy to connect Internet) when Cisco Umbrella (OpenDNS) traffic routed to another DC during schedule maintenance
Error message: 'Critical: 1# subscriber:OpenDNS is with http response code:502 details…..502 Bad Gateway
Check Cisco Umbrella Service status: there are schedule maintenance the traffic being re-routed to another DC.
https://status.umbrella.com/#/
Resolution:
Run CLI – 'show health system warning' and show fenotify healthcheck' to check the Details for subscriber status. Fix the subscriber
Run CLI – 'fenotify healthcechk recheck' fter fix the subscribers config and server
Subscribe to:
Posts (Atom)