PALO-ALTO-FIREWALL network technology integration


ServicePilot network-palo-alto-firewall


# Palo Alto Firewall

Overview

This package is designed to monitor a Palo Alto Firewall using SNMP.

Description

This package automatically configures the ServicePilot Manager to collect statistics from Palo Alto Firewall based on an `SNMP collection. The statistics gathered in this way include:

  • Network: Ping Response Time and Interfaces activity
  • System: CPU, Memory, HA state
  • Sessions statistics
  • Virtual System and Tunnels statistics
  • TCP, Drops and DOS statistics

Requirements

  • SNMP Service must be configured (Security: read-only SNMP community and allowed host must be set) and started on the targeted machine.

  • Network Flows - It is is necessary to ensure network connectivity between ServicePilot and the monitored device. In case of a network infrastructure using a firewall, all the ports below must be opened:

    • UDP/161 (SNMP): Between ServicePilot Manager and Palo Alto Firewall
    • ICMP/Echo Request (Ping): Between ServicePilot Manager and Palo Alto Firewall
    • UDP/162 (SNMP Trap): (Optional) Between Palo Alto Firewall and ServicePilot Agent
  • ServicePilot Requirements

    • ServicePilot Manager minimum version: 8.5

Installation

Before adding a resource to monitor, make certain that all pre-requisites are in place and if a ServicePilot Agent is required, that it is communicating correctly with the ServicePilot Manager.

Add resource using Views Configuration web interface

  1. As an administrative user of ServicePilot, open the ServicePilot web interface.
  2. Navigate to Administration. The Configuration > Views web page will open.
  3. Click on the view in which to place the new resource in the Views hierarchy on the left of the interface. The View editor section will show the existing view contents.
  4. From the Packages list on the right of the interface, click and drag the network-palo-alto-firewall package into the View editor and let go.
  5. The Resource properties dialog box will open to allow resource configuration.
  6. Click OK to close the Resource properties dialog box. Note that the dialog box will not close if required parameters are not set.
  7. Click Save to apply the new resource to ServicePilot configuration.

Key field notes

In the Monitoring Policies tab, specify the policy or policies to apply to the resource

  1. Basic Parameters tab:

    1. IP address: Specify the IP address of the Palo Alto Firewall, as resolvable by the machine on which ServicePilot Manager is running
  2. Appliance Monitoring tab:

    1. Ping: Set it on to get ICMP availability
    2. System: Set it on to get details about system
    3. Storage Volumes: Set it on to get details about storage volumes
    4. Network Interfaces: Set it on to get details about interfaces
    5. {Optional} Ignored Interfaces names separated with '|': Specify name(s) of interface(s) NOT to be monitored
    6. {Optional} Allowed Interfaces names separated with '|': Specify name(s) of interface(s) to be monitored

      Note: Each element of the interface lists is a regular expression as defined by Like Operator (Visual Basic)

  3. Monitoring Options tab: Select the different monitoring options to enable.

    1. Sessions: Enable monitoring for Sessions
    2. Sessions by Virtual Systems: Enable monitoring for Sessions by Virtual Systems
    3. Virtual Systems to Ignore: Specify name(s) of Virtual System(s) NOT to be monitored
    4. Virtual Systems to Allow: Specify name(s) of Virtual System(s) to be monitored
    5. Connection per second for Interfaces: Enable monitoring for Sessions
    6. Interfaces to Ignore: Specify name(s) of interface(s) NOT to be monitored
    7. Interfaces to Allow: Specify name(s) of interface(s) to be monitored
    8. Global Protect Gateway: Enable monitoring for Global Protect Gateway
    9. Tunnels Statistics: Enable monitoring for Tunnels Statistics
    10. TCP Statistics: Enable monitoring for TCP Statistics
    11. Drop Statistics: Enable monitoring for Drop Statistics

Notes

MIBs Used:

  • RFC1213-MIB2
  • PAN-COMMON-MIB

How can we help you?

Or call us at +33 2 40 60 13 30