- configuration standards
- logging and alerting outside of basic resource monitoring
In the spirit of having good tools to make your job easier, Northwest Performance Software has a program called Managed Switch Port Mapping Tool that can help put you on the right track in terms of getting to know your network environment, improving your visibility, and managing your ongoing changes. It's a tool that I have used off and on for years in conjunction with their popular toolset called NetScanTools Pro. The Managed Switch Port Mapping Tool is pretty straightforward – it simply uses SNMP to map out network switches which can provide a ton of information about entire network segments - information that often gets taken for granted. Here's a sample screenshot:
We work in a world where vendors are pushing SIEM, CASB, and Next-Gen Whatevers while, at the same time, we don't even have the network and security basics down pat. We're too busy spending time and money on the latest and greatest technologies when we need to just go back and do more to get a grasp on the core essentials of the network. Once that has been achieved, then – and only then – does it make sense to buy into what we're being sold. Just be careful, because such proposals may not always be in your best interest!
Kirk Thomas at Northwest Performance Software has been creating these network tools for a couple of decades now. I first learned about NetScanTools back in the mid-1990s at Novell's BrainShare conference (remember the awesome OS called NetWare!?). Anyway, if you're looking to get a better grasp on your network while, at the same time, improving your overall security posture, check out these tools. They'll only serve to make you look better. If you're like me, you can use a dose of that every now and then!