| Oracle® Enterprise Manager System Monitoring Plug-in Metric Reference Manual for Network Management Release 6 (6.0) Part Number E12020-01 |
|
|
PDF · Mobi · ePub |
| Oracle® Enterprise Manager System Monitoring Plug-in Metric Reference Manual for Network Management Release 6 (6.0) Part Number E12020-01 |
|
|
PDF · Mobi · ePub |
This chapter provides descriptions for all Check Point Firewall metric categories, and tables list and describe associated metrics for each category. The tables also provide user actions if any of the metrics for a particular category support user actions. Shaded rows represent key columns for a particular category.
Configuration Management metrics consist of the following categories:
Firewall Summary
System Kernel Memory
Hash Kernel Memory (HMEM)
Network Interfaces
The metrics in this category represent a Check Point Firewall Installation. The metrics contain details of the firewall name, type, and version, and also list the security policy installed on the firewall instance.
Table Name — MGMT_EMX_CPFW_SUMMARY
View Name — MGMT_EMX_CPFW_SUMMARY_VIEW
Default Collection Interval — Every 24 hours
Table 1-1 Firewall Summary Metrics
| Metric | Description |
|---|---|
|
Filter Date |
Date of the filter installation. |
|
Filter Name |
Name of the filter. |
|
Kernel Build Number |
Build number of the kernel. |
|
Major Version |
Major version of the firewall. |
|
Minor Version |
Minor version of the firewall. |
|
Product |
Type of product. |
|
Policy Install Time |
Time when the security policy was installed on the firewall. |
|
Security Policy |
Security policy installed on the firewall. |
|
System Name |
Name of the machine where the firewall is installed. |
System kernel memory refers to the amount of memory currently in use by the FireWall-1 kernel module. This also includes the amount of hash memory. The metrics in this category provide information related to the kernel memory statistics on the firewall.
Table Name — MGMT_EMX_CPFW_HOSTMEM
View Name — MGMT_EMX_CPFW_HOSTMEM_VIEW
Default Collection Interval — Every 24 hours
Table 1-2 System Kernel Memory Metrics
| Metric | Description |
|---|---|
|
Minimum Free Swap Memory Necessary |
Least amount of free swap memory required. |
|
System Physical Memory |
Total system physical memory. |
|
System Swap Memory |
Total swap memory on the system. |
|
Total Buffered Memory |
Total buffered memory on the system. |
|
Total Cached Memory |
Total cached memory on the system. |
|
Total Shared Memory |
Total shared memory on the system. |
Hash kernel memory only stores the various tables used in the enforcement of firewall security policy. This memory is hard-wired (that is, it cannot be swapped out), so it is very important to correctly choose the size to not unnecessarily deprive the box of memory. The metrics in this category provide information about the initial and current allocated hash kernel memory on the firewall instance.
Table Name — MGMT_EMX_CPFW_HMEM
View Name — MGMT_EMX_CPFW_HMEM_VIEW
Default Collection Interval — Every 24 hours
Table 1-3 Hash Kernel Memory (HMEM) Metrics
| Metric | Description |
|---|---|
|
Block Size |
Block size for hash kernel memory. |
|
Current Allocated Blocks |
Number of currently allocated blocks. |
|
Current Allocated Bytes |
Number of currently allocated bytes. |
|
Current Allocated Pools |
Number of currently allocated pools. |
|
Initial Allocated Blocks |
Number of initially allocated blocks. |
|
Initial Allocated Bytes |
Number of initially allocated bytes. |
|
Initial Allocated Pools |
Number of initially allocated pools. |
|
Maximum Bytes |
Maximum number of bytes. |
|
Maximum Pools |
Maximum number of pools. |
The metrics in this category provide information about the configuration parameters such as interface name, IP address, MAC address, bandwidth, status, and so forth related to the interfaces on the Check Point firewall instance being monitored.
Table Name — MGMT_EMX_CPFW_NW_INTF
View Name — MGMT_EMX_CPFW_NW_INTF_VIEW
Default Collection Interval — Every 24 hours
Table 1-4 Network Interfaces Metrics
| Metric | Description |
|---|---|
|
Network Interface Index (key column) |
Unique ID for each interface. |
|
Bandwidth (bits/second) |
Bandwidth of the interface in bits per second. |
|
Desired Status |
Desired status of the interface. |
|
Interface IP Address |
IP address of the interface. |
|
Interface MAC Address |
MAC address of the interface. |
|
Interface Name |
Name of the interface. |
|
Interface Type |
Type of interface, distinguished according to the physical/link protocol. Possible values for this metric are: 1 — Other 2 — regular1822 3 — hdh1822 4 — ddn-x25 5 — rfc877-x25 5 — ethernet-csmacd 7 — iso88023-csmacd 8 — iso88024-tokenBus 9 — iso88025-tokenRing 10 — iso88026-man 11 — starLan 12 — proteon-10Mbit 13 — proteon-80Mbit 14 — hyperchannel 15 — fddi 16 — lapb 17 — sdlc 18 — dsl 19 — e1 20 — basicISDN 21 — primaryISDN 22 — propPointToPointSerial 23 — ppp 24 — softwareLoopback 25 — eon 26 — ethernet-3Mbit 27 — nsip 28 — slip 29 — ultra 30 — ds3 31 — sip 32 — frame-relay |
|
Subnet Mask |
Subnet mask of the interface. |
The metrics in this category provide information about bandwidth utilization, and incoming and outgoing traffic rate information for interfaces that have a bandwidth of 10 megabits.
Table 1-5 10-Megabit Network Cards Statistics Metrics
| Metric | Description and User Action |
|---|---|
|
Network Interface Index (key column) |
A unique value for each interface. |
|
10-Megabit Card Bandwidth Used (%) |
Bandwidth utilization of the interface. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
10-Megabit Card Incoming Traffic Rate (Kilobits/second) |
Rate of incoming traffic on the interface. |
|
10-Megabit Card Outgoing Traffic Rate (Kilobits/second) |
Rate of outgoing traffic on the interface. |
The metrics in this category provide information about bandwidth utilization, and incoming and outgoing traffic rate information for interfaces that have a bandwidth of 100 megabits.
Default Collection Interval — Every 24 hours
Table 1-6 100-Megabit Network Cards Statistics Metrics
| Metric | Description and User Action |
|---|---|
|
Network Interface Index (key column) |
A unique value for each interface. |
|
100-Megabit Card Bandwidth Used (%) |
Bandwidth utilization of the interface. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
100-Megabit Card Incoming Traffic Rate (Kilobits/second) |
Rate of incoming traffic on the interface. |
|
100-Megabit Card Outgoing Traffic Rate (Kilobits/second) |
Rate of outgoing traffic on the interface. |
The metrics in this category provide information about the number of chains that are allocated and free.
Default Collection Interval — Every 15 minutes
The metrics in this category provide information about the rate of connections to the firewall.
Default Collection Interval — Every 15 minutes
Cookies are an abstract data type that FireWall-1 uses to represent packets in a consistent manner as each OS stores packets slightly differently. The metrics in this category provide statistical information about the cookies the firewall handles.
Default Collection Interval — Every hour
| Metric | Description |
|---|---|
|
Cookies Get |
Number of times the firewall got data from the cookie. |
|
Cookies Length |
Number of times the firewall queried the length of the cookie. |
|
Cookies Put |
Number of times the firewall put data on the cookie. |
|
Total Allocated Cookies |
Number of cookies that were allocated outside of the initial cookie pool that was allocated. |
|
Total Cookies |
Total number of cookies the firewall handled. |
|
Total DUP Cookies |
Number of cookies (packets) that were duplicated. |
|
Total Free Cookies |
Number of cookies that were freed from the allocated cookies. |
The metrics in this category provide information about the percentage of CPU utilization.
Default Collection Interval — Every 5 minutes
| Metric | Description and User Action |
|---|---|
|
CPU Idle (%) |
Percentage of idle CPU time. |
|
CPU Utilization (%) |
Percentage of CPU being used. A large CPU consumption causes the entire system to slow down. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of CPU. |
The metrics in this category provide information about CPU and memory utilized by individual processes on the machine where the firewall is installed.
Default Collection Interval — Every 30 minutes
Table 1-11 CPU and Memory Utilization by Processes Metrics
| Metric | Description and User Action |
|---|---|
|
Process ID (key column) |
Unique ID for each process running on the firewall instance. |
|
Process Name (key column) |
Unique name for each process running on the firewall instance. |
|
CPU Utilization by Process (%) |
The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Memory Utilization by Process (%) |
The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
The metrics in this category provide information about the disk space utilization statistics.
Default Collection Interval — Every 15 minutes
Table 1-12 Disk Storage Statistics Metrics
| Metric | Description and User Action |
|---|---|
|
Disk Space Free (%) |
Percent of free space on the disk |
|
Disk Space Used (%) |
Disk space utilization. High disk space utilization could cause the system to hang. If you see a high percentage, free the disk space. |
|
Total Disk Space (GB) |
Total disk space in gigabytes. |
|
Total Free Disk Space (GB) |
Total free disk space in gigabytes. |
The metrics in this category provide information about the rate of attempts to free and allocate KMem.
Default Collection Interval — Every 30 minutes
Table 1-13 Firewall Memory Metrics
| Metric | Description and User Action |
|---|---|
|
Firewall Memory (KMem) Allocation Failures per sec. |
Rate of failed attempts to allocate memory. A high value indicates that the firewall is almost out of memory space. The default critical threshold for this metric is not defined. You can provide a value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Firewall Memory (KMem) Allocation Operations per sec. |
Rate of operations to allocate memory. |
|
Firewall Memory (KMem) Free Failures per sec. |
Rate of failed attempts to free memory. A large value indicates that free memory is required, but another process on the firewall is using the memory. |
|
Firewall Memory (KMem) Free Operations per sec. |
Rate of operations to free memory. |
|
Peak Used Firewall Memory (KMem) in KB |
Peak value for used firewall memory in KB. |
|
Used Firewall Memory (KMem) in KB |
Amount of firewall memory used out of the total allocated memory. |
The metrics in this category provide information about the host memory utilization.
Default Collection Interval — Every 5 minutes
Table 1-14 Firewall Memory Utilization Metrics
| Metric | Description and User Action |
|---|---|
|
Memory Used by Firewall (KB) |
Host memory used by the firewall. |
|
Memory Utilization by Firewall (%) |
Percentage of host memory used by the firewall. A large CPU consumption causes the entire system to slow down. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of CPU. |
|
Memory Utilization by Other Processes (%) |
Percentage of host memory utilized by other processes. |
|
Overall Memory (Physical + Swap) (KB) |
Total available memory on the host. |
The metrics in this category provide information about the number of fragmented packets, as well as the number of fragments that have expired.
Default Collection Interval — Every hour
The metrics in this category provide information about bandwidth utilization, and incoming and outgoing traffic rate information for interfaces having a bandwidth of 1 gigabit.
Default Collection Interval — Every hour
Table 1-16 Gigabit Network Cards Statistics Metrics
| Metric | Description and User Action |
|---|---|
|
Network Interface Index (key column) |
Unique value for each interface. |
|
Gigabit Card Bandwidth Used (%) |
Bandwidth utilization of the interface. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Gigabit Card Incoming Traffic Rate (Kilobits/second) |
Rate of incoming traffic on the interface. |
|
Gigabit Card Outgoing Traffic Rate (Kilobits/second) |
Rate of outgoing traffic on the interface. |
Hash memory refers to the amount of memory allocated and used for FireWall-1's state tables. This tells you how much memory is available for the state tables (available), how much is currently in use, and what the high water mark is for memory usage for state tables (peak). It also provides information about the rate of attempts for allocating and freeing HMem, and also provides the HMem utilization. The metrics in this category provide information about the rate of attempts for allocating and freeing HMem and also provides the HMem utilization.
Default Collection Interval — Every 30 minutes
Table 1-17 Hash Kernel Memory Metrics
| Metric | Description and User Action |
|---|---|
|
Allocated Hash Kernel Memory (KB) |
Total hash kernel memory in kilobytes allocated for storing the state tables. |
|
Available Hash Kernel Memory (%) |
Percentage of hash kernel memory available for use on the host system. |
|
Available Hash Kernel Memory (KB) |
Total hash kernel memory in kilobytes available for use on the host system. |
|
Block Size |
Block size for HMem. |
|
Hash Kernel Memory (HMem) Allocation Failures per sec. |
Rate of memory allocation failures. A large HMem consumption causes failures in allocation of memory to new processes. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of memory. |
|
Hash Kernel Memory (HMem) Allocation Operations per sec. |
Rate of memory allocation operations. |
|
Hash Kernel Memory (HMem) Free Failures per sec. |
Rate of memory free failures. A large HMem consumption causes the failures in freeing of memory for new processes. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of memory. |
|
Hash Kernel Memory (HMem) Free Operations per sec. |
Rate of memory free operations. |
|
Hash Kernel Memory Utilization (%) |
A large HMem consumption causes the entire system to slow down. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of memory. |
|
Maximum Hash Kernel Memory (KB) |
Maximum hash kernel memory in kilobytes on the host system. |
|
Peak Used Hash Kernel Memory (KB) |
Peak value for hash kernel memory usage. |
|
Used Hash Kernel Memory (KB) |
Amount of hash kernel memory being used on the host system. |
The metrics in this category provide performance-related information about host memory. The metrics provide the total memory on the host along with the allocated and free memory percentage. They also provide the swap memory utilization.
Default Collection Interval — Every 30 minutes
Table 1-18 Host Performance Memory Metrics
| Metric | Description and User Action |
|---|---|
|
Available Overall (Physical + Swap) Memory (%) |
Total available memory on the host. |
|
Available System Physical Memory (KB) |
Available real/physical memory space on the host. |
|
Available System Swap Memory (KB) |
Available swap space on the host. |
|
Minimum Free Swap Memory Necessary (KB) |
Minimum amount of swap required to be free, or else memErrorSwap is set to 1 and a memSwapErrorMsg string is returned. |
|
Overall Memory (Physical + Swap) (KB) |
Sum of physical and swap memory present on the host system. |
|
Overall Memory Available (Physical + Swap) (KB) |
Sum of physical and swap memory currently available on the host system. |
|
Overall Memory Used (Physical + Swap) (KB) |
Sum of physical and swap memory currently being used on the host system. |
|
Overall (Physical + Swap) Memory Utilization (%) |
A large memory consumption causes the entire system to slow down. To analyze what is causing the problem, use the Solaris "top" system command and look for any firewall processes that seem to be consuming an excessive percentage of memory. |
|
Physical Memory Available (%) |
Percentage of physical memory available on the host system. |
|
Physical Memory Used (KB) |
Physical memory in kilobytes being used on the host system. |
|
Physical Memory Utilization (%) |
Percentage of physical memory being used on the host system. |
|
Swap Memory Available (%) |
Percentage of swap memory available on the host system. |
|
Swap Memory Error |
Error flag 1 indicates very little swap space remains. Refer to the swap memory error message to analyze the problem. |
|
Swap Memory Error Message |
Error message describing the error flag condition. |
|
Swap Memory Used (KB) |
Swap memory in kilobytes being used on the host system. |
|
Swap Memory Utilization (%) |
Percentage of swap memory being used on the host system. |
|
Total Buffered Memory (KB) |
Total buffered memory in kilobytes present on the host system. |
|
Total Cached Memory (KB) |
Total cached memory in kilobytes present on the host system. |
|
Total Shared Memory (KB) |
Total shared memory in kilobytes present on the host system. |
|
Total System Physical Memory (KB) |
Total real/physical memory size on the host. |
|
Total System Swap Memory (KB) |
Total swap size configured for the host. |
The metrics in this category provide performance-related information about host memory for non-Linux Operating Systems.
Default Collection Interval — Every 30 minutes
Table 1-19 Host Performance Memory Metrics (Non-Linux OS)
| Metric | Description and User Action |
|---|---|
|
Available Real Memory Free (%) |
Real memory percentage not currently in use on the host system |
|
Real Memory Utilization (%) |
Real memory utilization percentage on the host system. |
|
Total Active Real Memory (KB) |
Total real memory in kilobytes currently in use on the host system. |
|
Total Active Virtual Memory (KB) |
Total virtual memory in kilobytes currently in use on the host system. |
|
Total Free Memory (KB) |
Total real memory in kilobytes not currently in use on the host system. |
|
Total Real Memory (KB) |
Total real memory in kilobytes available on the host system. |
|
Total Virtual Memory (KB) |
Virtual Real memory in kilobytes on the host system. |
|
Available Virtual Memory Free (%) |
Virtual memory percentage not currently in use on the host system. |
|
Virtual Memory Utilization (%) |
Virtual memory utilization percentage on the host system |
The metrics in this category provide information about the number of records, packets, extracts, lookups, and operations inspected by the firewall.
Default Collection Interval — Every 15 minutes
Table 1-20 Inspection Statistics Metrics
| Metric | Description |
|---|---|
|
Number of Extracts |
Number of extracts inspected. |
|
Number of LookUps |
Number of LookUps inspected. |
|
Number of Operations |
Number of operations inspected. |
|
Number of Packets |
Number of packets inspected. |
|
Number of Records |
Number of records inspected. |
The metrics in this category provide information about the Firewall Module State and the rate of packets accepted, rejected, dropped, and logged by the firewall.
Default Collection Interval — Every 15 minutes
| Metric | Description and User Action |
|---|---|
|
Firewall Module State |
State of the firewall inspection module. |
|
Packets Accepted per sec. |
Rate of packets accepted. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Packets Dropped per sec. |
Rate of packets dropped. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Packets Logged per sec. |
Rate of packets logged. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Packets Rejected per sec. |
Rate of packets rejected. The default warning and critical threshold values for this metric are set higher than what is expected to be necessary in many cases. You can provide a smaller value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
The metrics in this category provide information about the rate of inbound and outbound packets that are accepted, rejected, dropped, and logged on an interface of the firewall.
Default Collection Interval — Every 15 minutes
Table 1-22 Network Interface Packets Metrics
| Metric | Description and User Action |
|---|---|
|
Network Interface Index (key column) |
Unique value for each interface. |
|
Interface Name (key column) |
Name of the interface. |
|
Accepted Bytes In |
Number of inbound bytes on an interface. |
|
Accepted Bytes Out |
Number of outbound bytes on an interface. |
|
Accepted Packets In |
Number of inbound packets accepted on an interface. |
|
Accepted Packets Out |
Number of outbound packets accepted on an interface. |
|
Dropped Packets In |
Number of inbound packets dropped on an interface. |
|
Dropped Packets Out |
Number of outbound packets dropped on an interface. |
|
Incoming Accepted Packets per sec. |
Rate of inbound packets accepted on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Incoming Dropped Packets per sec. |
Rate of inbound packets dropped on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Incoming Logged Packets per sec. |
Rate of inbound packets logged on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Incoming Rejected Packets per sec. |
Rate of inbound packets rejected on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Incoming Total Packets per sec. |
Rate of inbound packets on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Logged Packets In |
Number of inbound packets logged on an interface. |
|
Logged Packets Out |
Number of outbound packets logged on an interface. |
|
Outgoing Accepted Packets per sec. |
Rate of outbound packets accepted on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Outgoing Dropped Packets per sec. |
Rate of outbound packets dropped on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Outgoing Logged Packets per sec. |
Rate of outbound packets logged on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Outgoing Rejected Packets per sec. |
Rate of outbound packets rejected on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Outgoing Total Packets per sec. |
Rate of outbound packets on an interface. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected Packets In |
Number of inbound packets rejected on an interface. |
|
Rejected Packets Out |
Number of outbound packets rejected on an interface. |
|
Total Packets In |
Number of inbound packets on an interface. |
|
Total Packets Out |
Number of outbound packets on an interface. |
The metrics in this category provide information about the bandwidth and status of each interface, as well as the incoming and outgoing rate of packets on each interface.
Default Collection Interval — Every 15 minutes
Table 1-23 Network Interfaces Memory Metrics
| Metric | Description and User Action |
|---|---|
|
Network Interface Index (key column) |
Unique value for each interface. The value for each interface must remain constant at least from one reinitialization of the entity's network management system to the next reinitialization. |
|
Interface Name (key column) |
Name of the interface. |
|
Interface IP Address (key column) |
IP address of the interface. |
|
Bandwidth (MBits/second) |
Bandwidth of the interface. |
|
Desired Status |
Desired state of the interface. The testing state indicates that no operational packets can be passed. |
|
Interface MAC Address |
MAC address of the interface. |
|
Interface Type |
Type of interface distinguished according to the physical/link protocol(s) immediately "below" the network layer in the protocol stack. |
|
Network Interface Status |
When the value is other than 0, there is a difference between the desired and current status of the interface. |
|
Operational Status |
Current operational state of the interface. |
|
Rate of Incoming (Rx) Packet Discards (%) |
Rate of inbound packets chosen to be discarded. The default warning and critical threshold values for this metric are set lower than what is expected to be necessary in many cases. You can provide a higher value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Rate of Incoming (Rx) Packet Errors (%) |
Rate of inbound packets that contained errors. |
|
Rate of Outgoing (Tx) Packet Discards (%) |
Rate of outbound packets chosen to be discarded. The default warning and critical threshold values for this metric are set lower than what is expected to be necessary in many cases. You can provide a higher value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Rate of Outgoing (Tx) Packet Errors (%) |
Rate of outbound packets that could not be transmitted because of errors.. |
|
Rate of Overall Packet Discards (%) |
Rate of total packets (inbound + outbound) discarded. The default warning and critical threshold values for this metric are set lower than what is expected to be necessary in many cases. You can provide a higher value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Rate of Overall Packet Errors (%) |
Rate of inbound packets that contained errors. The default warning and critical threshold values for this metric are set lower than what is expected to be necessary in many cases. You can provide a higher value for the warning and critical thresholds based on the load on the firewall and your network conditions. |
|
Subnet Mask |
Subnet mask of the interface. |
The metrics in this category provide information about the status of the firewall host.
Default Collection Interval — Every 5 minutes
| Metric | Description and User Action |
|---|---|
|
Status |
Has a value of 1 if the Management Agent is up and running, If the value is not 1, the managed target is down, and you may need to start the managed firewall. |
|
TCP Ping, Milliseconds |
Amount of time in milliseconds to ping the firewall. The threshold values for this metric are set for low network load conditions. You can provide a higher value for the warning and critical thresholds based on the load on your network. |
The metrics in this category provide information about the rate of FTP, HTTP, SMTP, RLOGIN, and TELNET sessions on the firewall. The metrics also provide information about the rate of sessions that resulted in authorization failures, and also the sessions that were rejected.
Default Collection Interval — Every 15 minutes
Table 1-25 Session Details Metrics
| Metric | Description and User Action |
|---|---|
|
Accepted FTP Sessions per sec. |
Rate of FTP sessions accepted by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Accepted HTTP Sessions per sec. |
Rate of HTTP sessions accepted by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Accepted RLOGIN Sessions per sec. |
Rate of RLOGIN sessions accepted by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Accepted SMTP Sessions per sec. |
Rate of SMTP sessions accepted by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Accepted TELNET Sessions per sec. |
Rate of TELNET sessions accepted by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Authorization Failures for FTP Sessions per sec. |
Rate of authorization failures for FTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Authorization Failures for HTTP Sessions per sec. |
Rate of authorization failures for HTTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Authorization Failures for RLOGIN Sessions per sec. |
Rate of authorization failures for RLOGIN sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Authorization Failures for SMTP Sessions per sec. |
Rate of authorization failures for SMTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Authorization Failures for TELNET Sessions per sec. |
Rate of authorization failures for TELNET sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
FTP Sessions per sec. |
Rate of FTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
HTTP Sessions per sec. |
Rate of HTTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected FTP Sessions per sec. |
Rate of FTP sessions rejected by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected HTTP Sessions per sec. |
Rate of HTTP sessions rejected by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected RLOGIN Sessions per sec. |
Rate of RLOGIN sessions rejected by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected SMTP sessions per sec. |
Rate of SMTP sessions rejected by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
Rejected TELNET Sessions per sec. |
Rate of TELNET sessions rejected by the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
RLOGIN Sessions per sec. |
Rate of RLOGIN sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
SMTP Sessions per sec. |
Rate of SMTP sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
|
TELNET Sessions per sec. |
Rate of TELNET sessions on the firewall. The default warning and critical threshold values for this metric are not set. You can set these values based on the load on the firewall and your network conditions. |
The metrics in this category provide information about the host where the firewall is installed.
Default Collection Interval — Every 12 hours
Table 1-26 System Information Metrics
| Metric | Description |
|---|---|
|
Contact |
Textual identification of the contact person for the firewall, together with information on how to contact this person. |
|
Host Name |
Administratively-assigned name for the firewall. By convention, this is the firewall's fully-qualified domain name. |
|
Location |
Physical location of the firewall. |
|
Up Since |
Time in hundredths of a second since the network management portion of the system was last reinitialized. |
The metrics in this category provide information about the VPN configuration.
Default Collection Interval — Every 24 hours
The metrics in this category provide information about the number of encryption and decryption packets crossing the VPN.
Default Collection Interval — Every hour
Table 1-28 VPN Statistics Metrics
| Metric | Description |
|---|---|
|
Number of Decryption Errors |
Number of errors due to the failure of decryption attempts. |
|
Number of Decryption Packets |
Number of decryption packets crossing the VPN. |
|
Number of Encryption Errors |
Number of errors due to the failure of encryption attempts. |
|
Number of Encryption Packets |
Number of encryption packets crossing the VPN. |
|
Number of IKE Errors |
Number of errors due to the incorrect configuration of IKE. |
|
Number of Policy Errors |
Number of errors related to the policies configured on the firewall. |
|
 Copyright © 2008, Oracle. All rights reserved. Legal Notices |
|
